[a:Bruce Schneier|175417|Bruce Schneier|http://d.gr-assets.com/authors/1332793096p2/175417.jpg] is, according to the quote from the Register on the inside sleeve notes,
"The closest thing the security industry has to a Rock Star."
And, like the actor [a:Chuck Norris|145126|Chuck Norris|http://d.gr-assets.com/authors/1361043275p2/145126.jpg], Schneier is the only other person I'm aware of who has his own 'facts' website. Listing page after page of dubious, but sometimes amusing, facts about Bruce's encryption super-powers. Although jokes about encryption probably have a fairly narrow audience Bruce Schneier Facts
gives us my personal favourite:
"Bruce Schneier's mail server only sends him the emails' hashes, just to make things a little more interesting for him."
Initially the book appears to be quite a weighty tome, but the tone is light and conversational and the type is certainly not small. As soon as you get started you realise that the last third of the book is just notes and references. I would have preferred to see the notes spread more throughout the book. If the text is so unimportant that it was removed from the original manuscript, why did it need to be in the book at all. If it was important, or interesting, better to have it at the bottom of the page as a footnote. Having to flip back and forwards is annoying – and requires two bookmarks (which luckily I had).
The book is broken down into four parts, across which Schneier breaks down his theory of trust. Each part digs a little deeper than the one before. In the first, he explains what he means by trust and defines his terms. The second expands on this and Schneier explains how his trust works and doesn't within society. The third is the largest and uses uses examples to see how the trust models he's already given us behave. The last is where Schneier places his conclusions and predictions.
The premise is that society consists of people who comply with society's rules, and people who don't – hardly ground-breaking stuff so far. Societies survive by having more people who comply than not. That people comply for a number of reasons (which Schneier explains in part two); however, many of these reasons are becoming less effective as the size and technological levels of our societies change. As our communities increase in size we know the community less well, therefore we are less able to trust individuals and our ability to pressure them to comply decreases as well. As our use of technology increases, many non-complying behaviours become easier or more beneficial at the same time as our ability to secure those systems decreases.
While I did really like the book, and Schneier makes his case persuasively, the book can get a little repetitive at times. There are probably a few too many examples worked through, and too many repetition of Schneier's clarification that not all defectors are necessarily always doing the wrong thing – sometimes people can defect against society's rules because they are bad rules. That said, I was particularly intrigued by the example of professional cyclist Alex Zulle (the eternal second placer). He has since admitted doping, but the quotes in the book describe how he believed that he had to dope just to keep up with the other riders. Schneier gives us a high-level description of the arms-race between the dopers and the testers. All particularly interesting in light of the more recent charges against Lance Armstrong. He does touch upon the interesting point that in sport where the rules are don't have drugs in your system rather than don't take the drugs deliberately, athletes can end up serving bans either as a result of accidents or even deliberate attempts to 'nobble' an athlete.
Ultimately, while fascinating, the book felt like it lacked an ending. It may be more that Schneier had already laid out his conclusions during the book anyway, but it didn't feel like it really offered any solutions or real predictions for where the problems with trust either are now, or are going next.
I did pay for this book with my own good money, but it's only fair to point out that I did receive a very generous discount from the author in exchange for my fairly vague promise to write a review of it somewhere. It would seem perverse to cheat the author of a book on how trust works in society out of that promise. So, some months later, this is that review.