U.S. Computer Insecurity Redux

摘要

The United States continues to face serious challenges in protecting computer systems and communications from unauthorized use and manipulation. In terms of computer security, the situation is worse than ever, because of the nation's dramatically increased dependence on computers, the widespread growth of the Internet, the steady creation of pervasively popular applications, and the increased interdependence on the integrity of others. There is a seemingly never-ending stream of old and new security flaws, as well as markedly increased security threats and risks, such as viruses, Trojan horses, penetrations, insider misuse, identity theft, and fraud. Today's systems, applications, and networking tend to largely ignore security concerns―including such issues as integrity, confidentiality, availability, authentication, authorization, accountability, and the spread of malicious code and e-mail spam―and would-be attackers and misusers have significantly wider knowledge and experience. Moreover, there is a general naivete whereby many people seem to believe that technology is the answer to all security questions, irrespective of what the questions are.