The impossibility of “getting ahead” in cyber defense

2024-07-02 04:00

A future-oriented cyber defense is therefore not about getting ahead, but about building systems that are inherently more likely to function when components or other systems become compromised, as they inevitably will, sooner or later.

Traffic lights "Fail safe" to red, reducing risks of collisions when the system stalls for any reason.

The concept of "Shift left" in DevSecOps calls for integrating security into the software development cycle earlier, so there is security and resilience "Built in." IT systems, particular in critical infrastructure, can be deployed following these principles of resilience.

Independent, redundant systems should be considered for critical infrastructure.

Building resilience for the future means focusing on designing systems that are expected to suffer degradation, regardless of cause, and ensuring that it still basically works.

From GenAI and robots to enterprise IT systems, it is getting harder to approach any parity with the vast array of attackers and methods they employ.

News URL

https://www.helpnetsecurity.com/2024/07/02/getting-ahead-resilience/

#cyberdefense #defense

News URL

Related news