In Search of Perfect Security

You’re gonna be looking for a while.

No. No, you are not. No, it will not.

There’s no such thing as “safe” on the internet. Period.

And yet, as those representative questions imply, it’s something I get asked all the time. Let me explain why the answer is always “no” — and what you can strive for instead.

Perfect security?

Perfect security doesn’t exist. Every security measure is a tradeoff between safety and convenience. Instead of striving for absolute safety, aim to be “secure enough” by making informed, balanced choices with tools and habits while staying aware of risks. This allows you to maintain a practical, confident approach to online safety.

We are all under constant attack

Not a day goes by when our technology isn’t bombarded by threats of compromise such as

• Malware
• Phishing
• Keyloggers
• Spammers
• Ransomware
• Bots and zombies

— and probably more we don’t even realize. If you run a server online, it’s even worse.

The good news is, we rarely need to think about it because we have security tools in place.

Security tools and techniques

We use an assortment of tools and techniques to protect ourselves so we can feel more secure.

• Ad blockers
• Anti-spyware tools
• Anti-virus tools
• Security suites
• Firewalls
• Password managers
• Two-factor authentication
• VPNs
• DNS filters
• Skepticism

— and probably other special-purpose tools I can’t think of right now.

There’s no such thing as perfect security

You can’t be perfectly safe or perfectly secure. You just can’t.

That’s true in life and especially true for technology.

Those tools I just mentioned? None of them are perfect. Your skepticism? Imperfect. Your ability to tell truth from fiction or scams from legit contact is also flawed. Heck, your ability to even use all those tools is fallible.

Don’t feel bad. I’m just as imperfect as the next guy. We all are.

The most realistic thing we can hope for is “secure enough”.

Related

It Pays to Be Skeptical

If we would all be a little more skeptical, we'd be safer and the internet would be a more trustworthy place.

Security is a spectrum

We make decisions and face tradeoffs every day. We constantly balance security and convenience with our needs and practicalities.

Consider password choice…

• Short, memorable passwords are convenient but put us at greater risk of compromise.
• Longer complex passwords are more secure but more difficult to manage.

Or password use…

• Having one (presumably strong) password you use in multiple places is more convenient, but puts all the accounts at risk should one be compromised.
• Having unique passwords for every account introduces even more management complexity.

Or password managers…

• Learning to use a password manager is ultimately more secure than any alternative, but it is not without its own risks.

And that’s just passwords! Every decision you make about your security involves some sort of compromise.

It’s all about tradeoffs

Security is not about reaching some hypothetical perfection; it’s about choosing tradeoffs that keep you secure enough without crippling your ability to get anything done.

Those tradeoffs involve the software you use, the websites you visit, the networks you connect to, the email you open, and much, much more.

There is no best or correct answer. What matters most is that you are aware of the tradeoffs you’re making and the risks you’re willing to assume while keeping your technology accessible and useful. It’s about choosing the right mix of technology and behavior to stay as safe as you need to be.

Safe enough.

Podcast audio

Download (right-click, Save-As) (Duration: 6:03 — 5.6MB)

Subscribe: RSS

Related Video