Article Review: Bug Now, Exploit Later

The article that I chose is Update now or later? Effects of experience, cost, and risk preference on update decisions. It presents an exciting topic: some people tend to update their systems sooner rather than sooner. The case is related to relativism, where everything is connected. The decision-making of humans tends to have a reason, and thus the article hypothesizes that people delay the installation of security updates due to their experience. They simulated the feeling of work to allow the group to act in their natural environment. They then calculate the cost of not updating versus updating. Overall, they found that several factors, including communication and attitude of individuals, affect the outcome of consumers’ updating.

Neutralization theory suggests that human neutralize their thoughts to feed their guilt. They often say, “It does not affect anybody” or “it won’t be me,” to negate their thoughts on their action. The article found that people later update when it’s too late. The effect of hack can have severe penalties in the real world. The topic covers regularly updating to prevent attacks, even if the consumer is one of a billion users.

Overall, people rely on their attitude and experience to make their decision. The new topic can help researchers to formulate techniques for getting users to update their systems regularly.

Source

Prashanth Rajivan, Efrat Aharonov-Majar, Cleotilde Gonzalez, Update now or later? Effects of experience, cost, and risk preference on update decisions, Journal of Cybersecurity, Volume 6, Issue 1, 2020, tyaa002, https://doi.org/10.1093/cybsec/tyaa002

Leave a Reply

Your email address will not be published. Required fields are marked *