Upload File

cybersecurity 3 cybersecurity costs and causes

28
Introduction to cybersecurity, 2013 Slide 1 Cybersecurity: costs and causes

Upload: sommerville-videos

Post on 22-Jan-2015

208 views

Category:

Technology


8 download

Report

DESCRIPTION

Explains why it is difficult to estimate the costs of cyberattacks and discusses some fundamental causes for cybersecurity vulnerabilities

TRANSCRIPT

  • 1. Cybersecurity: costs and causesIntroduction to cybersecurity, 2013Slide 1

2. The cybersecurity problem How big a problem is cybersecurity for individuals, businesses and nations? Why is it difficult to make networked systems secure?Introduction to cybersecurity, 2013Slide 2 3. The scale of the problem Its a big problem How big ? We really do not know Many surveys on cyber-security related losses but very wide variations and different methodologies Introduction to cybersecurity, 2013Slide 3 4. Individuals Cyber fraud Identity theft Cyber bullying and cyber stalkingIntroduction to cybersecurity, 2013Slide 4 5. The Guardian 2013 Introduction to cybersecurity, 2013Slide 5 6. Introduction to cybersecurity, 2013Slide 6 7. Businesses Differing estimates: The extent of losses depends on how these losses are measured and what data is collected Industry reluctant to release figures but when they do, they tend to overvalue assets Introduction to cybersecurity, 2013Slide 7 8. The Scotsman 2013 deadline.co.uk 2012 Introduction to cybersecurity, 2013Slide 8 9. The IET 2013 Introduction to cybersecurity, 2013Slide 9 10. Nations Cyberattacks on critical infrastructures are seen as a critical economic risk by all countries Significant resources now being devoted to cyberdefence Introduction to cybersecurity, 2013Slide 10 11. Wall Street Journal, 2013 Introduction to cybersecurity, 2013Slide 11 12. Introduction to cybersecurity, 2013 World Affairs Journal 2013Slide 12 13. Why has cybersecurity become such a major problem Scale and ubiquity of the internet Lower level of physical risk to criminals Fundamental business and technical reasons for insecurity Introduction to cybersecurity, 2013Slide 13 14. Business reasons Connection of computers to the internet can cut costs, improve the efficiency and responsiveness of business processes and open up new opportunities for interaction. Therefore business has focused on connectivity rather than security Introduction to cybersecurity, 2013Slide 14 15. Security is inconvenient and slows down transactions. Businesses have decided to prioritise convenience and usability over security. Accepting the cost of losses through cyber fraud may be a cost-effective strategy Introduction to cybersecurity, 2013Slide 15 16. Internet vulnerabilities The Internet was invented in the 1970s as a network between organisations that were trustworthy and which trusted each other The information maintained on their computers was non-commercial and not thought to be of interest to others Introduction to cybersecurity, 2013Slide 16 17. Consequently, security was not a factor in the design of internet protocols, practices and equipment. Security slows things down so efficiency was prioritized Introduction to cybersecurity, 2013Slide 17 18. These protocols made it easy for the Internet to be universally adopted in the 1990s However, the problems can only be properly addressed by a complete redesign of Internet protocols, which is probably commercially impractical. Introduction to cybersecurity, 2013Slide 18 19. Internet vulnerabilities Unencypted traffic by default Packets can be intercepted and the contents read by anyone who intercepts these packetsIntroduction to cybersecurity, 2013Slide 19 20. Internet vulnerabilities DNS system Possible to divert traffic from legitimate to malicious addresses Easy to hide where traffic has come from Domain name servers vulnerable to DoS attacks Introduction to cybersecurity, 2013Slide 20 21. Internet vulnerabilities Mail protocol No charging mechanism for mail Hence spam is possibleIntroduction to cybersecurity, 2013Slide 21 22. Technology is not the only problem Internet vulnerabilities make possible some kinds of cyber-attack but it is important to remember that cybersecurity is a socio-technical systems problem Problems almost always stem from a mix of technical, human and Introduction to cybersecurity, 2013Slide 22 23. Risk classification Risks due to actions of people Risks due to hardware or software Risks due to organisational processesIntroduction to cybersecurity, 2013Slide 23 24. Actions of people Deliberate or accidental exposure of legitimate credentials to attackers Failure to maintain secure personal computers and devicesIntroduction to cybersecurity, 2013Slide 24 25. Insider corruption or theft of data Preference for convenience and usability over security Weak passwords set because they are easy to remember and quick to typeIntroduction to cybersecurity, 2013Slide 25 26. Hardware and software Misconfigured firewalls and mail filters Programming errors and omissions in software lead to malicious penetration Buffer overflow attacks SQL poisoning attacksIntroduction to cybersecurity, 2013Slide 26 27. Organisational processes No established process and checks for updating and patching software Lack of security auditing Lack of systematic backup processesIntroduction to cybersecurity, 2013Slide 27 28. Summary Cyber attacks are a major cost for business, government and individuals. But quantifying this cost is difficult. The Internet was not designed as a secure network and making it secure is practically impossible To make systems useable, people take actions that introduce vulnerabilities into sociotechnical systems. Introduction to cybersecurity, 2013Slide 28


