At the Nexus of Cybersecurity and Public Policy: Some Basic Concepts and Issues

We Depend On Information And Information Technology (it) To Make Many Of Our Day-to-day Tasks Easier And More Convenient. Computers Play Key Roles In Transportation, Health Care, Banking, And Energy. Businesses Use It For Payroll And Accounting, Inventory And Sales, And Research And Development. Modern Military Forces Use Weapons That Are Increasingly Coordinated Through Computer-based Networks. Cybersecurity Is Vital To Protecting All Of These Functions. Cyberspace Is Vulnerable To A Broad Spectrum Of Hackers, Criminals, Terrorists, And State Actors. Working In Cyberspace, These Malevolent Actors Can Steal Money, Intellectual Property, Or Classified Information; Impersonate Law-abiding Parties For Their Own Purposes; Damage Important Data; Or Deny The Availability Of Normally Accessible Services. Cybersecurity Issues Arise Because Of Three Factors Taken Together - The Presence Of Malevolent Actors In Cyberspace, Societal Reliance On It For Many Important Functions, And The Presence Of Vulnerabilities In It Systems. What Steps Can Policy Makers Take To Protect Our Government, Businesses, And The Public From Those Would Take Advantage Of System Vulnerabilities? At The Nexus Of Cybersecurity And Public Policy Offers A Wealth Of Information On Practical Measures, Technical And Nontechnical Challenges, And Potential Policy Responses. According To This Report, Cybersecurity Is A Never-ending Battle; Threats Will Evolve As Adversaries Adopt New Tools And Techniques To Compromise Security. Cybersecurity Is Therefore An Ongoing Process That Needs To Evolve As New Threats Are Identified. At The Nexus Of Cybersecurity And Public Policy Is A Call For Action To Make Cybersecurity A Public Safety Priority. For A Number Of Years, The Cybersecurity Issue Has Received Increasing Public Attention; However, Most Policy Focus Has Been On The Short-term Costs Of Improving Systems. In Its Explanation Of The Fundamentals Of Cybersecurity And The Discussion Of Potential Policy Responses, This Book Will Be A Resource For Policy Makers, Cybersecurity And It Professionals, And Anyone Who Wants To Understand Threats To Cyberspace. Frontmatter; Preface; Acknowledgment Of Reviewers; Contents; Summary; 1 Why Care About Cybersecurity?; 2 Some Basics Of Computing And Communications Technology And Their Significance For Cybersecurity; 3 On The Nature Of Cybersecurity; 4 Enhancing Cybersecurity; 5 Tensions Between Cybersecurity And Other Public Policy Concerns; 6 Findings And Conclusion; Appendixes; Appendix A: Committee Members And Staff; Appendix B: Bibliography David Clark, Thomas Berson, And Herbert S. Lin, Editors ; Committee On Developing A Cybersecurity Primer: Leveraging Two Decades Of National Academies Work, Computer Science And Telecommunications Board, National Research Council Of The National Academies. Title From Pdf Title Page. Includes Bibliographical References. Support For This Project Was Provided By The National Science Foundation Under Award Number Cns-0940372. Additional Support Was Provided By Microsoft Corporation, Google, Inc., And The President's Committee Of The National Academies. English.