Secure it now or secure it later: The benefits of addressing cybersecurity from the outset

Research output: Chapter in Book/Report/Conference proceedingConference contributionpeer-review

8 Scopus citations

Abstract

The majority of funding for research and development (R&D) in cyber-security is focused on the end of the software lifecycle where systems have been deployed or are nearing deployment. Recruiting of cyber-security personnel is similarly focused on end-of-life expertise. By emphasizing cyber-security at these late stages, security problems are found and corrected when it is most expensive to do so, thus increasing the cost of owning and operating complex software systems. Worse, expenditures on expensive security measures often mean less money for innovative developments. These unwanted increases in cost and potential slowing of innovation are unavoidable consequences of an approach to security that finds and remediate faults after software has been implemented. We argue that software security can be improved and the total cost of a software system can be substantially reduced by an appropriate allocation of resources to the early stages of a software project. By adopting a similar allocation of R&D funds to the early stages of the software lifecycle, we propose that the costs of cyber-security can be better controlled and, consequently, the positive effects of this R&D on industry will be much more pronounced.

Original languageEnglish
Title of host publicationCyber Sensing 2013
DOIs
StatePublished - 2013
EventCyber Sensing 2013 - Baltimore, MD, United States
Duration: Apr 30 2013May 1 2013

Publication series

NameProceedings of SPIE - The International Society for Optical Engineering
Volume8757
ISSN (Print)0277-786X
ISSN (Electronic)1996-756X

Conference

ConferenceCyber Sensing 2013
Country/TerritoryUnited States
CityBaltimore, MD
Period04/30/1305/1/13

Keywords

  • Cyber-security
  • cyber-attack
  • software lifecycle
  • software total cost

Fingerprint

Dive into the research topics of 'Secure it now or secure it later: The benefits of addressing cybersecurity from the outset'. Together they form a unique fingerprint.

Cite this