Security often requires collaboration, but when multiple stakeholders are involved, it is typical for their priorities to differ or even conflict with one another. In today’s increasingly networked world, cyber security collaborations may span organizations and countries. In this chapter, we address collaboration tensions, their effects on incident detection and response, and how these tensions may potentially be resolved. We present three case studies of collaborative cyber security within the U.S. government and discuss technical, social, and regulatory challenges to collaborative cyber security. We suggest possible solutions, and present lessons learned from conflicts. Finally, we compare collaborative solutions from other domains and apply them to cyber security collaboration. Although we concentrate our analysis on collaborations whose purpose is to achieve cyber security, we believe that this work applies readily to security tensions found in collaborations of a general nature as well.
Revised: July 6, 2010 |
Published: December 1, 2009
Citation
Fink G.A., A.D. McKinnon, S.L. Clements, and D.A. Frincke. 2009.Tensions in collaborative cyber security and how they affect incident detection and response. In Collaborative Computer Security and Trust Management, edited by J-M Seigneur and Adam Slagell. 34-63. Hershey, Pennsylvania:IGI Global.PNNL-SA-62872.