Governing the Cyber Commons

Governing the Cyber Commons

axe@umich.edu

February 23, 2010
Prepared for publication in a

Symposium on Elinor Ostrom in

Ostom’s contribution was made possible by her reframing the debate about the “tragedy of the commons” (Hardin 1968). In this famous debate, the alternatives were framed as private property vs. central authority. The theoretical questions asked tended to be shaped by these two frames.³ Implicit in both the frame of private property and the frame of central authority is that decisions are made by one or more individual decision makers operating independently. But Ostrom’s observations in real-world settings such as inshore fishing and allocation of irrigation water showed that repeated interactions among the users of a common resource often allowed them to build institutions that could provide effective monitoring and discipline of free riders, thereby achieving efficient and sustainable use of the resource. In effect, Ostrom introduced a new frame, a frame based on the concept of management by the users themselves. Eventually, even Hardin agreed that he could have called his article “Tragedy of the Unmanaged Commons” (Hardin 1994).

Ostrom herself is well aware of the problems of doing interdisciplinary research. As she once put it, “the disciplinary huts of many modern universities do not really enable one to have effective intellectual exchange across disciplines” (Zagorski 2006). Her own background is political science, from her undergraduate major through her doctorate and her entire career spent as a professor of political science. But she and husband, Vince Ostrom, saw the need to go beyond political science. They took matters into their own hands when they arrived at Indiana University. Starting in 1969 they began a weekly informal seminar to discuss ideas across the social sciences, and within a few years this was institutionalized in a form that lives on to the present day further encompassing business and the biological sciences. As a full professor, Elinor Ostrom spend eight months in 1981 and again in 1988 working closely with economists and others at the Center for Interdisciplinary Research at Bielefeld University in Germany.

It is interesting that after being published in 1990, Governing the Commons caught on slowly. In terms of annual citations, it gained prominence steadily year by year (See Figure 1). Rather than the common pattern of tapering off after a few years, the book actually had three times as many citations in its second decade of publication compared to its first decade.⁴ Apparently it took a while for the broad relevance of the work to be appreciated. Perhaps this was due in part to what William Mitchell decades ago described as Elinor Ostrom’s “gentle, inconspicuous and unassuming manner” (Mitchell 1988).

Figure 1 about here.

-------

In Governing the Commons, Ostrom was careful to define the domain of her study as common pool resources. Common pool resources are resources that are renewable, in situations where substantial scarcity exists, and in which the users can substantially harm one another, but not in which the participants can produce major external harm for others (Ostrom, 1990, p 26; henceforth cited by page number only). My proposition is that Ostrom’s insights are valuable even for situations far beyond the common pool resource domain of her original project.

For the sake of concreteness, consider a particular kind of challenge to the security and reliability of the Internet, namely the existence of what have been called “cyber riots.” A cyber riot is an Internet attack by a large number of individuals seeking to disable the normal functioning of institutions they oppose. For example, in April 2007 Estonian authorities announced that they would remove a Soviet-era memorial to World War II. In the following days and weeks the web sites of economic and political institutions in Estonia were severely disrupted by attacks coming from Russia (Lander and Markoff, 2007). While this cyber riot may have been aided by the Russian government, there is little doubt that it also expressed the genuine anger of hundreds or even thousands of Russian individuals. Since the 2007 cyber riot against Estonia, there have been news reports of cyber riots against institutions in China, Georgia, India, Russia, South Korea and the United States.

While cyber riots may not represent as great a threat as “an electronic Pearl Harbor” they do reduce the degree to which everyone can rely on the availability of the Internet (Wu 2007, Carr 2010). As such, the users of the Internet have a shared interest in effective governance of the resource. What does Ostrom’s work suggest about this problem?

First, governance by users is often helped by having explicit rules about what actions are allowed or constrained (51). The analogy with physical riots against foreign embassies is useful here. In the case of physical riots, governments are responsible for protecting the foreign embassies in their countries. Presumably this includes not only prevention of damage from a riot underway, but also for not promoting potentially damaging riots, and - if necessary – for actively discouraging potential riots. Ostrom’s work suggests that analogous rules, perhaps made explicit by international agreement, might be helpful to promote the shared interest in the security and reliability of the Internet.

Second, when monitoring is costly, it helps to provide private benefits for a monitor as well as joint benefits for others (59 and 97). It is interesting that cyber riots are already subject to private monitoring by about 100 researchers in more than 70 countries (Hart 2008). Ostrom’s work suggests that these efforts should be rewarded, for example with favorable attention when they are successful at providing early warning of an emerging cyber riot. These private monitors should also be rewarded when they are successful in deterring a riot, or when they are successful in identifying individuals or governments who facilitate a cyber riot. In this way, social capital (Putnam 2000) on the Internet can strengthened.

