Security & Risk
Actual threat modeling vs. security theater, risk communication, and what "secure" actually means.
What I mean by this tag
This topic covers how we think about and communicate risk—and how we often get it wrong. Security theater (measures that look protective but aren't), actual threat modeling, the difference between fear and risk, and what "secure" means in different contexts.
I'm interested in the gap between how risk is communicated (often for political or commercial purposes) and how risk actually works. Understanding this gap helps you make better decisions about what to actually worry about.
Start here
No published episodes in this topic yet.
All episodes in this topic
Nothing here yet.
Related reading
Sources I trust on this topic.
- Bruce Schneier — Security technologist who writes clearly about risk, security theater, and threat modeling.
- Krebs on Security — Brian Krebs's deep reporting on cybersecurity.
- The Risk Monger (David Zaruk) — Risk communication and how fear distorts policy.