So you maybe noticed that there was a post on here yesterday and it’s not here now.\u00a0 After consideration and from a “full disclosure” standpoint, I feel like I owe folks an explanation about why that is.<\/p>\n
If you saw that post, you’ll know I posed a few methodological-questions about the Cybersecurity 500 list (i.e. who was on it and why).\u00a0 After discussions with one of their executives, I have suspended that post.\u00a0 Folks who know me know that I don’t usually ever suspend a post – even when big companies (or sometimes people I consider friends) disagree with what I say (case in point the argument I had with AMTSO folks<\/a> a few years back)…\u00a0 \u00a0I figure that any company has a bigger megaphone than I do – because bear in mind this isn’t my “day job” – so they’re free to say whatever they want in response to anything I say here.<\/p>\n This situation is a little different though.\u00a0\u00a0Ultimately, in this case, it comes down to the value to practitioners associated with the questions I posed.\u00a0 I’ve come to the conclusion that those questions will likely occur to others with or without my post.\u00a0 Answering them fully requires significant work on my part.\u00a0 So, with apologies to\u00a0Learned Hand’s formula<\/a>, the time required for me to deep dive into it (i.e. to fully unpack the methodology, meet with them about it, etc.) outweighs the value that publicly posing the questions would have.\u00a0 I still have the same questions, but exploring them more isn’t worth the opportunity cost when I could be writing about something more directly practical – like, for example, TLS 1.3.<\/p>\n Am I backing down?\u00a0 I don’t think so.\u00a0 But hey, I didn’t think yesterday’s post was overtly negative either.<\/p>\n","protected":false},"excerpt":{"rendered":" So you maybe noticed that there was a post on here yesterday and it’s not here now.\u00a0 After consideration and from a “full disclosure” standpoint, I feel like I owe folks an explanation about why that is. If you saw that post, you’ll know I posed a few methodological-questions about the Cybersecurity 500 list (i.e. […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_et_pb_use_builder":"","_et_pb_old_content":"","_et_gb_content_width":"","footnotes":""},"categories":[4],"tags":[32],"class_list":["post-765","post","type-post","status-publish","format-standard","hentry","category-security","tag-cybersecurity-500"],"_links":{"self":[{"href":"https:\/\/securitycurve.com\/index.php?rest_route=\/wp\/v2\/posts\/765","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/securitycurve.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/securitycurve.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/securitycurve.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/securitycurve.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=765"}],"version-history":[{"count":0,"href":"https:\/\/securitycurve.com\/index.php?rest_route=\/wp\/v2\/posts\/765\/revisions"}],"wp:attachment":[{"href":"https:\/\/securitycurve.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=765"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/securitycurve.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=765"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/securitycurve.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=765"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}