[periodontal]

See the last section (Afterword: removing the hat):

  First, in case this is not obvious to the reader, we do
  not actually endorse the attacker's perspective. Our goal
  in analyzing the security of systems is to prevent attacks.

[accommodavid]

I met Bernstein a few months ago after he gave a talk about this same subject. In his talk he pretended to be a Verizon employee, explaining how vital it is to him and his company that they can track what their users are doing on their network in order to improve their advertising services. (Without breaking character at any point, pretty impressive.) I guess it's easier to reason about these things when you're trying to break something, rather than trying to prevent it from happening.