I was talking with a friend the other day about a project and I asked for his email address. He didn’t want to use email; too easily hacked. His reasons were valid, but at what point does your security make it impossible to work?
There should be a term for this in IT Security, finding the balance between security and access, but I haven’t found it. (May I suggest “the Johnston Paradox?”) There are lots of really cool security tools that you can use to prevent people getting into your computer: biometrics, two-factor authentication, key fobs, ID card insertion, and even insanely complicated passwords. However, the more difficult you make the access, the harder it is to use, the less more likely users are going to simply bypass it and use their own (less secured) devices.
In 2001, I was working for a major insurance company, and my team’s entire job was finding out how we could let executives to use their PDA’s (handheld devices before iPhones). The demand was huge, but the security problem had to be overcome. You’re dealing with people’s personal data, or corporate finance, stuff you really don’t get to get out.
However, the problem is often NOT getting access, it’s when your computer interacts with the rest of the world. When I get online, I get pelted by four or five different digital intrusions just going to my first web page. We have automated security to fight automated intrusion software. Cookies attach themselves to every site you go to, although most now have to tell you they’re doing it. Most of the time, it’s just ads wanting to sell you things, but it doesn’t take much to be more insidious.
Just like most people, I take comfort in anonymity. I’m not important or rich enough to hack. Now… that’s foolish, and it’s not like I still don’t use passwords or take basic internet precautions, but someone looking up “Marcus Johnston” on the Internet has to get to the second page of search results to find me… and you’ll usually get “Johnsons” before you find the “t.” I still have a piece of tape over my camera, but not over my microphone.
But let’s say that you DO have something someone wants? You can encrypt your email, but there is decryption software, and it’s just a matter of time if someone really wants to read your communications. So my friend is not paranoid if wants to avoids email and pass flash drives instead. But it does means our communication is going to be slower, and if someone wants to listen in on your cell phone conversation, all you really need is a good (but technically illegal) ham radio. However, if I let myself worry about that, I won’t get anything done. If someone wants to read my diary, it won’t take much, but they also won’t get much other than my whining. It’s more flattering than damaging.
So my level of paranoia is far, far lower than my friend who… well, works in an area where a higher level of security is needed. But where’s your balance? Do you encrypt your emails? Or are you still annoyed when you have to change your password beyond the four you can remember? Let me know in the comments below!
And while you’re on my webpage, why not check out my books! Or if $1.99 is too unpredictable in our economic security, download one of my stories for free!
Albigensia Press 
As a writer, I find the thought of anyone checking my searches humorous as they would wonder about either my sanity or my danger level.
Interesting topic. New disclosure laws aside, you’d be amazed who is still spying one you via third party intrusions. I use Peerblock to stop it (some of it anyway). I get block messages on Everybody from Halliburton Corp (seems they’re into more than PMA black ops), GE, DuPont, Amazon (esp if you have one of their aps installed) all the way to M.I.T.
Personally, the government’s hardwired back door access to backbone routing systems and Patriot Act granted ability to spy on email and such worry me even more.
Your best hope in ALL the above cases is that you’re too small a fish in a VAST sea of information to be noticed.
And having an Associate’s Degree in InfoSec, I can tell you that the balance there between access and security is constantly discussed. I’m sure there’s a term for that mythical balance, but I can’t remember it right now.