Cyber Security Controls as a Public Good

Today 's society is less susceptible to attacks, full of constantly changing crimes across national borders; such crimes are called cyber crime. Foreign and domestic cybercriminals are attacking the United States everyday. The crime included fraud, the theft of personal information, the theft of proprietary trade secret, and even theft of state secrets. According to the 2009 Internet crime report, there were 336,655 complaints of cybercrime in 2009, total loss was $ 559.7 million ("Internet crime report 2009", 2009).

In recent weeks, Cyber ​​Security News posted its own opinion on the front page. Like the "elephant in the room", the importance of "awareness of cyber security" is emerging in the minds of everyone, but it must be solved. Cybercrime rates are rising rapidly, and attackers are at risk of private and public sectors, including confidential industries such as health and banking. We use the Internet to destroy our daily lives by using them for various activities such as communication, entertainment, shopping, and finally acquiring knowledge. In addition to comfort and convenience, it also fascinates many dangerous actors into your comfort zone. Since participating in services such as currency trading, "cyberspace" has become a very easy place for criminals. Cybercrime is getting complicated every day

Authorities are increasingly demanding organization of "cyber security", especially in networks where network events have a serious impact on public order and security. But cyber security is a particularly complex organizational problem that requires technical and process-oriented testing and certification programs. Clear guidelines and standards are required for network security testing, and the field of network security is rapidly evolving. Next to the new directive is the general management guide on information security (ISO 27001) and the technical standard (IEC 62443) on the integration of industrial system and communication network.

Recognizing cyber security is not easy. In fact, cyber security is a very large field including many fields such as "threat detection", "network security" and so on. It is difficult to imagine the knowledge to understand and respond to cyber threats, which requires much effort. This is one of the main challenges of spreading awareness about cyber security in general. There is no benchmark method for consciousness of network security and there is no shortcut. This is a continuous learning and understanding process.