Security for everyone, a mythical and most likely impossible goal security optimists share. In reality, many people would be plain ignorant to the possible risks because the computer might only be for "email and music." A common thought is that its not going to happen to the user, but to someone else. Personally, at the time of this writing the writer would dare to say that every computer owner/user is bound to have some sort of security incident in their lifetime. Computer knowledge and security to some users is a baffling experience, bringing about the question, how can the collective computer community make users more security competent? Blindly stating "security for everyone" is a dream, the government, local business owners and most importantly commerical operations should put together and fund a general clinic for their workers, but would it work? Some unions for local workers such as the CUPE union, on off days such as ProD days, due clinics on the wildest of things that do not pertain to their jobs such as kayaking. Instead of recreational activities on these types of days, maybe a mandatory clinic on basic computer security should be advised and or researched. One company, Lenovo, realizes the importance of employees who think and or if not quite understanding, but are aware of the security risks and problems is a huge benefit.1 Any results when it comes to increased security or raised suspicion at certain situations is a gigantic saving in costs for that large of a company. Delays caused by security breaches or attacks, saves both man power, downtime and consumer disappointment. In computers there are two worlds for example, consumers who are new to the computing environment and do not understand the complete under taking for security and maintenance, and then there are the power users who do understand. If the power users are removed from this equation, should companies who develop end user software do more in their power to make sure the public is aware of security flaws, risks and definitely the measures to prevent or fix them. Software might explain such at first installs, or logins for such users and be mandatory or the software automatically installs the updates. The later could be problematic for the power user segment of the population, but the idea for the consumer market does have some merit. Power users however, might know everything, might know a little about something and or think they know everything. Even they should be given some sort of lecturing or interactive learning could be a benefit to their lives and companies saving themselves costs in computer repair or downtime. Ignorance is not always bliss, but over thinking, securing can become a hindrance and when it does the question arises: how much is too much? Ultimately, most security risks come from user error, both intentional or accidental. There will always be malicious persons abroad, but if users are educated enough accidental infections and social engineering will be minimized somewhat and that is a solid goal alone. Any further benefits are infinitely welcomed, but depending on the circumstance sometimes only so much can be done. 1 http://www.scmagazineus.com/Educating-the-masses-for-IT-security/article...