Feeds

Cisco suggests new economic metric: Gross Domestic P0wnage

Count the cost of cybercrime to understand if government tech investments deliver

Providing a secure and efficient Helpdesk

Cisco has hosted the launch of a new “Cyber Readiness Index” and endorsed its author's belief that nations need to measure the impact of online crime if they are to understand the true impact of technology on their economies and societies.

The author of the Index is Melissa Hathaway, a former security advisor to President Barack Obama's and George W Bush's administrations. Now head of an eponymous consultancy firm, Hathaway is also a senior security advisor to Cisco.

The Index notes the many upsides that flow from technology, asserting that “governments and businesses that embrace the Internet and ICTs recognize it will enhance their long-term competitiveness and societal wellbeing, and potentially contribute up to eight percent of gross domestic product”. But the document says it can find only occasional assessment or quantification of negative economic impacts brought on by technology, citing data on the cost in money and jobs of intellectual property theft.

The study also considered publicly available data on adoption of technology and “network readiness”, before a five-point assessment of whether a nation is “Cyber Ready” was constructed. Those five points are:

  1. Articulation and publication of a National Cyber Security Strategy
  2. Does the country have an operational Computer Emergency Response Team (CERT) or Computer Security Incident Response Team (CSIRT)?
  3. Has the country demonstrated commitment to protect against cyber crime?
  4. Does the country have an information sharing mechanism?
  5. Is the country investing in cyber security basic and applied research and funding cyber security initiatives broadly?

Full results are available in this PDF, but here's the top 20 nations from the league table of the most “Cyber-Ready” nations:

  1. South Korea
  2. Sweden
  3. Iceland
  4. Denmark
  5. Finland
  6. Norway
  7. Netherlands
  8. United Kingdom
  9. Luxembourg
  10. Hong Kong
  11. Australia
  12. Japan
  13. Switzerland
  14. Macau
  15. Singapore
  16. New Zealand
  17. United States
  18. France
  19. Germany
  20. Canada

Hathaway, and Cisco chief security officer Jon Stewart both suggested the study should be a a wake-up call to governments, for the usual reason that the internet is a snake pit but also because without an attempt to count the negatives that come with wide technology adoption their policies aren't well-directed or designed.

Hathaway's rationale for such studies are as follows:

“Measuring the declining gains may force governments to align their digital agenda and economic vision with their cyber security strategy and invest in the derivative value of both. Bringing transparency to the economic losses may spark national and global interest in addressing the economic erosion. Cyber security initiatives, therefore, can enable and preserve the promise of the ICT dividend and help countries realize the full potential of the Internet economy.”

It's a rare day on which a Reg hack somewhere in the world is not offered a study on just how bad things are online and the terrible consequences that await if businesses, governments and you, dear readers, don't offer more time, attention and currency to security. This study has plenty of that thinking behind it, along with some contestable and contentious assertions like the idea counterfeiting and piracy cost jobs.

The study's proposed remedy is more and more serious policy responses to the dangers of the internet, along with more and better implementations of the ideas and institutions listed in the five points above.

Interestingly, before the event started Cisco said it would not entertain questions related to recent Snowden-related revelations.

Our question about pone response to Snowden-instigated action, the IETF's recently-announced plan to harden the internet and bake encryption into HTTP 2.0, saw Hathaway respond that “things happening in international venues are quite emotional.”

“When we enabled encryption for e-commerce we made it easy for criminals to hide their money,” she said. “We need to think about what we enable on the other side of the coin and third or fourth order effects.” ®

New hybrid storage solutions

More from The Register

next story
Apple Pay is a tidy payday for Apple with 0.15% cut, sources say
Cupertino slurps 15 cents from every $100 purchase
Google recommends pronounceable passwords
Super Chrome goes into battle with Mr Mxyzptlk
Reddit wipes clean leaked celeb nudie pics, tells users to zip it
Now we've had all THAT TRAFFIC, we 'deplore' this theft
YouTube, Amazon and Yahoo! caught in malvertising mess
Cisco says 'Kyle and Stan' attack is spreading through compromised ad networks
TorrentLocker unpicked: Crypto coding shocker defeats extortionists
Lousy XOR opens door into which victims can shove a foot
Greater dev access to iOS 8 will put us AT RISK from HACKERS
Knocking holes in Apple's walled garden could backfire, says securo-chap
Microsoft to patch ASP.NET mess even if you don't
We know what's good for you, because we made the mess says Redmond
NORKS ban Wi-Fi and satellite internet at embassies
Crackdown on tardy diplomatic sysadmins providing accidental unfiltered internet access
prev story

Whitepapers

Providing a secure and efficient Helpdesk
A single remote control platform for user support is be key to providing an efficient helpdesk. Retain full control over the way in which screen and keystroke data is transmitted.
Top 5 reasons to deploy VMware with Tegile
Data demand and the rise of virtualization is challenging IT teams to deliver storage performance, scalability and capacity that can keep up, while maximizing efficiency.
Reg Reader Research: SaaS based Email and Office Productivity Tools
Read this Reg reader report which provides advice and guidance for SMBs towards the use of SaaS based email and Office productivity tools.
Security for virtualized datacentres
Legacy security solutions are inefficient due to the architectural differences between physical and virtual environments.
Secure remote control for conventional and virtual desktops
Balancing user privacy and privileged access, in accordance with compliance frameworks and legislation. Evaluating any potential remote control choice.