The Internet of Things includes consumer devices as well as the United States’ critical internet-enabled infrastructure. As the planet-wide usage of internet-enabled devices passes the threshold of one device per person, the number of threat vectors and vulnerabilities is also increasing. However, cyber insecurity is increasingly viewed as a market failure in need of a comprehensive legislative solution at the federal and state levels. Nevertheless, the uncertainty and dynamism of the IoT ecosystem limits the effectiveness of
ex-ante policy guidance. This paper argues that device insecurity requires solutions from a variety of stakeholders and alternative sources of governance. The resilience approach recognizes that the only sustainable way to confront large-scale disturbances is to empower stakeholders at multiple levels to remain persistent in the face of threats. The resilience approach requires a paradigm shift that encourages members of the
IoT ecosystem to embrace risk and uncertainty and to learn by experience.

You May Also Like