Third, in large and complex systems, there should be multiple layers of nested enterprises (101f). In the case of the Internet, individual users operate at a low level, while organizations and user communities operate at a middle level. At the global level, governance of the Internet is relatively thin, limited mostly to agreement on coordination mechanisms such as domain names and internet protocols. Thinking of the governance of the Internet as existing at multiple nested layers suggests that one layer can help govern another. In the case of cyber riots, Ostrom’s approach suggests that institutions at all levels should realize that if their own supporters riot against hostile institutions, there is a good chance that people loyal to those institutions may retaliate. Since institutions are better able to monitor their own members than outsiders are able to do (Fearon and Laitin 1996), relatively strong institutions such as national governments should recognize their interest in policing their own supporters.

Fourth, in order to promote compliance, graduated sanctions are better than all-or-nothing sanctions (94-100). Moreover, tolerance for infractions should be high during stressful periods, so long as the infraction seems temporary and does not threaten the survival of the cooperative regime (99). In the case of cyber riots, this suggests that if citizen anger is especially high against a foreign government or institution, some tolerance for disruption might be acceptable provided that the disruption is temporary and does not seem to threaten the survival of the norm against causing serious damage.

Fifth, institutions that are successful in governing common pool resources often take decades of trial and error learning to develop. Such institutions need to be capable of dealing not only with immediate problems, but also be capable of adapting over time to new circumstances (137-42 and 207-16). In the rapidly changing environment of the Internet, this suggests that norms will need to evolve rapidly in order to keep up with new possibilities for citizen-based attacks on institutions, and for new possibilities to detect, deter and prevent such attacks.

Sixth, and most important, is Ostrom’s approach to institutional design. She carefully studies how users manage to govern in real settings, and then derives theoretically based design principles for when and how user-based governance can be achieved. Ostrom’s success suggests that the careful study of how governance of the Internet is developing at all of its multiple levels can lead to a deeper understanding of how user-based intuitions can manage the threat of harm from cyber riots and worse.

In sum, Ostrom’s Governing the Commons demonstrates that the future of interdisciplinary work involving political science will more than the continually importing from other disciplines. The future of political since but will also provide valuable opportunities for exporting political science to other disciplines and wide variety of problem domains.

Axelrod, Robert. 2008. Political Science and Beyond: Presidential Address to the American Political Science Association. Perspectives on Politics 6 (1): 3-9.

Fearon, James D. and David D. Laitin. 1996. "Explaining Interethnic Cooperation." American Political Science Review 90 (4): 715-35.

Hardin, Garrett. 1968. The Tragedy of the Commons. Science, 162 (3859). December 13, 1968: 1243-1248.

______. 1994. The Tragedy of the Unmanaged Commons. Trends in Ecology & Evolution 9: 199.

Hart, Kim, 2008. A New Breed of Hackers Tracks Online Acts of War. Washington Post August 26, 2008.

Lander, Arc and John Markoff, 2007. Digital Fears Emerge After Data Siege in Estonia. New York Times May 29, 2007.

Mitchell, William. 1988. Virginia, Rochester, and Bloomington: Twenty-five years of Public Choice and Political Science. Public Choice 56: 101-119.

Ostrom, Elinor. 1990. Governing the Commons. Cambridge, UK: Cambridge University Press.

Putnam, Robert D., 2000. Bowling Alone. NY: Simon and Shuster.

Wu, Xu, 2007. Chinese Cyber Nationalism. Lanham MD: Lexington Books.
Zagorski, Nick, 2006. Profile of Elinor Ostrom. Proceedings of the National Academy of Sciences (USA). 19:103(51): 19221-23.

Source: ISI Web of Science.

1 For a discussion of interdisciplinary research in terms of imports and exports, see Axelrod (2008).

2 While political scientists can take pride in fact that the Nobel Prize in Economics recognizes the contribution of a political scientist to economics, the Nobel citation took the opposite tack, saying that Ostrom’s research “demonstrates that economic analysis can shed light on most forms of social organization.”

3 Ostrom (1990, p. 7) notes another frame - the two-person iterated Prisoner’s Dilemma - is insufficient to deal with common pool resources since it does not include with the problem of monitoring.

4 The counts from ISI’s Web of Science are respectively 663 and 2077.

5 I thank Jeffrey Cooper of SAIC for pointing out that Ostrom’s work is relevant to the governance of cyber space.

Yüklə 111,5 Kb.

Dostları ilə paylaş: