Concepts for Enhancing Critical Infrastructure Protection

Relating Y2K to CIP Research and Development

B. David Mussington

ResearchPublished 2002

Spending by the U.S. government and industry on activities to prevent the predicted year 2000 (Y2K) crisis amounted to approximately $100 billion, and other global spending may have been even greater. Debate continues over whether this massive effort precluded catastrophic system failures or the fears were overstated to begin with. This report presents the findings of a RAND study that attempted to shed light on this debate by addressing the following questions: What kind of event was the Y2K crisis? Was the massive and costly remediation effort justified? What lessons does the Y2K experience offer for critical infrastructure protection (CIP)? What do these lessons imply for federal CIP research priorities? The study included a literature review, interviews with government and industry computer experts, and a workshop involving participants in Y2K remediation efforts from industry and government. The report summarizes the workshop activities and synthesizes the key conclusions from all the project activities. It is concluded that new R&D approaches are required to deal with complex and adaptive settings. Vulnerabilities resulting from system complexity are expanding at a much faster pace than our means of understanding them. At the same time, exploitation of infrastructure vulnerabilities for criminal, terrorist, or foreign adversary purposes is a threat that potentially has no boundaries. To make CIP more manageable, research is needed that provides real data and models for understanding highly complex and uncertainty-laden environments. Such research should be a high federal priority and should be pursued aggressively.

Order a Print Copy

Format
Paperback
Page count
106 pages
List Price
$20.00
Buy link
Add to Cart

Topics

Document Details

  • Availability: Available
  • Year: 2002
  • Print Format: Paperback
  • Paperback Pages: 106
  • Paperback Price: $20.00
  • Paperback ISBN/EAN: 978-0-8330-3157-0
  • Document Number: MR-1259-OSTP

Citation

RAND Style Manual
Mussington, B. David, Concepts for Enhancing Critical Infrastructure Protection: Relating Y2K to CIP Research and Development, RAND Corporation, MR-1259-OSTP, 2002. As of September 23, 2024: https://www.rand.org/pubs/monograph_reports/MR1259.html
Chicago Manual of Style
Mussington, B. David, Concepts for Enhancing Critical Infrastructure Protection: Relating Y2K to CIP Research and Development. Santa Monica, CA: RAND Corporation, 2002. https://www.rand.org/pubs/monograph_reports/MR1259.html. Also available in print form.
BibTeX RIS

The research described in this report was performed under the auspices of RAND Science and Technology.

This publication is part of the RAND monograph report series. The monograph report was a product of RAND from 1993 to 2003. RAND monograph reports presented major research findings that addressed the challenges facing the public and private sectors. They included executive summaries, technical documentation, and synthesis pieces.

This document and trademark(s) contained herein are protected by law. This representation of RAND intellectual property is provided for noncommercial use only. Unauthorized posting of this publication online is prohibited; linking directly to this product page is encouraged. Permission is required from RAND to reproduce, or reuse in another form, any of its research documents for commercial purposes. For information on reprint and reuse permissions, please visit www.rand.org/pubs/permissions.

RAND is a nonprofit institution that helps improve policy and decisionmaking through research and analysis. RAND's publications do not necessarily reflect the opinions of its research clients and sponsors.