A basic rule in security is that everything could and probably will fail eventually. How to respond to failures should therefor be a standard reflection for security professionals.
The Law of Diminishing Marginal Returns is a fundamental mechanism. It is essential knowledge if you ever studied economics. Simply put, the higher your total investment, the same increase in investment will result in a lower increase of return.
December is the time to start looking forward to the next year. Looking at what predictions are made, at least one prediction is always a good start: major mishaps of this year determine the major trends for the next year. Here are four candidates: AI, supply chain, hacker collectives and cyber skills shortage.
We agree with ENISA that a generic label "AI" is not very useful do determine the risks and countermeasures, and that a more refined structuring is required to address these risks. We propose a layered structure to facilitate pinpointing the risks for major types of AI applications.
Base on my presentation at COSAC 2023, Ireland