friction Attackers' cost of winning... or your control plane is like water (whether you like it or not) Thinking about information security's role as manager of friction for both attackers and good-actors alike, and how a healthy control plane acts like water: smooth gliding for everyday use with increasing resistance the more aggressively it is approached. Erick Rudiak 3 Apr 2025 · 11 min read
threat model Growing beyond the speed of HD Moore's Law Joshua Corman is generally credited with coining "HD Moore's Law" to state: Casual attacker power grows at the rate of Metasploit I have recently come to Erick Rudiak 7 Dec 2014 · 2 min read
legal defensibility bit.ly considered harmful (or: let's stop blaming the victims)  A colleague, whose company had suffered from a sophisticated security breach last year, recently shared with me some of the awareness materials that Erick Rudiak 12 Feb 2012 · 4 min read
password Disobeying Benford's Law, one password at a time Is it wrong to say I was enjoying toying around with howsecureismypassword.net the other day... and, if so, is it more wrong to mention that the first thing that Erick Rudiak 2 Dec 2011 · 3 min read
