DOCSLIB.ORG

Principles of Antifragile Software

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Principles of Antifragile Software Principles of Antifragile Software Martin Monperrus University of Lille & Inria, France [email protected] January 27, 2017 Abstract reliability. The notion of “antifragility” comes from the There are many software engineering concepts book by Nassim Nicholas Taleb simply entitled and techniques related to software errors. But “Antifragile” [14]. Antifragility is a property of is this enough? Have we already completely ex- systems, whether natural or artificial: a system plored the software engineering noosphere with is antifragile if it thrives and improves when fac- respect to errors and reliability? In this paper, ing errors. Taleb has a broad definition of “error”: I discuss an novel concept, called “software an- it can be volatility (e.g. for financial systems), tifragility”, that is unconventional and has the attacks and shocks (e.g. for immune systems), capacity to improve the way we engineer errors death (e.g. for human systems), etc. Yet, Taleb’s and dependability in a disruptive manner. This essay is not at all about engineering, and it re- paper first discusses the foundations of software mains to translate the power and breadth of his antifragilty, from classical fault tolerance to the vision into a set of sound engineering principles. most recent advances on automatic software re- This paper provides a first step in this direction pair and fault injection in production. This pa- and discusses the relations between traditional per then explores the relation between the an- software engineering concepts and antifragility. tifragility of the development process and the First, I relate software antifragility to classi- antifragility of the resulting software product. cal fault tolerance. Second, I show the link be- tween antifragility and the most recent advances on automatic software repair and fault injection. 1 Introduction Third, I explore the relation between the an- tifragility of the development process and the The software engineering body of knowledge on antifragility of the resulting software product. software errors and reliability is not short of con- This paper is a revised version of an Arxiv cepts, starting from the classical definitions of paper [9]. faults, errors and failures [1], continuing with the techniques for fault-freeness proofs, fault removal and fault tolerance, etc. But is this enough? 2 Software Fragility Have we already completely explored the space of software engineering concepts related to er- There are many pieces of evidence of software rors? In this paper, I discuss a novel concept, fragility, sometimes referred to as “software brit- that I call “software antifragility”, which as the tleness”, [13]. For instance, the inaugural flight capacity to radically change the way we reason of Ariane 5 ended up with the total destruction about software errors and the way we engineer of the rocket, because of an overflow in a sub- 1 component of the system. At a totally different plexity also naturally suffer from errors, as com- scale, in the Eclipse development environment, a plex biological and ecological systems do. Once single external plugin of a low-level library pro- one acknowledges the necessary existence of soft- viding optional features crashes the whole sys- ware errors in large and interconnected software tem and makes it unusable (this is a recent exam- systems[13, 10], it changes the game. ple of fragility from December 20131). Software fragility seems independent of scale, domain and 3.1 Fault-tolerance and An- implementation technology. There are means to combat fragility: fault pre- tifragility vention, fault tolerance, fault removal, and fault Instead of aiming at error-free software, there are forecasting [1]. Software engineers strive for de- software engineering techniques to constantly de- pendability, they do their best to prevent, de- tect errors in production (aka self-checking soft- tect and repair errors. They prevent bugs by ware [18]) and to tolerate them as well (aka fault following best practices, They detect bugs by ex- tolerance [11]). Self-checking and self-testing and tensively testing them and comparing the imple- fault-tolerance is not loving errors literally, but mentation against the specification, They repair it is an interesting first step. bugs reported by testers or users and ship the In Taleb’s view, a key point of antifragility is fixes in the next release. However, despite those that an antifragile system becomes better and efforts, most software remains fragile. There are stronger under continuous attacks and errors. pragmatic explanations to this fragility: lack of The immune system, for instance, has this prop- education, technical debs in legacy systems, or erty: it requires constant pressure from microbes the economic pressure for writing cheap code. to stay reactive. Self-detection of bugs is not an- However, I think that the reason is more fun- tifragile, software may detect a lot of erroneous damental: we do not take the right perspective states, but it would not make it detect more. on errors. For fault tolerance, the frontier blurs. If the fault tolerance mechanism is static there is no advantage from having more faults. If the fault 3 Software Antifragility tolerance mechanism is adaptive [6] and if some- thing is learned when an error happens, the sys- As Taleb puts it, an antifragile system “loves er- tem always improves. We hit here a first charac- rors”. Software engineers do not. First, errors teristic of software antifragility. A software sys- cost money: it is time-consuming to find and to tem with dynamic, adaptive fault tolerance capa- repair bugs. Second, they are unpredictable: one bilities is antifragile: exposed to faults, it contin- can hardly forecast when and where they will oc- uously improves. cur, one can not precisely estimate the difficulty of repairing them. Software errors are tradition- ally considered as a plague to be eradicated and 3.2 Automatic Runtime Bug Re- this is the problem. pair Possibly, instead of damning errors, one can Fault removal, i.e. bug repair, is one means to see them as an intrinsic characteristic of the sys- attain reliability [1]. Let us now consider soft- tems we build. Complex systems have errors: in ware that repairs its own bugs at runtime and biological systems, errors constantly occur: DNA call the corresponding body of techniques “au- pairs are not properly copied, cells mutate, etc. tomatic runtime repair” (also called “automatic Software systems of reasonable size and com- recovery” and also “self-healing” [7]). 1https://bugs.eclipse.org/bugs/show_bug.cgi? There are two kinds of automatic software re- id=334466 pair: state repair and behavioral repair [8]. State 2 repair consists in modifying a program’s state system’s error recovery capabilities; if the sys- during its execution (the registers, the heap, the tem can handle those injected faults, it is likely stack, etc.). Demsky and Rinard’s paper on data to handle real-world natural faults of the same structure repair [4] is an example of such state re- nature. Third, monitoring the impact of each in- pair. Behavioral repair consists in modifying the jection gives the opportunity to learn something program behavior, with runtime patches. The on the system itself and the real environmental patch, whether binary or source, is synthesized conditions. and applied at runtime, with no human in the Because of these three effects, injecting faults loop. For instance, the application communities in production makes the system better. This of Locasto and colleagues [7] share behavioral corresponds to the main characteristic of an- patches for repairing faults in C code. tifragility: “the antifragile loves error”. It is not As said previously, a software system can be purely the injected faults that improve the sys- considered as antifragile as long as it learns some- tem, it is the impact of injected faults on the thing from bugs that occur. Automatic runtime engineering ecosystem (the design principles, the bug repair at the behavioral level corresponds mindset of engineers, etc). I will come back on to antifragility, since each fixed bug results in the profound relation between product and pro- a change in the code, in a better system. This cess in Section 4. A software system using fault means “loving errors”: a software system with self-injection in production is antifragile, it de- runtime bug repair capabilities loves errors be- creases the risk of missing, or incorrect or rotting cause those errors continuously trigger improve- of error-handling code by continuously exercising ments of the system itself. it. Injecting faults in production must come with 3.3 Failure Injection in Production a careful analysis of the the dependability losses. There must be a balance between the depend- If you really “love errors”, you always want more ability losses (due to injected system failures) of them. In software, one can create artificial and the dependability gains (due to software im- errors using techniques called fault and failure provements) that result from using fault injec- injection. So, literally, software that “loves er- tion in production. Measuring this tradeoff is rors” would continuously self-injects faults and the key point of antifragile software engineering. perturbations. Would it make sense? The idea of fault injection in production is un- By self-injecting failures, a software system conventional but not new. In 1975, Yau and Che- constantly exercises its error-recovery capabili- ung [18] proposed inserting fake “ghost planes” ties. If the system resists those injected failures, in an air traffic control system. If all the ghost it will likely resist similar real-world failures. For planes land safely while interacting with the sys- instance, in a distributed system, servers may tem and human operators, one can really trust crash or be disconnected from the rest of the net- the system. Recently, a company named Netflix work. In a distributed system with fault injec- released a “simian army” [5, 2], whose different tion, a fault injector may randomly crash some kinds of monkeys inject faults in their services servers (an example of such an injector is the and datacenters.
Load more

