Microsoft Proposes Public Health Model For Internet Security

  /     /     /  
Publicated : 22/11/2024   Category : security


Microsoft Proposes Public Health Model For Internet Security


How far can we push the virus metaphor for harmful computer code?



Speaking before the International Security Solutions Europe (ISSE) Conference in Berlin, Germany, on Tuesday, Scott Charney, Microsofts corporate vice president for trustworthy computing, proposed extending the health metaphor that dominates discussions of dangerous computer code to organizational and national network security policy.
His proposal, laid out in detail in a newly published paper titled
Collective Defense: Applying Public Health Models to the Internet,
calls for cyber security efforts modeled on efforts to address human illness.
Indeed, with all the computer viruses on the Internet, it only seems prudent to educate people about STDs (server-transmitted diseases), to promote electronic vaccination, to require some measure device hygiene, and to quarantine infectious computers.
Simply put, we need to improve and maintain the health of consumer devices connected to the Internet in order to avoid greater societal risk, wrote Charney in
a blog post
summarizing his speech. To realize this vision, there are steps that can be taken by governments, the IT industry, Internet access providers, users and others to evaluate the health of consumer devices before granting them unfettered access to the Internet or other critical resources.
On a general level, Charney is rephrasing calls for cooperation to address computer security issues. Thats something the public and private sector have been pursuing for years and no doubt will continue to do in the years ahead.
But Charney has more than information sharing among the white hats on his mind. He cites both simple and systematic measures -- the promotion of hand-washing, vaccination requirements for admission to schools, and students being forced to remain at home when sick -- as approaches that should be considered for Internet security.
In his paper, he suggests that devices could be required to present a health certificate as a condition for Internet access.
But using health as a metaphor for Internet security is not without problems. In 2009, the U.S. spent 17% of its GDP on healthcare, more than any other developed nation. Its safe to say that few aside from security vendors would favor mapping the healthcare spending model onto Internet security.
Whats more, health rules have been misused around the globe in the name of the social good, through efforts to cure political prisoners in mental health institutions and through forced medical procedures and medical experiments, for example.
You always have to be careful with metaphors, said Cindy Cohn, legal director for the
Electronic Frontier Foundation
. Metaphors can lead to really bad policy. That doesnt mean what Microsoft is proposing is bad. But the point here is to think hard about what it would mean.
Cohn points to peer-to-peer file sharing as an example of a technology that some people still consider to be harmful. She said shed be nervous about using health as a security model until the implications are more fully understood.
To Charneys credit, he does note that some circumstances, like the need to preserve human health by making an emergency call from an infected cell phone, might override network health measures. What remains to be determined is when network health concerns might trump other rights we take for granted.

Last News

▸ 7 arrested, 3 more charged in StubHub cyber fraud ring. ◂
Discovered: 23/12/2024
Category: security

▸ Nigerian scammers now turning into mediocre malware pushers. ◂
Discovered: 23/12/2024
Category: security

▸ Beware EMV may not fully protect against skilled thieves. ◂
Discovered: 23/12/2024
Category: security


Cyber Security Categories
Google Dorks Database
Exploits Vulnerability
Exploit Shellcodes

CVE List
Tools/Apps
News/Aarticles

Phishing Database
Deepfake Detection
Trends/Statistics & Live Infos



Tags:
Microsoft Proposes Public Health Model For Internet Security