In my work as a software architect and security expert, I always consider boundary conditions such as malicious input as opposed to normal behavior.  I also consider innocuous errors that could lead to disastrous consequences.

I immediately applied this approach to the NSA Prism program and came up with 3 scenarios:

1. Innocent mistake and courteous response that could make me a person of interest or worse.
2. Message embedded in a collect call request.
3. A business or vengeance opportunity. Continue reading →