1 minute read

“Why Web4 security is different to Web3 and Web2 security considerations”

by Timothy Coleman - 10/Feb/2023

In response to this article on Techrepublic, by Karl Greenberg.

Security Considerations

The divide between ‘what is web3’ and ‘what is web4’ can be seen more clearly when we look at the different spaces from a security perspective.

In this article, we see several Cybersecurity threats outlined for the Metaverse, which are closer in nature to real life social engineering attacks:

  • ‘Eavesdropping’ (‘man/person in the room attacks’).
  • Cloning of voice and facial features.

Web3 security

As Web3 is defined by technology facilitating digital ‘ownership’, (e.g blockchain), we can immediately see that this is an entirely different set of security challenges altogether.

Web3 security comes down to answering questions such as “How can I make sure there is no malicious code in the smart contract I’m about to sign with my private keys (Wallet)”.

The changing Role of the Chief Information Security Officer

“Tsangaris noted that new attack surfaces for malicious actors include wearables and 3D experiences that could be leveraged for psychological attacks and traumatic subterfuge.”

CISOs are faced with a very different set of challenges when it comes to Web4, and the role may need separating into other distinct parts: CESO (Chief Experiential Security Officer).

Conclusion

Web4/Metaverse security doesn’t make redundant the technological security needs which have developed in the Web2/Web3 spaces, but they add a new layer of ‘social’ considerations, similar to those in ‘the real world’.

You may also enjoy

Understanding DePIN

1 minute read

Decentralised Physical Infrastructure (DePIN) - inspired by a conversation with Jamie Milne