Hult Fredrik, Sivanesan Giri
J Bus Contin Emer Plan. 2013;7(2):112-25.
In January 2012, the World Economic Forum made cyber attacks its fourth top global risk. In the 2013 risk report, cyber attacks were noted to be an even higher risk in absolute terms. The reliance of critical infrastructure on cyber working has never been higher; the frequency, intensity, impact and sophistication of attacks is growing. This trend looks likely to continue. It can be argued that it is no longer a question whether an organisation will be successfully hacked, but how long it will take to detect. In the ever-changing cyber environment, traditional protection techniques and reliance on preventive controls are not enough. A more agile approach is required to give assurance of a sufficiently secure digital society. Are we faced with a paradigm shift or a storm in a digital teacup? This paper offers an introduction to why cyber is important, a wider taxonomy on the topic and some historical context on how the discipline of cyber security has evolved, and an interpretation on what this means in the new normal of today.
2012年1月,世界经济论坛将网络攻击列为全球第四大风险。在2013年的风险报告中,网络攻击被指出从绝对意义上讲是更高的风险。关键基础设施对网络运行的依赖程度从未如此之高;攻击的频率、强度、影响和复杂程度都在不断增加。这种趋势似乎还会持续下去。可以说,现在不再是一个组织是否会被成功黑客攻击的问题,而是需要多长时间才能检测到的问题。在不断变化的网络环境中,传统的保护技术和对预防性控制的依赖是不够的。需要一种更灵活的方法来确保数字社会足够安全。我们面对的是范式转变还是茶杯里的风暴?本文介绍了网络为何重要,关于该主题更广泛的分类法,以及网络安全学科如何发展的一些历史背景,并解读了这在当今新常态下意味着什么。
