Cybersecurity, trustworthiness and resilient systems: guiding values for policy

Henschke, Adam; Ford, Shannon

doi:10.1080/23738871.2016.1243721

Cited by 5 publications

(2 citation statements)

References 12 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The underpinning factor of how successful IoT enabled cyber-terrorism is, is how resilient the system is to such attacks [27,28]. By recognising that the IoT is a potential enabler for cyber-terrorism, we are part of the way to reducing the impact of such attacks.…”

Section: Ethics and Responsibilities For Iot Enabled Cyber-terrorismmentioning

confidence: 99%

Terrorism and the Internet of Things: Cyber-Terrorism as an Emergent Threat

Henschke

2021

Advanced Sciences and Technologies for Security Applications

Self Cite

View full text Add to dashboard Cite

In this chapter I present an argument that cyber-terrorism will happen. This argument is premised on the development of a cluster of related technologies that create a direct causal link between the informational realm of cyberspace and the physical realm. These cyber-enabled physical systems fit under the umbrella of the ‘Internet of Things’ (IoT). While this informational/physical connection is a vitally important part of the claim, a more nuanced analysis reveals five further features are central to the IoT enabling cyber-terrorism. These features are that the IoT is radically insecure, that the components of the IoT are in the world, that the sheer numbers of IoT devices mean potential attacks can be intense, that the IoT will likely be powered by a range of Artificial Intelligence aspects, making it inscrutable, and that the IoT is largely invisible. Combining these five factors together, the IoT emerges as a threat vector for cyber-terrorism. The point of the chapter is to go beyond recognising that the IoT is a thing in the world and so can enable physical impacts from cyber-attacks, to offer these five factors to say something more specific about just why the IoT can potentially be used for cyber-terrorism. Having outlined how the IoT can be used for cyber-terrorism, I attend to the question of whether such actions are actually terrorism or not. Ultimately, I argue, as the IoT grows in scope and penetration of our physical worlds and behaviours, it means that cyber-terrorism is not a question of if, but when. This, I suggest, has significant ethical implications as these five features of the IoT mean that we ought to be regulating these technologies.

show abstract

Section: Ethics and Responsibilities For Iot Enabled Cyber-terrorismmentioning

confidence: 99%

Terrorism and the Internet of Things: Cyber-Terrorism as an Emergent Threat

Henschke

2021

Advanced Sciences and Technologies for Security Applications

Self Cite

View full text Add to dashboard Cite

show abstract

“…The steep rise of digital activity in modern life has created the need for strong cyber resilience. One important aspect of developing such resilience is the creation of cybersecurity policies (CSPs) that are able to coordinate and reinforce the efforts of a range of stakeholders (Henschke and Ford 2016;Pawlak and Barmpaliou 2017;Tiirmaa-Klaar 2016). Guiding policymakers in the development of CSPs are cybersecurity frameworks (CSFs).…”

Section: Introductionmentioning

confidence: 99%

Review of cybersecurity frameworks: context and shared concepts

Azmi

Tibben

Win

2018

Journal of Cyber Policy

View full text Add to dashboard Cite

In an effort to develop strong cyber resilience, international organisations, academic institutions, corporations and countries have been actively working to develop cybersecurity frameworks (CSFs). Such efforts emphasize various perspectives depending on the organisation's intention, while their contents involve the same concept. The aim of this paper is to incorporate the many varied perspectives on CSFs and gather them into a concise view by contrasting different intentions and distilling shared concepts. To do so, this study uses the document analysis method alongside two cycles of coding (descriptive coding and pattern coding) to excerpt 12 extant CSFs. The various intentions can be cascaded with respect to four areas: 1) the promoted action, 2) the driver, 3) the framework milieu and 4) the audience. The frameworks can also be examined according to three common concepts: 1) shared actions, 2) cyber pillars and 3) the framework life cycle. A total of seven shared actions are distilled from the frameworks, while the human, organisational, infrastructure, technology and law and regulation pillar are the most frequently discussed excerpts from the CSFs. Moreover, there are three processes for securing cyberspace: profiling, delivering and assuring. The shared concepts presented in this paper may also be useful for developing a general model of a CSF.

show abstract