Virtual Library

Our virtual library is an online repository of all of the reports, papers, and briefings that IST has produced, as well as works that have influenced our thinking.

Submit your Content

Reports

Information Sharing in the Ransomware Payment Ecosystem: Exploring the Delta Between Best Practices and Existing Mechanisms

Zoë Brammer

viewpdf

Memo

Roadmap to Potential Prohibition of Ransomware Payments

Ransomware Task Force Co-Chairs

viewpdf

Reports

Unlocking U.S. Technological Competitiveness: Evaluating Initial Solutions to Public-Private Misalignments

Ben Purser, Pavneet Singh

viewpdf

Reports

Public Private Partnerships to Combat Ransomware: An inquiry into three case studies and best practices

Elizabeth Vish, Georgeanela Flores Bustamante

viewpdf

Reports

Unlocking U.S. Technological Competitiveness: Public-Private Misalignments in Biotechnology, Energy, and Quantum Sectors

Ben Purser, Pavneet Singh

viewpdf

Reports

Effects of Electromagnetic Pulses on Communication Infrastructure: An IST Primer

viewpdf

Reports

How Does Access Impact Risk? Assessing AI Foundation Model Risk Along a Gradient of Access

Zoë Brammer, along with contributors from the AI Foundation Model Access Working Group

viewpdf

Contribute to our Library!

We also welcome additional suggestions from readers, and will consider adding further resources as so much of our work has come through crowd-sourced collaboration already. If, for any chance you are an author whose work is listed here and you do not wish it to be listed in our repository, please, let us know.

SUBMIT CONTENT

Complexity Is The Enemy of Security

Philip Reiner with Eric Grosse

SUMMARY

In this segment, Dr. Eric Grosse argues: “Much of the security progress over the past decade has been at large-scale, finding and patching vulnerabilities in widely used applications or defending networks of millions of machines containing high-value data. The lessons there may help military systems, but for the very highest security needs such as NC3, we ought to return to basics and harden small-scale systems. And we ought to do it as a joint effort, even between adversaries.” This segment presents an intriguing and critical assertion for those involved not just in the design and development of NC3 related systems – his assertions and ideas are of relevance across the security spectrum, from Homeland Defense to tactical comms. We hope you all enjoy this piece as much as we have, and we look forward to your feedback and thoughts. Dr. Eric Grosse was Google’s VP of Security & Privacy Engineering, having just recently retired in 2017. Before Google, Eric was a Research Director and Fellow at Bell Labs. He has a Ph.D. in Computer Science from Stanford University.

This podcast is accompanied by Eric Grosse’s paper “Security at Extreme Scales”


The Fourth Leg is a series of podcasts focused on one of the most complex systems in the world today – nuclear command and control – and its increasingly complicated future. Within this series we go straight to the experts, across multiple sectors, to discuss the modernization of nuclear command and control systems.

Along with colleagues from the Nautilus Institute and the Preventive Defense Project, IST recently hosted over 50 international experts at Stanford University to anticipate technical challenges that will arise from the modernization of complex nuclear command and control systems. We aim to spotlight some of the vulnerabilities within a modernized NC3 system while furthering the conversation with this series. 

​Keep an eye on IST, as we will begin additional podcast series in the coming months focused on how to fix the internet, AI and global stability, and other critical tech and security issues- for now, we have so much more to talk about, so let’s get started.