Exponentially harder isn't hard enough yet

In well designed cryptographic security systems, the attacker needs to do exponentially more work than the defender in order to read a secret, forge a message, etc., subject to appropriate hardness assumptions. Maybe this is true for many non-computer security-ish systems as well, like choosing good representatives in a voting system or avoiding overpaying for advertised merchandise, and we simply haven’t reached the level of intelligence as defenders for the exponential effort of attackers to be prohibitive. Extra intelligence is a ways off, but faster and simpler access to information is closer, and may have similar effects. In any case, a hopeful thought.

comments powered by Disqus