Two Conceptions of Security Online

Speaker: Helen Nissenbaum

5th July 2004 , 2pm , Room 519, Claremont Tower

Abstract

The mandate of computer security has grown in complexity and seriousness as computer technologies have saturated society and, simultaneously, the threats have multiplied in number and sophistication. Although well-publicized attacks by viruses, worms, and unauthorized break-ins make the work of computer security specialists seem clear-cut, the broader purposes of computer security are, in fact, ambiguous. Or, so this paper argues. It proposes that at least two conceptions of security are vying for the attention and resources of the wide-ranging activity of computer security: one that has evolved within the computer science and engineering community focused on individual systems, the other that has been carried over from the political arena of national security focused on collective and institutional systems. The paper argues that because these two conceptions envision divergent understandings of what it means for a computer environment to be "safe" they will have divergent implications for design and ultimately for the utility of computerized information and communications networks. It is important that we see these differences clearly so we may set our course with purpose and deliberation.

_________________________________
Helen Nissenbaum
Department of Culture and Communication, NYU
USA