Presentation is loading. Please wait.

Presentation is loading. Please wait.

The Security State Ross Anderson Cambridge University.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "The Security State Ross Anderson Cambridge University."— Presentation transcript:

1 The Security State Ross Anderson Cambridge University

2 UEL June 19th 2008 Economics of Security Economics and security used to be intertwined but drifted apart after WW2 Economics and security used to be intertwined but drifted apart after WW2 Since about 2000, we started to apply economic analysis to IT security and dependability Since about 2000, we started to apply economic analysis to IT security and dependability It explains many failures better! Systems often fail because the people who guard them don’t suffer all the costs of attacks (e.g. medical record systems are bought by medical directors or civil servants, not patients) It explains many failures better! Systems often fail because the people who guard them don’t suffer all the costs of attacks (e.g. medical record systems are bought by medical directors or civil servants, not patients) There are now over 100 researchers doing security economics There are now over 100 researchers doing security economics

3 UEL June 19th 2008 Economics of Security (2) There are many institutional effects! For example, big organizations spend too much on security, and small ones too little There are many institutional effects! For example, big organizations spend too much on security, and small ones too little About 30% of private-sector systems projects fail, but – despite greater risk aversion – only 30% of public-sector projects succeed! About 30% of private-sector systems projects fail, but – despite greater risk aversion – only 30% of public-sector projects succeed! We observed during the crypto wars of the 1990s that GCHQ was much more interested in attacking foreigners than defending Brits. Why? We observed during the crypto wars of the 1990s that GCHQ was much more interested in attacking foreigners than defending Brits. Why?

4 UEL June 19th 2008 Offence or Defence? If you are DirNSA and have a nice new hack on XP and Vista, do you tell Bill? If you are DirNSA and have a nice new hack on XP and Vista, do you tell Bill? Tell – protect 300m Americans Tell – protect 300m Americans Don’t tell – be able to hack 400m Europeans, 1000m Chinese,… Don’t tell – be able to hack 400m Europeans, 1000m Chinese,… If the Chinese hack US systems, they keep quiet. If you hack their systems, you can brag about it to the President If the Chinese hack US systems, they keep quiet. If you hack their systems, you can brag about it to the President So offence may be favoured over defence So offence may be favoured over defence

5 UEL June 19th 2008 Security Theatre Most ‘security’ for show rather than effect Most ‘security’ for show rather than effect For example, US government spent $14bn since 9/11 on harassing airline passengers – but failed to finish a $500m project to reinforce all cockpit doors! For example, US government spent $14bn since 9/11 on harassing airline passengers – but failed to finish a $500m project to reinforce all cockpit doors! Where threats are greatly overblown, a theatrical response may be appropriate Where threats are greatly overblown, a theatrical response may be appropriate But the ones in current use are way too expensive! But the ones in current use are way too expensive!

6 UEL June 19th 2008 Psychology and Security Security psychology research is also starting to get going Security psychology research is also starting to get going Many interesting problems, including the privacy gap (why most people say they value privacy but act otherwise) Many interesting problems, including the privacy gap (why most people say they value privacy but act otherwise) But one of the biggest issues is fearmongering! But one of the biggest issues is fearmongering! Are modern societies structurally vulnerable to terrorism? Are modern societies structurally vulnerable to terrorism?

7 UEL June 19th 2008 Psychology and Security (2) Why does terrorism work? Why does terrorism work? Mortality salience (Pyszczynski et al) Mortality salience (Pyszczynski et al) Heuristics and biases (Kahneman and Tversky) – availability heuristic; anchoring; loss aversion Heuristics and biases (Kahneman and Tversky) – availability heuristic; anchoring; loss aversion Also: wariness of hostile intent; violation of moral sentiments; credence given to images; reaction against out-group; sensitivity to change Also: wariness of hostile intent; violation of moral sentiments; credence given to images; reaction against out-group; sensitivity to change Gilbert ‘If only gay sex caused global warming’ Gilbert ‘If only gay sex caused global warming’ The good news: biases affect novel events more, and so can be largely overcome by experience The good news: biases affect novel events more, and so can be largely overcome by experience

8 UEL June 19th 2008 Leadership Matters! Compare Thatcher’s response to the Brighton bombing with Blair’s to 7/7 Compare Thatcher’s response to the Brighton bombing with Blair’s to 7/7 For a systematic analysis, see John Mueller’s ‘Overblown’, which explores how politicians can hype national security threats, aided by suppliers and the media For a systematic analysis, see John Mueller’s ‘Overblown’, which explores how politicians can hype national security threats, aided by suppliers and the media But it’s not inevitable: Kennedy, Johnson, Nixon and Ford ignored terrorism But it’s not inevitable: Kennedy, Johnson, Nixon and Ford ignored terrorism It doesn’t always work: Bush got reelected but Carter didn’t It doesn’t always work: Bush got reelected but Carter didn’t

9 UEL June 19th 2008 Historical Precedents Cambridge University was founded in 1209 by monks fleeing Oxford Cambridge University was founded in 1209 by monks fleeing Oxford See Moore, ‘The Formation of a Persecuting Society’ for the background See Moore, ‘The Formation of a Persecuting Society’ for the background In late 12th century, the church started to exert power by cracking down on gays, lepers, Jews, married priests,… In late 12th century, the church started to exert power by cracking down on gays, lepers, Jews, married priests,… This swung back and forth for centuries! This swung back and forth for centuries!

10 UEL June 19th 2008 Summing Up There’s nothing mysterious, or even new, about the security state There’s nothing mysterious, or even new, about the security state Lots of interests – armed forces, spooks, cops, suppliers, media – are happy to help a national leader scare up the vote Lots of interests – armed forces, spooks, cops, suppliers, media – are happy to help a national leader scare up the vote They will gleefully spend too much, badly, on the wrong things They will gleefully spend too much, badly, on the wrong things ‘Politics as a branch of showbusiness’ may have made us more vulnerable to this, for a while ‘Politics as a branch of showbusiness’ may have made us more vulnerable to this, for a while But the voters eventually wise up! But the voters eventually wise up!

