Truth About Computer Security Hysteria
Horror Stories 101
Tuesday, 7 November 2000
THE 27th ANNUAL Computer Security Conference & Exhibition takes place next week in Chicago. I’d love to go, if only to sit in on this lecture:
Horror Stories and How to Use Them
Just what the computer security world needs — a course on how to scare your audience. Can't we instead rely on empirical evidence?
Dan Erwin, CISSP, Dow Chemical Co.
"The fastest way to get management excited about a Disaster Plan is to burn down the building across the street. There is nothing like a major virus attack to get Security invited to speak at a department’s staff meeting. Horror Stories can help us learn from the mistakes of others and can be a very effective tool to get your point across, BUT too often they are not used correctly. This fast-pasted [sic] session will show you how to collect Horror Stories, how to maximize their effectiveness and how to customize them to an audience or theme."