2.5: Security and Privacy
Understanding the Trade-offs: Balancing Security and Privacy With Other Values Other Information:
Designing a system or a network that satisfies a single design goal – security – is still a grand challenge in computer science
research. Yet, in reality, many systems and networks like the Internet that are used by real people have to satisfy not just
one goal but an array of them. For example, they need to be usable; they should give users the information and personal privacy
they expect; they should be open enough so that users can connect with others at a distance and obtain information that is
available on other systems and networks. At the same time, the systems need to provide the level of security required by the
end users. In many cases, however, it is not possible to satisfy all competing goals. Where we are now: We are just beginning
to come to grips with the implications of such conflicts. If it is not possible to design a system that is simultaneously
secure, privacypreserving, usable, and open, what are the potential trade-offs among those attributes? We need to better understand
these trade-offs and expand the space of possible solutions. Research needs: Research is necessary to investigate how we can
more effectively comprehend, model, and optimize an array of conflicting design goals. In addition, new tools are needed to
enable IT managers and end users both to monitor and act to mitigate security risks.
Indicator(s):
|