Guide to Costs, billing and profitability · law firm can effectively implement a ‘best practice’ approach to costs. Information about the main causes of costs dissatisfaction

Transit damage costs, causes, reduction - Sevatas

CYBERSECURITY GUIDE - NWPPA...Cybersecurity risk also affects an individual company’s financial health. It can drive up costs, impact revenue, and harm an organization’s ability

Counting Cases, Counting Causes, Counting Costs...4/8/2020 1 Counting Cases, Counting Causes, Counting Costs of COVID-19 Renée Branch Canady, PhD, MPA CEO, MPHI MSU Institute for

Gangs of Central America: Causes, Costs, and … · Gangs of Central America: Causes, Costs, and Interventions By Dennis Rodgers, Robert Muggah, and Chris Stevenson An Occasional

INSIGHTS INTO: CYBERSECURITY - Abacus Technologies · can help you identify risks and mitigate those risks. Cybersecurity insurance is a great way to mitigate the costs. You need

LABOR COSTS & CONTROLS FIXED vs VARIABLE LABOR COSTS HIGH TURNOVER, CAUSES & DETERENTS SAVING ON LABOR FORECASTING LABOR COSTS COMPENSATION TECHNIQUES

CYBERSECURITY...- Universities are adding to their portfolio of cybersecurity careers but not at a sufficient rate and the costs of necessary certifications remain relatively high

The causes and costs of absenteeism -

THE LEBANESE CIVIL WAR (1975-1990): CAUSES AND COSTS …

Evaluation of the Scale, Causes and Costs of Waste Medicinesdiscovery.ucl.ac.uk/1350234/1/Evaluation_of_NHS_Medicines_Waste... · 2 Evaluation of the Scale, Causes and Costs of Waste

Harcourt Brace & Company INFLATION: ITS CAUSES AND COSTS Chapter 28

Introduction The Causes & Costs of War in Africa From

Bank Runs Causes, Benefits, And Costs · BANK RUNS: CAUSES, BENEFITS, AND COSTS George G. Kaufman Introduction Bankruns haveabadreputation. Ashoutof“run” strikes the same fear

Causes and Countermeasures of Construction Project Costs beyond Budgeting · Causes and Countermeasures of Construction Project Costs beyond Budgeting Ding Yuxian 1,a, Jin Guohui

Cybersecurity 3 cybersecurity costs and causes

Economic Informality: Causes, Costs, and Policies - A Literature Survey

Coal/gas plant cycling: Costs, causes, impacts 2016/Lew...Imagination at work Coal/gas plant cycling: Costs, causes, impacts Dr. Debra Lew, GE Energy Consulting Harvard Electricity

Spinal Cord Injury Data: (Complete Guide: Causes, Costs, Compensation)

Inflation: Its Causes, Effects, and Social Costs

The Internet-of-Insecure-Things Causes, Trends and ... · 1 The Internet-of-Insecure-Things Causes, Trends and Responses ( @ RIPE 77 ) Arman Noroozian ( Economics of Cybersecurity,

CHAP05 Inflation: Its Causes, Effects, and Social Costs

Evaluation of the Scale, Causes and Costs of Waste Medicines · 6 Evaluation of the Scale, Causes and Costs of Waste Medicines Root causes of medicine wastage Failures to take medicines

Causes, Consequences, and Costs of War and Militarism

Analysis of the Causes and Costs of Manual Handling Incidents in

Talking Points: Differences in the Workplace Causes, Costs ...advance.latech.edu/pdf/Talking_Points_Differences_in_the...1 Talking Points: Differences in the Workplace – Causes,

Analysis of Crash Causes, Costs, and … Analysis of Crash Causes, Costs, and Countermeasures 2 . in Alabama Work Zones . 3 . Virginia P. Sisiopiku*, Ph.D. Associate Professor . Civil,

Fires in Indonesia: causes, costs and policy implications

Causes, Consequences, and Costs of War and Militarism Martin Donohoe

Causes and costs of globalisation. What is globalisation? W4#t=103

Inflation: Its Causes, Effects, and Social Costs - bc.edu · Inflation: Its Causes, Effects, and Social Costs ... preceding slide: ... § the opportunity cost of holding money (instead

What are the underlying causes of poor quality and high costs--and

Examining the costs and causes of cyber incidents · 2016-10-03 · Examining the costs and causes of cyber incidents Sasha Romanosky* RAND Corporation, 1200 South Hayes St, ... sample

Causes of Excess Product Costs

Causes and Solutions of Fleet Safety Accidents. Topics of Discussion Vehicle Accidents Vehicle Accidents Statistics Statistics Costs of Accidents Costs