Blog

The Internet Health Model for Cybersecurity

Today, the EastWest Institute released a report titled The Internet Health Model for Cybersecurity. I was fortunate to participate in the development of this report, which argues for carrying lessons from the public health sphere over to Internet security:

Today, there is no global, coordinated approach to protecting people and systems from malware and related threats on the Internet. We must begin to create a more secure and defensible foundation for cyberspace now in order to protect the two billion current users and the next billion users expected online by 2015. We believe the solution lies in a coordinated international effort among governments and industry players across the IT ecosystem to protect the shared environment of the Internet from bad actors.

The model of the public health field provides a good starting point for developing a coordinated global effort to better protect users online. For example, the health of individuals and communities in society is improved through the collective actions of individuals themselves and frontline healthcare providers with the support, coordination, and guidance of organizations such as the World Health Organization (WHO) and the United States Centers for Disease Control and Prevention (CDC). While we do not suggest that the public health model provides a complete blueprint for securing the Internet, we believe that it can serve as inspiration for how to better protect cyberspace.

The paper goes on to identify some of the relevant characteristics of the public health system, limitations to applying the model to Internet health, a set of core principles for an Internet health system, and several themes for further exploration and development.

The full report, which is a worthwhile read, may be found here.

Tags: 
security

StopBadware gets a little dreamier: Welcome, DreamHost!

Posted on May 31, 2012 - 14:42 by ccondon

Okay, so that was a bad pun. Fortunately, our announcement today is anything but bad: DreamHost is our newest Partner! We're excited about all the nascent possibilities for our partnership–like brainstorming ways to educate webmasters about site security, using our combined techie power to help clean up badware URLs, and talking with our Partners Forum about new ways to analyze trends and thwart bad guys. Naturally, we're out to make the Web safer, and adding DreamHost to our list of great Partners will help us do just that.

Astute readers may recall that StopBadware ran an experimental URL reporting project last summer; the project's main goal was to test the practicability of our Best Practices for Reporting Badware URLs, but one of the major side effects was that we gained some firsthand insight into which web hosting providers were the most responsive to reports of badware on their networks. Happily, DreamHost was one of those very responsive hosting providers; we're particularly pleased that they've chosen to become a StopBadware Partner.

For those who want it straight from the host's mouth (more bad punnery!), DreamHost has a fun press release available here.  Onward and upward!

Tags: 
malware, partners, stopbadware, StopBadware Partners, web hosting providers

SBW supports botnet mitigation principles

Posted on May 30, 2012 - 09:00 by admin

This morning, I am honored to be part of a White House event at which the Industry Botnet Group is announcing a set of principles to encourage and guide voluntary industry efforts to address botnets.

On behalf of StopBadware, I serve on the IBG's steering committee and participated in the development of the principles. They are consistent with existing efforts, such as the ABCs for ISPs, but more importantly, they are an important first step in driving new action by businesses and industry groups.

To see the press release, read the principles, or learn more about the IBG's goals and ongoing work, see the new IBG website.

Pages