Reacting to cyber‐intrusions: the technical, legal and ethical dilemmas
Abstract
Introduces the subject with the classical three‐layer security paradigm for information assurance of “protect, detect, react”, noting that it leaves open the question of who or what should react, and how. Lists 15 technical possibilities for a reactive defence to a presumed intrusion which vary greatly in their degree of aggression, mentions the problem of false positives in cases of active defence strategies, and relates the strategies to relevant legal and ethical considerations. Concludes that verification of a genuine intrusion incident is often very difficult, but the cost of failure will also be high; this is linked to the asymmetric nature of information warfare, where the cost of defence is much higher than the cost of attack.
Keywords
Citation
Overill, R.E. (2003), "Reacting to cyber‐intrusions: the technical, legal and ethical dilemmas", Journal of Financial Crime, Vol. 11 No. 2, pp. 163-167. https://doi.org/10.1108/13590790410809095
Publisher
:MCB UP Ltd
Copyright © 2003, Emerald Group Publishing Limited