Re: People are bad at trust.... new article

[Pete Herzog <lists () isecom org>]

Hi Saleh,

On 7/26/2010 11:05 AM, Saleh wrote:
> Trust is a good thing for humans but it has its problems. The problem is
> when you're trusting a non-worthy-of-trust person.
> The other problem is that 'Trust' cannot be measured. Naturally, Humans
> tend to trust other people unless other people
> proved the otherwise.

Trust is a good thing because it's efficient and requires less effort 
to maintain for most people. While I agree that how people feel about 
trust cannot be measured except by surrogate (like how wine tasters 
rate wines for us is not really how we might experience the same wine) 
we can measure reasons to trust, which allows us to use our trust 
properly and in the right context. By only stopping trust when "people 
prove otherwise" is a very broad statement and may not be the same 
reason between people. Relationships often fail for this reason. One 
thinks they are being trustworthy where the other's criteria for trust 
does not include the same criteria. So by analyzing situations on the 
10 trust properties, we can find an understanding between people's 
reasons for trust and avoid problems. We can also find when people are 
deceiving us or when a network is not safe. The limits are endless 
because how we use trust is endless.

Sincerely,
-pete.

--
Pete Herzog - Managing Director - pete () isecom org
ISECOM - Institute for Security and Open Methodologies
www.isecom.org - www.osstmm.org
www.hackerhighschool.org - www.badpeopleproject.org

------------------------------------------------------------------------
This list is sponsored by: Information Assurance Certification Review Board

Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT and CEPT certs require a full practical examination in order to become certified. 

http://www.iacertification.org
------------------------------------------------------------------------