How not to store your keys

Bruce Schneier, on learning that some health care works stored encrypted information on a USB memory device, along with the key to unlocking the encryption itself:

It’s smart to encrypt USB memory devices, but it’s stupid to attach the encryption key to the device….I’m sure they were so proud that they chose a secure encryption algorithm.

For those just joining, the above described action is the approximately equivalent to this…


Editor’s note: the picture above is neither a good Photoshopping job nor an accurate depiction of the author’s rear bumper.

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.