In: Computer Science
obscuring security leads to a false sense of security describe how?
Obscuring security leads to a false sense of security, which is more dangerous than not addressing security.Obscuring security is like hiding treasure under a tree. It is safe and secure only until no one discovers it. Once someone discovers it, whole thing is lost. We think that if attackers don't know how our software is protected, it is more secure. But this is not true. Obscuring security means hiding the details of security mechanisms. But just hiding security mechanism is not secure. There will be someone who always try to discover that mechanism and once that mechanism is discovered, whole our system gets collapsed.
So the best way of security is putting behind a lock or some combinations which are difficult to find. If it is hidden behind some combination, we can even put in on road or street side.Such type of best security can be achieved if we make sure that one mechanism alone is not sufficient to secure the whole system by putting some combinations.