book

We Have Root

by Bruce Schneier

September 2019

Beginner

304 pages

8h 22m

English

Wiley

Read now

Unlock full access

Cyberconflicts and National SecurityCounterterrorism Mission CreepSyrian Electronic Army CyberattacksThe Limitations of IntelligenceComputer Network Exploitation vs. Computer Network AttackiPhone Encryption and the Return of the Crypto WarsAttack Attribution and Cyber ConflictMetal Detectors at Sports StadiumsThe Future of Ransomware
Hacking AirplanesReassessing Airport Security
Hacking Consumer DevicesSecurity Risks of Embedded SystemsSamsung Television Spies on ViewersVolkswagen and Cheating SoftwareDMCA and the Internet of ThingsReal-World Security and the Internet of ThingsLessons from the Dyn DDoS AttackRegulation of the Internet of ThingsSecurity and the Internet of ThingsBotnetsIoT Cybersecurity: What’s Plan B?
The NSA’s Cryptographic CapabilitiesiPhone Fingerprint AuthenticationThe Future of Incident ResponseDrone Self-Defense and the LawReplacing Judgment with AlgorithmsClass Breaks
Candidates Won’t Hesitate to Use Manipulative Advertising to Score VotesThe Security of Our Election SystemsElection SecurityHacking and the 2016 Presidential Election
Restoring Trust in Government and the InternetThe NSA Is Commandeering the InternetConspiracy Theories and the NSAHow to Remain Secure against the NSAAir GapsWhy the NSA’s Defense of Mass Data Collection Makes No SenseDefending Against Crypto BackdoorsA Fraying of the Public/Private Surveillance PartnershipSurveillance as a Business ModelFinding People’s Locations Based on Their Activities in CyberspaceSurveillance by AlgorithmMetadata = SurveillanceEveryone Wants You to Have Security, But Not from ThemWhy We EncryptAutomatic Face Recognition and SurveillanceThe Internet of Things that Talk about You behind Your BackSecurity vs. SurveillanceThe Value of EncryptionCongress Removes FCC Privacy Protections on Your Internet UsageInfrastructure Vulnerabilities Make Surveillance Easy
More on Feudal SecurityThe Public/Private Surveillance PartnershipShould Companies Do Most of Their Computing in the Cloud?Security Economics of the Internet of Things

Human-Machine Trust FailuresGovernment Secrecy and the Generation GapChoosing Secure PasswordsThe Human Side of HeartbleedThe Security of Data DeletionLiving in a Code Yellow WorldSecurity Design: Stop Trying to Fix the UserSecurity Orchestration and Incident Response
Government Secrets and the Need for WhistleblowersProtecting Against LeakersWhy the Government Should Help LeakersLessons from the Sony HackReacting to the Sony HackAttack Attribution in CyberspaceOrganizational DoxingThe Security Risks of Third-Party DataThe Rise of Political DoxingData Is a Toxic AssetCredential Stealing as an Attack VectorSomeone Is Learning How to Take Down the InternetWho Is Publishing NSA and CIA Secrets, and Why?Who Are the Shadow Brokers?On the Equifax Data Breach
Our Newfound Fear of RiskTake Back the InternetThe Battle for Power on the InternetHow the NSA Threatens National SecurityWho Should Store NSA Surveillance Data?Ephemeral AppsDisclosing vs. Hoarding VulnerabilitiesThe Limits of Police SubterfugeWhen Thinking Machines Break the LawThe Democratization of CyberattackUsing Law against TechnologyDecrypting an iPhone for the FBILawful Hacking and Continuing VulnerabilitiesThe NSA Is Hoarding VulnerabilitiesWannaCry and VulnerabilitiesNSA Document Outlining Russian Attempts to Hack Voter RollsWarrant Protections against Police Searches of Our Data
Chapter 1: Crime, Terrorism, Spying, and WarChapter 2: Travel and SecurityChapter 3: Internet of ThingsChapter 4: Security and TechnologyChapter 5: Elections and VotingChapter 6: Privacy and SurveillanceChapter 7: Business and Economics of SecurityChapter 8: Human Aspects of SecurityChapter 9: Leaking, Hacking, Doxing, and WhistleblowingChapter 10: Security, Policy, Liberty, and Law

Content preview from We Have Root

7Business and Economics of Security

More on Feudal Security

Originally published in the Harvard Business Review website, June 6, 2013

Facebook regularly abuses the privacy of its users. Google has stopped supporting its popular RSS feeder. Apple prohibits all iPhone apps that are political or sexual. Microsoft might be cooperating with some governments to spy on Skype calls, but we don’t know which ones. Both Twitter and LinkedIn have recently suffered security breaches that affected the data of hundreds of thousands of their users.

If you’ve started to think of yourself as a hapless peasant in a Game of Thrones power struggle, you’re more right than you may realize. These are not traditional companies, and we are not traditional customers. These are feudal lords, and we are their vassals, peasants, and serfs.

Power has shifted in IT, in favor of both cloud-service providers and closed-platform vendors. This power shift affects many things, and it profoundly affects security.

Traditionally, computer security was the user’s responsibility. Users purchased their own antivirus software and firewalls, and any breaches were blamed on their inattentiveness. It’s kind of a crazy business model. Normally we expect the products and services we buy to be safe and secure, but in IT we tolerated lousy products and supported an enormous aftermarket for security.

Now that the IT industry has matured, we expect more security “out of the box.” This has become possible largely because ...

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

Start your free trial

How I Built a Personal Board of Directors With GenAI

Publisher Resources

ISBN: 9781119643012Purchase book

We Have Root

by Bruce Schneier

7Business and Economics of Security

More on Feudal Security

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

You might also like

How I Built a Personal Board of Directors With GenAI

Spotlight on Cloud: The Future of Internet Security with Bruce Schneier

Do You Matter?: How Great Design Will Make People Love Your Company

Get it Done Now!

Publisher Resources

More on Feudal Security

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,and much more.

You might also like

How I Built a Personal Board of Directors With GenAI

Spotlight on Cloud: The Future of Internet Security with Bruce Schneier

Do You Matter?: How Great Design Will Make People Love Your Company

Get it Done Now!

Publisher Resources

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.