Читать книгу The Digital Big Bang - Phil Quade - Страница 18

With so much at stake, it's time to borrow a page from the Scientific Revolution:

Scientific Revolution	Cybersecurity Scientific Revolution
Admit our ignorance (redraw the earth's maps).	Acknowledge what we got wrong (authentication).
Use steadily increased strategies for becoming masters of our physical domain (sail oceans, fly planes, explore space).	Implement steadily stronger strategies to become masters of the cyber domain.
Replace fear with curiosity.	Replace outmoded assumptions and strategies with rigorous fundamental strategies that build up to advanced strategies.

We need to stop expecting our network operators to continuously run ahead of ever more sophisticated attacks. You can't outrun the speed of light.

We can achieve better cybersecurity by thinking like physicists and chemists, by postulating and outlining the theorems and proofs necessary to master the cyberspace domain. As critical as these fundamentals are, though, they can easily be overlooked or forgotten by a digital culture that looks myopically to the near future, placing short-term gains ahead of long-term stability and sustainability. Cybersecurity is a marathon—not a sprint.

As our connectivity expands and deepens, the strength and intractability of these fundamentals only becomes more apparent. And more necessary.

With the exponential increase of digital connectivity, cyber-physical interfaces (in the Internet of Things), and machine learning and artificial intelligence, it is more important than ever to treat cybersecurity as a science and a business enabler, as opposed to simply a cost of doing business.

We must reveal the connection between fundamental scientific principles and cybersecurity best practices. What are the foundational primitives and rules that would have been beneficial to have at the beginning of the Internet? How would things have been different if they had been in place? How can we create a better form of cybersecurity based on the nature of fundamental forces and accurate assumptions?

Embracing cybersecurity as a science can be an incredibly powerful and effective way to underpin innovation. It will enable us to focus on effectively leveraging the Internet's forces of speed and connectivity as well as one more unchangeable force that we'll talk about later in this book: the fallibility and needs of humans.

It is a bold goal to attempt to make cybersecurity more scientific, but in our view, it is achievable with the right vision and engineering. By doing so, we can further extend the power of speed and connectivity to thrive within the digital world. Rather than suffering through the cosmic big bang's equivalent of the melting of our planet by the death of our sun billions of years from now, let's understand, define, and work within the laws of the science of cybersecurity.