On 11/28/14, rysiek <[email protected]> wrote: > > There will always be different approaches to such things... > ... The demarcation line is *not* clear and depends heavily > on circumstances.
for my second act as devil's advocate, i declare that it is unreasonable to demand users recognize or understand a threat model. thus every system must be engineered to withstand the most difficult and well resourced threats, such that a solution covers all threat models sufficiently. how can making it even harder, make it simpler? well, that's the trick, isn't it? :) best regards,
