Cybersecurity futures: scenarios and good practice

What can we forecast about upcoming cybersecurity threats?  And how can we best conduct futures work?  How can we learn from scenarios?

Cybersecurity Futures 2020Berkeley’s Steven Weber recently published a useful and bracing essay that I can commend to you all.  It’s about his research team‘s scenarios for cyber threats envisioning the far-of year of… 2020, published in 2015.

To begin with, the five scenarios are fascinating.  They include future cybersecurity worlds including behavior modification tech and a contested internet of things rollout.

Weber then identifies what the report missed.  This takes some cold eyed self-examination, and isn’t an easy thing for many to do, especially in academia, but it’s a classic futures practice.  Weber finds the report overestimated the pace of change, which is always a risk.  It overstates how much data is worth in the market, which sounds counterintuitive, but links up with the hype around big data.  And the document wasn’t conservative enough in another area:

We also understated the stubborn robustness of existing institutions in the digital security world. In the private and public sectors, the big, powerful institutional actors of 2015 — Apple and the NSA, Alibaba and the Cyberspace Administration of China — are for the most part still the big powerful institutional actors at the dawn of 2020. For all the talk about disruptive innovation, the incumbents have proven themselves stickier and more capable of absorbing innovation than expected.

Weber goes on to identify what the report accurately forecast, or at least got more or less in the ballpark.  This isn’t for self-praise, I think, so much as to more closely identify the report’s underlying worldview.  Again, this is good futures practice.


Liked it? Take a second to support Bryan Alexander on Patreon!
This entry was posted in futures, scenarios. Bookmark the permalink.

1 Response to Cybersecurity futures: scenarios and good practice

  1. You were totally right. I am definitely not a cybersecurity techie, but that was a very interesting read. It really makes you think about how future technology will affect us all. I have two favorite quotes from this report. The first one is “We are not yet near the point where technology can reliably overcome the complex foibles of human behavior. More often, technology magnifies them.” The other one is “No matter how many billions of transistors can be put onto a chip and how many billions of data points can be processed in a machine-learning training set, in 2025, human beings will still be the most complex variables in the cybersecurity equation.” It is a good reminder that although we as humans/students can be logical, we are also bio-logical with emotions and differences that always need to be taken into consideration.

Leave a Reply

Your email address will not be published. Required fields are marked *