The last five to seven years in Cybersecurity have been all about threat detection within conventional IT networks. The platforms have evolved from simple SIEMs with Anti-Virus protection to advanced SIEMs bolstered by behavioral analytics, active threat intelligence and threat management and recently to managed detection and response capabilities grounded in artificial intelligence and machine learning.
The next five to seven years will see the application of extended artificial intelligence and deep unsupervised machine learning, the collection of expanded sources of threat indicative data beyond the simple Syslog, Netfow, Sflow and WMI collected now, context-aware access management, curated threat intelligence and integrated risk frameworks to unified threat management platforms and robotic machine interfaces operating on offensive missions in Cyberspace; and moving all of this increased firepower to the Internet of Things which will become our greatest security challenge by 2022.
There are six key drivers of this change, all of which will be highly interconnected:
The Internet & the Physical World (a.k.a. the Internet of Things). While the IoT is transforming economies and societies with more efficient, data-driven services, Cybersecurity challenges from targeted threats, device vulnerabilities, incompatible standards, regulatory pressures and privacy issues may well undermine all of the firepower embedded in these advanced platforms.
Artificial Intelligence. The opportunity for targeted use case applications in everything from Cybersecurity defense to robotics, new services and scientific breakthroughs will likely be overshadowed by ethical, privacy and liability issues and the probable emergence of a “surveillance society.”
Cyber Threats. As the application of AI and ML technologies to networked IoT at work and at home will increase our dependence on the network, the severity of security challenges and vulnerabilities will increase in parallel, yet we can’t and won’t allow a ‘securitization’ of the internet (ala China), lest we sacrifice any remaining semblance of privacy and personal freedoms.
The Internet Economy. We are finally on the verge of a technological transformation that will disrupt broad economic structures and force businesses to think and act like technology companies as billions of devices and sensors will connect to the global network and this new hyper-connected internet economy will see traditional industries morphing, emerging economies thriving and new market leaders from around the world driving both innovation and entrepreneurship.
Networks, Standards & Interoperability. A proliferation of connected systems and mobile devices will result in ubiquitous connectivity requiring greater bandwidth and interoperability, yet our current open standards are either non-existent or insufficient to support competition, continuing evolution and accelerated innovation.
The Role of Government. As the internet grows and expands into more areas of the global economy and society, individual sovereign governments will be faced with a host of newly complex issues that will make today’s technological legislative challenges look like child’s play. Every aspect of our own congressional leadership decision-making on issues of privacy, regulation, protection, defense, retribution, sharing, connectivity, prevention, manufacturing, limits on the application of artificial intelligence, and robotics will be challenged as never before. Their responses to these challenges will impact not only laws, freedoms, rights and the economy, but also the Internet itself.
There are so many issues that need to be addressed by this congress and the United Nations as a whole that the load far exceeds the current capacity. It would be so easy to simply do what the PRC has done and just close up the American Internet. (That was a joke).
In spite of the difficulty facing our lawmakers and regulators in attempting to forge some sort of over-arching Cybersecurity policy and governance, it is crucial that we not lose sight of the Internet core values of openness, security, and collegiate use by the entire global community.
There is a shared sense of both optimism and disillusionment for the internet’s future in equal measure today and while there are no guarantees of what lies ahead, humanity must be at the center of tomorrow’s Internet. It must continue to benefit people and create new social and economic possibilities to fulfill the premise on which it was built.
Any and all congressional action must embrace these core values as their compass when drafting new legislation for dealing with Cybersecurity issues our corporations steadfastly continue to ignore or we will face a future where we will have chosen security over freedom.
And that is not what our founders had in mind.
This is a Security Bloggers Network syndicated blog post authored by Steve King. Read the original post at: News and Views – Netswitch Technology Management