Herbert Lin

Hank J. Holland Fellow in Cyber Policy and Security, Hoover Institution
Biography: 

Herb Lin is a senior research scholar for cyber policy and security at the Center for International Security and Cooperation and the Hank J. Holland Fellow in cyber policy and security at the Hoover Institution, both at Stanford University.  His research interests concern the policy-related dimensions of cybersecurity and cyberspace; he is particularly interested in and knowledgeable about the use of offensive operations in cyberspace, especially as instruments of national policy.  In addition to his positions at Stanford University, he is chief scientist emeritus for the Computer Science and Telecommunications Board, at the National Research Council (NRC) of the National Academies, where he served from 1990 through 2014 as study director of major projects on public policy and information technology, and adjunct senior research scholar and senior fellow in cybersecurity (not in residence) at the Saltzman Institute for War and Peace Studies in the School for International and Public Affairs at Columbia University. Before his NRC service, he was a professional staff member and staff scientist for the House Armed Services Committee (1986–90), where his portfolio included defense policy and arms control issues. He received his doctorate in physics from the Massachusetts Institute of Technology.

To read more about Herb Lin's interests, see "An Evolving Research Agenda in Cyber Policy and Security."

He is also a longtime folk and swing dancer and a poor magician. Apart from his work on cyberspace and cybersecurity, he has published on cognitive science, science education, biophysics, and arms control and defense policy. He also consults on K–12 math and science education.

Filter By:

Topic

Type

Recent Commentary

Analysis and Commentary

Developing Responses To Cyber-Enabled Information Warfare And Influence Operations

by Herbert Linvia Lawfare
Thursday, September 6, 2018

This article defines information warfare and influence operations as the deliberate use of information by one party on an adversary population to confuse, mislead and ultimately influence the actions that the targeted population makes. Information warfare and influence operations are hostile activity, or at least an activity that is conducted between two parties whose interests are not well-aligned.

Analysis and Commentary

What The National Counterintelligence And Security Center Really Said About Chinese Economic Espionage

by Herbert Linvia Lawfare
Tuesday, July 31, 2018

Defense News recently ran a story describing a July 2018 report from the National Counterintelligence and Security Center (NCSC) on “Foreign Economic Espionage in Cyberspace”.

Analysis and Commentary

Cybersecurity Fallout From The Partisan Divide Over Russian Election Interference?

by Herbert Linvia Lawfare
Thursday, July 26, 2018

A recent Ipsos/Reuters poll found that 56 percent of Americans strongly agree or somewhat agree that Russia interfered in the 2016 election on behalf of Donald Trump. Within that group, only 32 percent of Republicans but 81 percent of Democrats shared that sentiment. It is hardly a surprise, but a partisan divide on this point is quite apparent.

Analysis and Commentary

What Is Absent From The U.S. Cyber Command 'Vision'

by Herbert Lin, Max Smeetsvia Lawfare
Thursday, May 3, 2018

United States Cyber Command recently released a new “command vision” entitled “Achieve and Maintain Cyberspace Superiority.” The document seeks to provide: “a roadmap for USCYBERCOM to achieve and maintain superiority in cyberspace as we direct, synchronize, and coordinate cyberspace planning and operations to defend and advance national interests in collaboration with domestic and foreign partners.”

Blank Section (Placeholder)

Unleashing the High-tech Dogs of War

by Herbert Linvia Hoover Digest
Friday, April 20, 2018

Artificial intelligence will bring deadlier, smarter weapons. And the command structures that deploy them are likely to possess fewer scruples about harming civilians.

Analysis and Commentary

The Danger Of Deep Fakes: Responding To Bobby Chesney And Danielle Citron

by Herbert Linvia Lawfare
Tuesday, February 27, 2018

Bobby Chesney and Danielle Citron have painted a truly depressing picture of a future in which faked video and audio cannot be distinguished from the real thing. And I think they are right to be depressed about it, though I want to discuss a possible technological solution that they did not address.

Analysis and Commentary

The East West Institute's New Report On Encryption: A Review

by Herbert Linvia Lawfare
Friday, February 23, 2018

On Feb. 15, 2018, the East West Institute (EWI) released its report “Encryption Policy in Democratic Regimes: Finding Convergent Paths and Balanced Solutions,” which the group presented as offering “normative recommendations on encryption policy to ensure strong cybersecurity while enabling lawful law enforcement access to the plain text of encrypted information in limited circumstances.” 

Blank Section (Placeholder)

Once More unto the Breach

by Herbert Linvia Hoover Digest
Friday, January 26, 2018

Recent thefts of credit data show how little power consumers have over their own information. This has to change. 

Analysis and Commentary

Anything New Under The Sun? Nuclear Responses To Cyberattacks

by Herbert Linvia Lawfare
Friday, January 19, 2018

A recent New York Times story regarding the draft Nuclear Posture Review (NPR) writes that: A newly drafted United States nuclear strategy that has been sent to President Trump for approval would permit the use of nuclear weapons to respond to a wide range of devastating but non-nuclear attacks on American infrastructure, including what current and former government officials described as the most crippling kind of cyberattacks.

Analysis and Commentary

Information Warfare and Cybersecurity Are Different, Related and Important

by Herbert Lin, Paul Rosenzweigvia Lawfare
Wednesday, January 17, 2018

Susan Landau pointed last week to a disagreement between the two of us, saying that current definitions of cybersecurity (such as the HSPD-54 that Herb quoted) are outmoded and a new definition is necessary. We agree with Susan, and as we discussed the matter, we find that we are in fact much more in agreement than disagreement. At least part of Susan’s perception that we disagree is understandably rooted in the titles of our respective pieces.

Pages