Paul Rosenzweig

Which Federal Agency Controls Cybersecurity? The Answer May Surprise You.
April 16, 2014

How the infitration by a Russian criminal organizaion of Wyndham Hotels led to a major development in cybersecurity policy.

The U.S. Is About To Relinquish Control of the Internet's Address Book. That's a Big Deal.
March 15, 2014

The last year has been ugly, but the U.S. has been a basically good steward of the Internet. What follows may not be so good.

The NSA Doesn't Need Wholesale Reform, Just Greater Oversight
October 29, 2013

What should we do about the NSA? Should we do anything at all? These question are on the forefront these days.

When Companies Are Hacked, Customers Bear the Brunt. But Not for Long.
October 15, 2013

For the past two weeks, Security States has been exploring the possibility of liability for software design flaws. It’s a critical issue—and likely the right answer from an economic perspective. But at this point that answer is theoretical.

How to Find Out What Big Data Knows About You
October 07, 2013

Behind pervasive data collection lurks a question most of us are asking – does it really matter?

A “S.E.A.-Change” in Military Contingency Planning
October 01, 2013

Is America at risk from a counter-strike by Syria if it launched a military attack against Syria's chemical weapons? Yes – but not in the traditional way. A Syrian response would likely be of a different, asymmetric cyber form. And that’s a whole new way of thinking about war and contingencies.

For the past several weeks American leaders have been considering a military strike in Syria (a possibility that seems to have faded in recent days). Lurking behind the controversy and debate about whether that sort of strike would be good policy is a problem that must be driving military planners to distraction – America is no longer immune. Any decision to launch missiles at Syrian chemical weapons targets must incorporate an answer to the question – what will Syria do in response?