Project 1 is due before class (9:29am) on Tuesday, 22 January.
Office hours schedule:
- Mondays, 10-11am, 254 Monroe Hall (Denis)
- Wednesdays, 5-6:30pm, Rice 442 (Jonas)
- Thursdays, 11am-noon (after class), Rice 507 (Dave)
- Fridays, 10:30am-noon, Monroe Basement (Joe)
Download (full resolution) PDF
Security vulnerabilities as externalities
Manos Antonakakis, Tim April, Michael Bailey, Matthew Bernhard, Elie Bursztein, Jaime Cochran, Zakir Durumeric, J. Alex Halderman, Luca Invernizzi, Michalis Kallitsis, Deepak Kumar, Chaz Lever, Zane Ma, Joshua Mason, Damian Menscher, Chad Seaman, Nick Sullivan, Kurt Thomas, and Yi Zhou. Understanding the Mirai Botnet. USENIX Security Symposium 2017.
According to one common view, information security comes down to technical measures. Given better access control policy models, formal proofs of cryptographic protocols, approved firewalls, better ways of detecting intrusions and malicious code, and better tools for system evaluation and assurance, the problems can be solved. In this note, I put forward a contrary view: information insecurity is at least as much due to perverse incentives. Many, if not most, of the problems can be explained more clearly and convincingly using the language of microeconomics: network externalities, asymmetric information, moral hazard, adverse selection, liability dumping and the tragedy of the commons.
Ross Anderson, Why Information Security is Hard – An Economic Perspective. Annual Computer Security Applications Conference (ACSAC) 2001.
Smoking and Cancer
Richard Doll and Bradford Hill. Smoking and Carcinoma of the Lung. British Medical Journal, September 1950. (This is the first paper on the hospital patients study that I mostly talked about in class, and the tables and figures in the slides were from this paper.)
Scientists in many fields have felt the need for canons of valid inference, and these have been becoming available in what are, properly, experimental sciences, by the rapid development of interest and teaching in “The Design of Experiments”.
Unfortunately, it has become obvious that many teaching departments, with mathematical but without scientific qualifications, have plunged into the task of teaching this new discipline, in spite of harbouring gravely confused notions of the logic of scientific research.
If, indeed, the statistical; departments engaged in university teaching, were performing their appropriate task, of clarifying and confirming, in the future research workers who come within their influence, an understanding of the art of examining observational data, the fallacious conclusions drawn, from a simple association, about the danger of cigarettes, could scarcely have been made the basis of a terrifying propaganda.
For this reason I have thought that the fallacies must be attacked at both of two distinct levels; as an experimental scientist, and as a mathematical statistician.
Ronald A. Fisher, Alleged Dangers of Cigarette Smoking, British Medical Journal 1957.
Tobacco - A Vital U.S. Industry, pamphlet from Tobacco Institute, featuring drawing by Peter Jefferson, arguing against tobacco regulation.
Scott Alexander, Cancer Progress: much more than you wanted to know, Slate Star Codex, August 2018. A long, but very interesting and illuminating, post on whether or not we are “winning the war on cancer”.