iT邦幫忙

2022 iThome 鐵人賽

DAY 1
0
Security

安全防護是為了保護重要的東西系列 第 1

《Security Engineering: A Guide to Building Dependable Distributed Systems》-經濟

  • 分享至 

  • xImage
  •  
這次主題是安全經濟:信息時代的商品的主要特色是**信息商品**,從商品本身的特性出發,對安全進行探討。
信息時代的商品的特點是,信息產品的“邊緣成本”(簡單理解爲:複製成本)爲0,也就是基本上來說:用戶數量再多,也不會增加產品or服務的成本。(當然,用戶數量級上去了之後,服務器的成本有一定增加)。

接下來引用書中的原文:
So what other characteristics of the information goods and services industries are particularly important?
翻譯:信息商品和信息服務的產業有哪些重要特性呢?

  1. *There are often network externalities, whereby the value of a network grows more than linearly in the number of users. *
    翻譯:網絡的延伸特性是:用戶的數量級
  2. There is often technical lock-in stemming from interoperability. Once a software firm is committed to using Windows as a platform for its product, it can be expensive to change; for users, too, changing platforms can be expensive. They have to buy new software, convert files (if they can),and retrain themselves.
    翻譯:技術常常互相關聯。如果一個軟體只能在windows系統上運行的話,那摩它的改變就會非常困難;如果用戶跨平臺使用的時候,又要買新的軟件,轉換文檔並重新學習。
    分析:互聯網產品:包括現在的網紅,流量的大小是價值判斷的重要標準;如今,跨平臺的技術,是技術人員更願意學習的內容。
    By now, you should not find this surprising. The combination of high fixed and low marginal costs, network effects and technical lock-in makes platform markets particularly likely to be dominated by single vendors, who stand to gain vast fortunes if they can win the race to dominate the market.
    翻譯:高固定成本+地邊邊緣成本,網絡的影響和技術的綁定,讓平臺成爲唯一的供應商,取得統治地位,並賺到更多的財富。
    分析:這樣是爲什麼,互聯網公司的打法,都是砸錢建立平臺。

Economics of Privacy
The big conundrum with privacy is that people say that they value privacy,yet act otherwise. If you stop people in the street and ask them their views,about a third say they are privacy fundamentalists and will never hand over their personal information to marketers or anyone else; about a third say they don’t care; and about a third are in the middle, saying they’d take a pragmatic view of the risks and benefits of any disclosure. However, the behavior that people exhibit via their shopping behavior — both online and offline — is quite different; the great majority of people pay little heed to privacy, and will give away the most sensitive information for little benefit. Privacy-enhancing technologies have been offered for sale by various firms, yet most have failed in the marketplace.

翻譯:隱私經濟:人們雖然嘴上說着重視隱私,但是其實,一點點利益他們就會出賣自己的隱私。
Economics of DRM
維基百科:數位版權管理(英語:Digital rights management,縮寫為DRM)是一系列存取控制技術,通常用於控制數位內容和裝置在被銷售之後的使用過程。DRM有時也稱為拷貝保護、複製控制、技術保護措施等,但這些稱呼存在爭議。
Many systems fail because the incentives are wrong, rather than because of some technical design mistake. As a result, the security engineer needs to understand basic economics as well as the basics of crypto, protocols, access controls and psychology. Security economics is a rapidly growing research area that explains many of the things that we used to consider just ‘bad weather’,such as the insecurity of Windows. It constantly throws up fascinating new insights into all sorts of questions from how to optimise the patching cycle through whether people really care about privacy to what legislators might do about DRM.
翻譯:很多系統的失敗不是因爲技術設計導致的,而是激勵措施錯了。因此安全工程師要像瞭解基礎技術一樣的瞭解:加密基礎,協議基礎,接觸控制,心理學。


系列文
安全防護是為了保護重要的東西1
圖片
  直播研討會
圖片
{{ item.channelVendor }} {{ item.webinarstarted }} |
{{ formatDate(item.duration) }}
直播中

尚未有邦友留言

立即登入留言