Bruce Schneier’s latest Cryptogram offers an interesting commentary on full disclosure and locksmithing. Schneier: “Public scrutiny is the only reliable way to improve security. This is no different from the computer world. Before software vulnerabilities were routinely published, vendors would not bother spending the time and money to fix vulnerabilities, believing in the security of secrecy. And since customers didn’t know any better, they bought these systems believing them to be secure. If we return to a world of bug secrecy in computers, we’ll have the equivalent of 100-year-old vulnerabilities.”]
Source: https://taosecurity.blogspot.com/2003/02/bruce-schneiers-latest-cryptogram.html