Anderson Ross, Moore Tyler
Computer Laboratory, University of Cambridge, 15 JJ Thomson Avenue, Cambridge CB3 0FD, UK.
Science. 2006 Oct 27;314(5799):610-3. doi: 10.1126/science.1130992.
The economics of information security has recently become a thriving and fast-moving discipline. As distributed systems are assembled from machines belonging to principals with divergent interests, we find that incentives are becoming as important as technical design in achieving dependability. The new field provides valuable insights not just into "security" topics (such as bugs, spam, phishing, and law enforcement strategy) but into more general areas such as the design of peer-to-peer systems, the optimal balance of effort by programmers and testers, why privacy gets eroded, and the politics of digital rights management.
信息安全经济学最近已成为一门蓬勃发展且发展迅速的学科。由于分布式系统是由属于不同利益主体的机器组装而成,我们发现激励措施在实现可靠性方面正变得与技术设计同等重要。这个新领域不仅为“安全”主题(如漏洞、垃圾邮件、网络钓鱼和执法策略)提供了有价值的见解,还为更广泛的领域提供了见解,如对等系统的设计、程序员和测试人员的最佳工作量平衡、隐私为何受到侵蚀以及数字版权管理的策略。
