Re: [xml-dev] The sky is falling! XML's dirty secret! Go back! It's a trap!

[Paul Prescod <paul@prescod.net>]

Michael Kay wrote:
> 
>....
> 
> Actually, I have for a long time been a heretic on this. My
> grandmother's jewellery survived for five years in a house requisitioned
> by the military by being hidden under a loose floorboard, I doubt it
> would have survived if it had been in a locked cupboard. Hiding your
> valuable data works well, providing no-one is making a determined effort
> to find it. The risk of your car being stolen depends much more on where
> you leave it than on whether it is locked. I therefore have some
> sympathy with the author of this article, even though he is ignorant and
> should not be writing about security.

I agree. Security through obscurity is never as good as security through
cryptography but it is better than nothing and can also be used as a
backup, in case security through cryptography fails (e.g. a buffer
overflow in your cryptography software!). For instance, if there turns
out to be a security hole in your sshd, then you might be happy that you
didn't post the IP address for your vulnerable system on the web.

Passwords are security through obscurity (which is why they cause so
many problems). It would probably be too expensive to live in a world
where we replace passwords with cryptographically secure 128-bit hashes.
And the hashes are themselves only useful because they are obscure!

This stuff is always a matter of costs and benefits. The benefits of
hiding the names of tags is tiny and there is the chance that the
software you install to do that would introduce its own security holes.
Plus, given limited budgets, you could spend your effort on something
more likely to produce benefits, like reading CERT advisories or
tightening the firewall or learning a more secure programming language
or...

 Paul Prescod