Surveying current trends in information security, it's clear that a myriad of forces are at work. But fundamentally, security is all about economics: both attacker and defender are trying to maximize the return on their investments.  Economics can both explain why security fails so often, and offer new solutions for security success.  For example, often the people who could protect a system are not the ones who suffer the costs of failure.  Changing those economic incentives will do more to improve security than more technology.