Nobody minding the store: security in the age of the lowest bidder

So, to recap: Satellite communication systems worldwide are “protected” by easily cracked hard-coded passwords. The private internet connecting the world’s mobile phone operators remains replete with vulnerabilities. Russia has successfully hacked into American power-plant control systems. Oh, and voting machines in use in 18 states can be remotely hijacked.

Do you see a theme here? We assume that everything is fine, that the world in which we live rests on solid foundations, that competent grown-ups are in charge of the fundamental infrastructure on which our society rests, which have been constructed as fault-tolerant, resilient systems. We assume somebody somewhere is at the switch, keeping a sharp eye on things.

Recommended For You

StockKosh - Gigantic Collection of Premium 35,000+ 100% Royalty Free Never Before Released Stock Gra

StockKosh is the Biggest Ever Stock Content Launch in the History of Jvzoo. Featuring 115,000+ Images, 10,000+ Vectors, 665+ Transparent PNGs, 3,100+ HD Videos, 2,500+ HQ Clipart, 1,500+ Audio Tracks, 700+ Video Backgrounds, 8,000+ Animated Graphics and

In some cases, such as aviation, that does indeed seem to be the case. In others, the infrastructure is too decentralized and disconnected to be seriously at risk. But in far too many others, our we have constructed a perfect-storm-in-waiting of tightly coupled networks, zero oversight, and laughable attempts at security. Authority without responsibility, in other words. And in those cases, the assumption that our structural foundations are fine is a laughable pipe dream.

Reminders of this state of affairs come every month, with every infosec conference, every excited burst of news coverage following the discovery of a new high-profile hole. We patch the holes — maybe — but we don’t change our approach. At last week’s Black Hat conference, its creator Jeff Moss mused: “attackers have strategies, but defenders only seem to have tactics.”

This is tacitly deliberate. We could have a strategy of hardening our collective infrastructure to improve its security, but the daunting list of upgrades (or downgrades) that would require would be ruinously expensive. This isn’t a problem unique to information security: for instance, 54,000 bridges in America need repair, too. Are we going to repair all 54,000 anytime soon? Don’t make me laugh.

I’ve observed while travelling that one of the most striking differences in quality of life, between nations with comparable wealth, is simply what’s culturally acceptable. (A famous example: in Japan it is not culturally acceptable for trains to be late. In wealthier America … not so much.) The only way we’re going to harden our infrastructure, and fix our bridges, if it becomes culturally unacceptable for them not to be fixed.

I don’t see that happening. Instead, in a wealthy world of increasing economic disparity, I expect us to increasingly see two-tier infrastructure; stable, secure, reliable infrastructure for the 20%, and a haphazard, kinda-mostly-functional, vulnerable tier for the 80%. “Natural monopolies” such as power grids will be replaced by e.g. private solar power and PowerWalls. At some point one of the US mobile phone provides may well decide that it’s strategically worth it to become the Apple of phone service, charging twice as much for far better service and security. Etcetera.

Unless, of course, some kind of perfect storm arrives first, and our security problem turns into a genuine crisis, or even catastrophe. I’m an optimist; I don’t think that will happen. But it’s increasingly hard to ignore the possibility.

Recommended For You

Covert Copy Traffic Pro OTO

This plugin allows you to automatically insert links and text when people copy and paste or scrape your blog content. The Pro version includes the ability to use the plugin outside of WordPress.

Viral Traffic Machine - OTO 7 - 7x Software Bundle - Downsell

Viral Traffic Machine - OTO 7 - 7x Software Bundle - Downsell

LeadFunnelCloud Reseller

Get this Cloud Based App That Creates INSTANT Done-For-You UNLIMITED Profitable Lead Funnels To Build A HUGE List,Drive Targeted Social Traffic and Affiliate Commissions In Just 60 Seconds

Original Article : HERE ; This post was curated & posted using : RealSpecific

Thank you for taking the time to read our article.

If you enjoyed our content, we'd really appreciate some "love" with a share or two.

And ... Don't forget to have fun!

Recommended Products

One Stop SEO Reseller (50 Licenses)

One Stop SEO Reseller (50 Licenses)

Store Buildr - Back to School

The Ultimate ‘Done For You’ Niche Website Store!

Stream Store Bundle

Unlimited Commissions Having Each And Every Amazon Product Delivered On-Demand To Your Store! (+Dynamic Posts Plugin)

Leave a Reply