Hailey Caram

Define each of the principals of science in your own words. Then, give an example of how each of the principals relates to cybersecurity.

Looking at the principles of science through the lens of cybersecurity can help us understand how human behavior and technology intersect. These six principles of science apply to both the natural and social sciences (Umphlet, 2024). Below I will provide a breakdown of each principle and how it relates to the cybersecurity field. 

Relativism is the idea that all perspectives and systems are connected and have significance. In cybersecurity this is evident as social, political, and technological shifts all affect cyber threats. An example of this would be the increase in remote work due to a global event like COVID-19 where there are a whole new set of vulnerabilities that comes with working from home.

Objectivity refers to the idea that research and science should be free of bias and opinion, leaving room for fact and evidence. Objective research includes impartial, verifiable evidence. Objectivity is critical for cybersecurity. For example, a response to a data breach must rely on forensic evidence, rather than assumptions about the hacker’s motivations, to effectively triage. 

The principle of science known as parsimony dictates that scientists keep explanations simple wherever possible. Although human behavior is not often simply explained, such as in the case of risky online behavior, attempts to offer simplified explanations increases understanding and opportunities for testing of explanations. An example of parsimony in cyber is attributing increased risk for cyber incidents to phishing or passwords being reused. This is parsimonious due to the simplified explanation of a wide range of cyber incidents. 

Empiricism asserts that only behavior which is real to the senses is able to be studied, such as behavior that we can see or hear. Therefore, empirical research includes knowledge that stems from experience and does not rely on opinions to form conclusions. Empiricism is especially important in cyber, including the use of incident reports, data logs, and monitoring network activity. 

Ethical neutrality mandates that certain ethical standards must be upheld while conducting research. Ethical neutrality helps to protect human rights and supports an empirical, objective understanding of the topics being researched. Researching cybercrime often presents ethical dilemmas, such as the balance between surveillance and data privacy. 

The last principle of science, determinism, alleges that events and behavior can be predicted. Consequently, cybercrime can be predicted and is a result of past events. Hacks are a result of flaws or vulnerabilities in the system. 

References
Umphlet, M. (2024, May 13). The principles of social science and cybersecurity. [PowerPoint slides]. College of Cybersecurity, Old Dominion University. https://docs.google.com/presentation/d/1Jo7kMpaWztasW0enT8Nqlq6IIF-fo6ntzD7plF6Xvyg/edit?usp=sharing