Why the Cybersecurity Framework Will Make Us Less Secure

20 Pages Posted: 12 Jul 2018

See all articles by Eli Dourado

Eli Dourado

Center for Growth and Opportunity

Andrea Castillo O'Sullivan

George Mason University - Mercatus Center

Date Written: 04/17/2014

Abstract

The "Cybersecurity Framework" is an ambitious plan to federally categorize industries and prioritize vulnerabilities as determined by federal agencies and private consultants. Cybersecurity Framework proponents believe this federally designed, initially voluntary set of standards can improve cybersecurity for protected firms and industries that the Department of Homeland Security designates as "critical infrastructure sectors." In reality, much of the functioning Internet governance that users enjoy today is not a product of government committees but rather a natural emergence from the rules and incentives that permeate the Internet, called "dynamic cybersecurity." What is more, the Cybersecurity Framework is likely to cause more problems than it solves. This paper describes dynamic cybersecurity provision, contrasts this with the shortcomings of the Cybersecurity Framework, and proposes better reforms to improve dynamic cybersecurity provision for critical infrastructure.

Suggested Citation

Dourado, Eli and Castillo O'Sullivan, Andrea, Why the Cybersecurity Framework Will Make Us Less Secure (04/17/2014). MERCATUS RESEARCH, Available at SSRN: https://ssrn.com/abstract=3211631 or http://dx.doi.org/10.2139/ssrn.3211631

Eli Dourado (Contact Author)

Center for Growth and Opportunity

3525 Old Main Hill
Logan, UT 84322
United States

Andrea Castillo O'Sullivan

George Mason University - Mercatus Center ( email )

3434 Washington Blvd. 4th Floor
Arlington, VA VA 22201
United States

Here is the Coronavirus
related research on SSRN

Paper statistics

Downloads
34
Abstract Views
406
PlumX Metrics