Reducing the Cost of Security in the Cloud

When considering the economics of information security, people often use the information's value as input into an equation to determine how much to spend securing the corresponding system. Here, we explore how to improve the amount of security obtainable for a given cost. Looking at real-world examples, it is clear that the cost for proper security remains high due to poor security foundations, poor interoperability, and challenges around deploying security primitives. These problems lie on the boundary between research and practice, which only further complicates the creation of useful solutions. This talk aims to start a conversation around how these communities can come together to address these challenges.