Hot Topics

economicsofsecurity

The Security Value of Inefficiency

| | covid19, economicsofsecurity, essays
For decades, we have prized efficiency in our economy. We strive for it. We reward it. In normal times, that's a good thing. Running just at the margins is efficient. A single ...
Schneier on Security

Security and Human Behavior (SHB) 2020

| | Conferences, economicsofsecurity, psychologyofsecurity, securityconferences
Today is the second day of the thirteenth Workshop on Security and Human Behavior. It's being hosted by the University of Cambridge, which in today's world means we're all meeting on Zoom ...
Schneier on Security

On Cyber Warranties

| | cyberattack, economicsofsecurity, insurance, risks
Interesting article discussing cyber-warranties, and whether they are an effective way to transfer risk (as envisioned by Ackerlof's "market for lemons") or a marketing trick. The conclusion: Warranties must transfer non-negligible amounts ...
Schneier on Security

Technology and Policymakers

| | economicsofsecurity, essays, nationalsecuritypolicy, publicinterest
Technologists and policymakers largely inhabit two separate worlds. It's an old problem, one that the British scientist CP Snow identified in a 1959 essay entitled The Two Cultures. He called them sciences ...
Schneier on Security

Security and Human Behavior (SHB) 2019

| | Conferences, economicsofsecurity, psychologyofsecurity, schneiernews, securityconferences
Today is the second day of the twelfth Workshop on Security and Human Behavior, which I am hosting at Harvard University. SHB is a small, annual, invitational workshop of people studying various ...
Schneier on Security

The Cost of Cybercrime

| | academicpapers, cybercrime, Cybersecurity, economicsofsecurity, Fraud
Really interesting paper calculating the worldwide cost of cybercrime: Abstract: In 2012 we presented the first systematic study of the costs of cybercrime. In this paper,we report what has changed in the ...
Schneier on Security

The Concept of "Return on Data"

| | academicpapers, datacollection, dataprotection, economicsofsecurity, Privacy
This law review article by Noam Kolt, titled "Return on Data," proposes an interesting new way of thinking of privacy law. Abstract: Consumers routinely supply personal data to technology companies in exchange ...
Schneier on Security

Prices for Zero-Day Exploits Are Rising

| | businessofsecurity, economicsofsecurity, Exploits, Vulnerabilities, zeroday
Companies are willing to pay ever-increasing amounts for good zero-day exploits against hard-to-break computers and applications: On Monday, market-leading exploit broker Zerodium said it would pay up to $2 million for zero-click ...
Schneier on Security

Security Vulnerabilities in Cell Phone Systems

| | cellphones, eavesdropping, economicsofsecurity, lawenforcement, nationalsecuritypolicy, securityengineering, Vulnerabilities
Good essay on the inherent vulnerabilities in the cell phone standards and the market barriers to fixing them. So far, industry and policymakers have largely dragged their feet when it comes to ...
Schneier on Security

Machine Learning to Detect Software Vulnerabilities

| | artificialintelligence, economicsofsecurity, essays, machinelearning
No one doubts that artificial intelligence (AI) and machine learning (ML) will transform cybersecurity. We just don't know how, or when. While the literature generally focuses on the different uses of AI ...
Schneier on Security
Load more