One Billion Hearts, Bleeding as One


[Commentary] Over the last 5 years, the Web has witnessed a dramatic degree of centralization and standardization. That mostly has made life simpler and easier. Heartbleed, the vulnerability in SSL encryption recently discovered, makes this clear, as did the National Security Agency spying revelations in June 2013.

Once upon a time, having an account compromised might only mean so much. But as we centralize more, and put more of our lives online and into consolidated accounts, the damage from being compromised is greater.

The standard advice is just to change your passwords more often. But what would actually make the web ecosystem less vulnerable is not just better security, but more diversity and more competition at every level, even among encryption standards.

As annoying as it may seem, we’re safer when we have more accounts, with different types of encryption, spread across multiple companies. Otherwise, as the analogy goes, if all the gold is stored at Fort Knox, a thief knows where to go.

One Billion Hearts, Bleeding as One