TWC: Frontier: Collaborative: Beyond Technical Security: Developing an Empirical Basis for Socio-Economic Perspectives

TWC：前沿：协作：超越技术安全：为社会经济视角建立实证基础

• 批准号: 1619620
• 负责人: Damon McCoy
• 金额: $ 31.64万
• 依托单位: New York University
• 依托单位国家: 美国
• 项目类别: Continuing Grant
• 财政年份: 2015
• 资助国家: 美国
• 起止时间: 2015-12-01 至 2018-09-30
• 项目状态: 已结题
• 来源: https://www.nsf.gov/awardsearch/showAward?AWD_ID=1619620&HistoricalAwards=false
• 关键词: TWC; Frontier; Collaborative; Beyond; Technical

This project tackles the social and economic elements of Internet security: how the motivations and interactions of attackers, defenders, and users shape the threats we face, how they evolve over time, and how they can best be addressed. While security is a phenomenon mediated by the technical workings of computers and networks, it is ultimately a conflict driven by economic and social issues that merit a commensurate level of scrutiny. Today's online attackers are commonly profit-seeking, and the implicit social networks that link them together play a critical role in fostering the innovation and the efficiency underlying cybercrime markets. Further, the socio-economic lens can provide vital insights not only for understanding attackers, but victims too. Today's consumers, corporations, and governments make large investments in security technology with little understanding of their ultimate return-on-investment. And the ease with which we adopt online personas and relationships has created a collective blind spot that attackers exploit all-too-easily.Grappling with these socio-economic dimensions is of fundamental importance for achieving a secure future information infrastructure, and developing a sound understanding of them requires research grounded in empiricism. Accordingly, the project has four key components: (1) pursue in-depth empirical analyses of a range of online criminal activities; (2) map out the evolving attacker ecosystem that preys on online social networks, and the extent to which unsafe online behavior is itself adopted and transmitted; (3) study how relationships among these criminals are established, maintained, and evolve over time; and (4) measure the efficacy of today's security interventions, both in the large and at the level of individual users. Across all of these efforts, the aim is to identify bottleneck elements where interventions might most effectively undermine entire ecosystems of abusive and criminal activities. Consequently, this research has the potential to dramatically benefit society by undermining entire cybercrime ecosystems: disrupting underground activities, infrastructure, and social networks through strategic intervention. The work will also create numerous educational opportunities, including undergraduate and graduate education as well as workforce education for security professionals, law enforcement, civil regulatory agencies, and legal scholars and professionals tasked with countering modern Internet threats.

该项目解决互联网安全的社会和经济因素：攻击者、防御者和用户的动机和互动如何塑造我们面临的威胁，它们如何随着时间的推移而演变，以及如何最好地解决它们。 虽然安全是一种由计算机和网络技术运作介导的现象，但它最终是由经济和社会问题驱动的冲突，值得相应程度的审查。 当今的在线攻击者通常都是以营利为目的，而将他们联系在一起的隐性社交网络在促进网络犯罪市场的创新和效率方面发挥着关键作用。 此外，社会经济视角不仅可以为理解攻击者提供重要的见解，也可以为理解受害者提供重要的见解。 当今的消费者、企业和政府在安全技术上进行了大量投资，但对其最终投资回报却知之甚少。 我们轻松采用在线角色和关系已经造成了攻击者很容易利用的集体盲点。解决这些社会经济维度对于实现安全的未来信息基础设施并形成良好的理解至关重要其中需要以经验主义为基础的研究。 因此，该项目有四个关键组成部分：（1）对一系列网络犯罪活动进行深入的实证分析； (2) 描绘出不断发展的、针对在线社交网络的攻击者生态系统，以及不安全在线行为本身被采用和传播的程度； (3) 研究这些犯罪分子之间的关系如何随着时间的推移而建立、维持和演变； (4) 衡量当今安全干预措施在大型用户和个人用户层面的有效性。 所有这些努力的目的是确定干预措施可能最有效地破坏整个滥用和犯罪活动生态系统的瓶颈因素。 因此，这项研究有可能通过破坏整个网络犯罪生态系统来极大地造福社会：通过战略干预破坏地下活动、基础设施和社交网络。这项工作还将创造大量的教育机会，包括本科生和研究生教育以及针对安全专业人员、执法机构、民事监管机构以及负责应对现代互联网威胁的法律学者和专业人员的劳动力教育。