Dr. Dominik Merli is a professor for IT security at the Augsburg Technical University of Applied Sciences and head of its Institute for innovative Safety and Security (HSA_innos). With this song, Merli first and foremost expresses his respect for everyone working day by day on the security of systems, products, and digital infrastructures. And he wants to raise awareness for the many challenges that still need to be overcome to ensure that organizations and their employees can work in a secure digital world.
From weak passwords to sloppy network administration to IoT devices that can be cracked by script kiddies, the song tackles common issues that security experts face every day - and that endanger public organizations, companies as well as their employees.
Dr. Dominik Merli ist Professor für IT-Sicherheit an der Technischen Hochschule Augsburg und Leiter des dort ansässigen Instituts für innovative Sicherheit (HSA_innos). Mit seinem Song würdigt Merli das Engagement derer, die sich Tag für Tag für die Sicherheit von Systemen und Produkten einsetzen. Und er will das Bewusstsein für die vielen Herausforderungen schärfen, die es noch zu bewältigen gilt. Damit Unternehmen und ihre Mitarbeitenden in einer sicheren digitalen Welt arbeiten können.
Von unsicheren Passwörtern über unsaubere Netzwerkadministration bis hin zu IoT Geräten die von Skript Kiddies geknackt werden können greift der Song alltägliche Themen auf, mit denen Sicherheitsexpert:innen täglich konfrontiert werden - und die öffentliche Organisationen, Unternehmen sowie deren Mitarbeitenden gefährden können.
#worldpasswordday #ITsecurity #cybersecurity #HSAinnos #digitalinfrastructures #networkadministration #devicesecurity #passwordsafety #securityexperts #publicorganizations #employeeprotection #cyberawareness
Lyrics:
Verse 1 (User Authentication)
How many times must brute force succeed,
before passwords are long and random ones?
How many times must a password leak,
before multiple factors are used?
And how many times must fingerprints be forged,
before they're forever banned?
Chorus
The answer, my friend, is blowing in the wind,
the answer is blowing in the wind.
Verse 2 (Network Administration)
How many times must a network scan reveal,
that all ports are open everywhere?
How many times must production be disturb,
before networks are separated well?
And how many times must a pentester note,
that software is years out-of-date?
Chorus
The answer, my friend, is blowing in the wind,
the answer is blowing in the wind.
Verse 3 (Device Engineering)
How many times must firmware be reversed,
before keys are stored in a safer place?
How many times must a buffer overflow,
before bounds are checked in every case?
And how many times must a script kiddy show,
that security was no goal at all?
Chorus
The answer, my friend, is blowing in the wind,
the answer is blowing in the wind.
Verse 4 (Management)
How many risks must a threat model show,
before someone starts to understand?
How many times must ransom be paid,
before prevention comes to our mind?
And how much frustration do we have to take,
before the chaos comes to an end?
Chorus (2x)
The answer, my friend, is blowing in the wind,
the answer is blowing in the wind.
Credits:
Text, Voice & Ukulele: Dominik Merli
Recording & Production:
Markus Wangler & Johannes Christopher - Didaktik-Medien-Zentrum
Links:
/ dominik-merli
www.hsainnos.de/
www.hs-augsburg.de/Didaktik-M...
www.hs-augsburg.de/