Comments and Questions

This article is about a particularly important problem for our digital future: insufficient cyber security for computers, modems, routers and, most importantly, the Internet of Things. Just as these connected technologies hold great promise for future prosperity, so the digital vulnerabilities are an equally great threat, magnified through the same network externalities that generates the promise. The author identifies to particularly important areas in which governments should address market failures: network operator practices that generate vulnerability and deficient security in the Internet of Things. In order for this article to be accessible to the educated public, will be important for the author to define all his acronyms (for example ISP, CERTS) and to use acronyms consistently (e.g. DDoS, not DDOS). The author clearly identifies the nature of the externalities, for example, that the network pollution impact is greater to the users then to the operators. The author should explain why the recommendations regarding network operator practices are so modest, given the size of the challenge. ISPs only encouraged to improve device deployment processes and operational decisions and the adoption of MANRS is only encouraged. These are only voluntary actions. Given the nature of the externality mentioned above, it appears clear that such voluntary actions unlikely to remain insufficient with regard to the public interest. The recommendations regarding the Internet of Things are all compelling. The author should be encouraged to provide greater detail for the implementation of these recommendations.