My main worry, and the core of my research, is that our cybersecurity ecosystem is slowly but surely aging and getting old and that aging is becoming an operational risk. This is happening not only because of growing complexity, but more importantly because of accumulation of controls and measures whose effectiveness are uncertain. I introduce a new term for this aging phenomenon: cyber senescence. I will begin my lecture with a short historical overview in which I sketch a development over time that led to this worry for the future of cybersecurity. It is this worry that determined my research agenda and its central theme of the role of uncertainty in cybersecurity. My worry is that waste is accumulating in cyberspace. This waste consists of a multitude of overlapping controls whose risk reductions are uncertain. Unless we start pruning these control frameworks, this waste accumulation causes aging of cyberspace and could ultimately lead to a system collapse.
翻译:我的主要担忧及研究的核心在于,我们的网络安全生态系统正缓慢而确定地老化,这种老化正在演变为一种操作风险。这一现象的发生不仅源于系统日益复杂,更重要的是由于大量控制措施与手段的积累,其有效性却充满不确定性。为此,我引入一个新术语来描述这种老化现象:网络衰老。本次讲座将从简短的历史回顾开始,勾勒出导致我对网络安全未来产生担忧的演变过程。正是这种担忧决定了我的研究议程及其核心主题——不确定性在网络安全中的作用。我所忧虑的是,网络空间中正在不断积累“废弃物”。这些废弃物由大量相互重叠的控制措施构成,其风险降低效果并不明确。除非我们开始修剪这些控制框架,否则废弃物的积累将导致网络空间老化,并最终可能引发系统崩溃。
相关内容
微信扫码咨询专知VIP会员