While applying scientific principles to cybersecurity may not be obvious at first, examining the topic through a social science lens can help reveal the use of these principles.

The first principle, relativism, is the view that all things are related to one another and is probably the easiest to relate to cybersecurity. As the use of computers and the internet grew the need to secure this technology led to the subject of cybersecurity. The rise of technology has changed every aspect of our lives from healthcare, education, entertainment, and so on. Technology has led to cyberattacks, cybercrimes, and cyberwarfare, and now cybersecurity is one of the most important topics. You can go back to the Babbage Machine, or even further, to understand the ripple effect computer technology has had on the world and will continue to have.

Objectivity is scientific study without bias. Some topics in cybersecurity can be quite controversial. For example, is the use of surveillance technology to cut down on crime a worthy sacrifice or is it an unjust invasion of privacy and personal freedoms? Social scientists can still hold opinions on the subject, but it is important that they actively apply the principle of objectivity to keep their research and results fair.

The principle of parsimony describes that scientists should aim to keep explanations as easy to understand as possible. Not everyone has a deep understanding of computers and cybersecurity, but they need to understand it due to what was discussed with relativism. The use of overly technical jargon would only be confusing and distract from the point one is trying to make.

Empiricism is the principle that scientific knowledge is gained through human experiences and our senses. For example, Newton could not formulate an understanding of gravity until he experienced an apple falling from the tree. After witnessing this phenomenon he worked to understand and define what he had seen. We must approach cybersecurity with an empirical foundation and not simply opinions. These opinions must be supported by evidence to be validated.

It is also important for social scientists working in cybersecurity to apply ethical neutrality meaning they must consider the human element and impact of their work. We must balance progress with the rights of individuals. In cybersecurity, this could mean carefully considering which data is collected from users and how this data is handled, used, and protected. For example, an e-commerce site that poorly protects customer credit card data could negatively harm thousands of people if they suffer a data breach.

Then determinism is the principle that an event is caused in impacted by previously occurring events. Some scientists believe that an event has few causes, while others subscribe to the thought that many factors can lead to an event, such as a cyber incident. A deterministic approach could help identify what kind of people turn to committing cybercrimes, or what events led to a data breach occuring.

These principles, as well as many others, lay the foundation for logical, ethical, and professional advances in science and technology.