Fiche du document
2021
- handle: 10670/1.llnzs4
- hal: hal-03633122
Mots-clés
Human Factor Cyber-attack IT Charter Prevention PolicySujets proches
Authorities (Persons) Experts Hostilities Conflict, Armed (War) Wars Armed conflict (War) Fighting Fighting Swordsmanship House-to-house fighting Fighting Papers Fighting War, Maritime Naval science Navy Naval warfare Naval administration Fighting Military power Warfare, Primitive Warfare Military science Fighting Supposition Assumption Fighting Fright Duels Fighting Military combat Fighting Prize-fighting Sparring Pugilism Prizefighting Fighting Savate Fighting Fighting Gun battles Fights, Gun Battles, Gun Gun fights FightingCiter ce document
Didier Danet, « Punish and Perish : The Human Factor in Cybersecurity », HAL-SHS : droit et gestion, ID : 10670/1.llnzs4
Métriques
Partage / Export
Résumé
According to many prominent experts, IT users are the “weakest link” in cyber-securitychain. This assumption has important consequences on the definition of cyber-securitypolicies which are often rooted in the fear of sanctions. We argue in this paper that suchpolicies miss the point of security because they create wrong incentives for users who makemistakes or undergo the maneuvers of social engineers. Doing so, most cyber-securitypolicies are in fact scapegoat processes more that effective guidelines for fighting cyberattacks. We argue that alternative cyber security policies, breaking up with the "WeakestLink" paradigm, are required in order to make significant improvements in facing cyberthreats, especially in times of COVID-19.