There was a time when I believed that I could keep a server secure enough that I could get away with not putting it behind a firewall. This used to entail just having a security plan and minimizing the attack surface. Then it got harder and harder to keep up. I held out for as long as I could, but sometime in the last year I got to the point where I won’t put anything I care about directly on the Internet. The Internet has experienced what seems like the fastest neighborhood slide in history!
This may seem obvious, but the important point here is the progression toward this point. Where next? Will we be taking things like smartcards for granted the way firewalls are now?
Security is a game that evolves, if you can get ahead of the next evolutionary turn you can prevent unpleasant surprises.
What do you think will be taken for granted in 18 months relative to security?