COMPLEXITY IS THE WORST ENEMY OF SECURITY: STUDYING CYBERSECURITY THROUGH THE LENS OF ORGANIZATIONAL COMPLEXITY
成果类型:
Article
署名作者:
Schneier, Bruce; Vance, Anthony
署名单位:
Harvard University; Virginia Polytechnic Institute & State University
刊物名称:
MIS QUARTERLY
ISSN/ISSBN:
0276-7783
发表日期:
2025
页码:
205-210
关键词:
information-systems
摘要:
Writing about computer systems twenty-five years ago, Schneier wrote that the worst enemy of security is complexity (Schneier, 1999), because complex systems are both easier to attack and harder to secure than simpler ones. In this essay, we provide an overview of Schneier's complexity principle and provide our observations of how two articles in this issue, Liang et al. (2025) and Tanriverdi et al. (2025), employed this principle in their research. We also offer our ideas for why complexity and cybersecurity are especially amenable for study in the field of information systems and where future research can go from here.