The Meaning of Openhack III
We've wrapped up our Openhack III competition, and no one busted in, so what did we learn?Weve wrapped up our Openhack III competition, and no one busted in, so what did we learn? These competitions, where we issue an open challenge to the hackers of the world to find a way to break into a Web site, draw a huge amount of interest, averaging 5 million hits and 340,000 hack attacks per day. This time, we took the tack of ref- ereeing and auditing a trusted operating system architecture that was pitted against the hackers over two weeks. The competition offered a $50,000 grand prize if four defined elements of the system could be breached. No one got the money, and, in fact, no one cracked any of the four elements, despite thousands of attempts.
Does that mean everyone should abandon perimeter defenses in favor of trusted systems? No. Does it mean that this is the final word on security? No. And does it mean that no one will ever find a way to slip into this type of operating system? I dont think so.