Some important axiom in the Real World are: 1. Hardware is buggy and insecure 2. Software is buggy and insecure 3. Users are buggy and insecure The goal of IT security is to build secure and bug-free system while (implicitly) assuming (1) and (2) and (3). Usually the solution is just Antivirus.