11 UEL June 19th 2008 More … See www.ross-anderson.com for a survey article and my security economics resource page See www.ross-anderson.com for a survey article and my security economics resource pagewww.ross-anderson.com See also the chapters on psychology and on terrorism from my book ‘Security Engineering’ (2nd edition) See also the chapters on psychology and on terrorism from my book ‘Security Engineering’ (2nd edition) WEIS – Annual Workshop on Economics and Information Security – Dartmouth, June 25–7 2008 WEIS – Annual Workshop on Economics and Information Security – Dartmouth, June 25–7 2008

12 UEL June 19th 2008

Download ppt "The Security State Ross Anderson Cambridge University."

Similar presentations

Chapter 1 We’ve Got Problems…. Four Horsemen  … of the electronic apocalypse  Spam --- unsolicited bulk email o Over 70% of email traffic  Bugs ---

Chapter 1 We’ve Got Problems…. Four Horsemen  … of the electronic apocalypse  Spam --- unsolicited bulk o Over 70% of traffic  Bugs ---
LEGITIMACY AND LOSING. 1. Attitudes of the losers after the electoral outcomes Assumptions: -The literature on election outcomes agrees that the regime.

LEGITIMACY AND LOSING. 1. Attitudes of the losers after the electoral outcomes Assumptions: -The literature on election outcomes agrees that the regime.
1 Revise for GCSE History: A Divided Union? The USA, 1941-80 This is the sixth of six revision topics. The impact of the Second World War McCarthyism and.

1 Revise for GCSE History: A Divided Union? The USA, This is the sixth of six revision topics. The impact of the Second World War McCarthyism and.
Lesson The success of government action to reduce racial inequality Explain the success or otherwise of government policies to reduce racial inequality.

Lesson The success of government action to reduce racial inequality Explain the success or otherwise of government policies to reduce racial inequality.
United States Presidents Lesson #5 of Packet. Republicans (Counterclockwise around the table beginning in lower left): George H.W. Bush, Abraham Lincoln,

United States Presidents Lesson #5 of Packet. Republicans (Counterclockwise around the table beginning in lower left): George H.W. Bush, Abraham Lincoln,
Domestic Policy Making Defining the President’s Agenda – where to find it. State of the Union messages, other public speeches. More specifically, OMB central.

Domestic Policy Making Defining the President’s Agenda – where to find it. State of the Union messages, other public speeches. More specifically, OMB central.
Checkers Richard M. Nixon. Born on January 9, 1913, Nixon was enforced in his early life to become a lieutenant in the army. He then grew up to become.

Checkers Richard M. Nixon. Born on January 9, 1913, Nixon was enforced in his early life to become a lieutenant in the army. He then grew up to become.
Wording questions. Write questions to find out which policy is favored by the Belgian people in the US-Iraq conflict Response scale Response scale 0 Don’t.

Wording questions. Write questions to find out which policy is favored by the Belgian people in the US-Iraq conflict Response scale Response scale 0 Don’t.
To what extent has the imposition of liberalism today affected people globally? CH. 9 Lesson 2.

To what extent has the imposition of liberalism today affected people globally? CH. 9 Lesson 2.
Security Economics Ross Anderson Cambridge University.

Security Economics Ross Anderson Cambridge University.
Information Security Economics – and Beyond Ross Anderson Cambridge University.

Information Security Economics – and Beyond Ross Anderson Cambridge University.
Information Security – Where Computer Science, Economics and Psychology Meet Ross Anderson Cambridge University.

Information Security – Where Computer Science, Economics and Psychology Meet Ross Anderson Cambridge University.
PRESIDENT LYNDON JOHNSON

PRESIDENT LYNDON JOHNSON
Do we still need NATO? Standard Grade Modern Studies – Europe.

Do we still need NATO? Standard Grade Modern Studies – Europe.
Public Opinion, Political Socialization and the Media

Public Opinion, Political Socialization and the Media
Presidents Ford and Carter Chapter 28. Economy of the 1970s Prosperity widespread after WWII in US Mid-1960s (Johnson Admin.) ▫Widespread spending on.

Presidents Ford and Carter Chapter 28. Economy of the 1970s Prosperity widespread after WWII in US Mid-1960s (Johnson Admin.) ▫Widespread spending on.
Presented By:. War in Afghanistan The war against Afghanistan was launched after Al Qaeda launched an attack on United States The United States attacked.

Presented By:. War in Afghanistan The war against Afghanistan was launched after Al Qaeda launched an attack on United States The United States attacked.
The Media II 12/5/2011. Clearly Communicated Learning Objectives in Written Form Upon completion of this course, students will be able to: – discuss and.

The Media II 12/5/2011. Clearly Communicated Learning Objectives in Written Form Upon completion of this course, students will be able to: – discuss and.
Portraits of Canada 2002. Portraits of Canada CRIC survey conducted by Environics Research Group and CROP. 2,939 adult Canadians were surveyed by telephone.

Portraits of Canada Portraits of Canada CRIC survey conducted by Environics Research Group and CROP. 2,939 adult Canadians were surveyed by telephone.
New Deal Critics Chapter 16, Section 2. ***Despite his critics, FDR was a hero to MILLIONS of Americans*** ***Even if his New Deal Policies did not perfectly.

New Deal Critics Chapter 16, Section 2. ***Despite his critics, FDR was a hero to MILLIONS of Americans*** ***Even if his New Deal Policies did not perfectly.

Similar presentations

Ads by Google