In this paper, Dr. Eric Grosse argues: “Much of the security progress over the past decade has been at large-scale, finding and patching vulnerabilities in widely used applications or defending networks of millions of machines containing high-value data. The lessons there may help military systems, but for the very highest security needs such as NC3, we ought to return to basics and harden small-scale systems. And we ought to do it as a joint effort, even between adversaries.”
Eric’s paper, and the below podcast, present an intriguing and critical assertion for those involved not just in the design and development of NC3 related systems – his assertions and ideas are of relevance across the security spectrum, from Homeland Defense to tactical comms.
About the author: Dr. Eric Grosse was Google’s VP of Security & Privacy Engineering, having just recently retired in 2017. Before Google, Eric was a Research Director and Fellow at Bell Labs. He has a Ph.D. in Computer Science from Stanford University.
This is paper is accompanied by a Fourth Leg podcast: Complexity Is The Enemy of Security.