Recommended publications
  • The Antifragile Mindset Why Resilience Isn't Enough in the Face of a Global Pandemic
    The Antifragile Mindset Why resilience isn't enough in the face of a global pandemic. by Dana Klisanin, Ph.D. Source: Dana Klisanin If COVID-19 hadn’t cancelled travel around the world, I’d be headed to London to speak about a topic that has become increasingly timely – antifragility – a powerful concept introduced by author Nassim Nicolas Taleb in his book, Antifragile: Things that Gain From Disorder. In a nutshell, antifragility means to get stronger in the face of stressors. Taleb explains: “Some things benefit from shocks; they thrive and grow when exposed to volatility, randomness, disorder, and stressors and love adventure, risk, and uncertainty. Yet, in spite of the ubiquity of the phenomenon, there is no word for the exact opposite of fragile. Let us call it antifragile. Antifragility is beyond resilience or robustness. The resilient resists shocks and stays the same; the antifragile gets better.” Right now, the pandemic is wreaking havoc on our systems – collective systems and personal routines are undergoing major shocks. Many of us are experiencing personal and collective anxiety, as well as an increase in stress, depression, feelings of hopelessness, panic, and grief. These feelings are normal responses to trauma of this magnitude. But it is important to recognize that we don't have to give in to such feelings. We have a choice. At this crucial moment of systemic stress, we can choose to develop an antifragile mindset and grow stronger. Source: Photo by Vicky Sim on Unsplash Developing an antifragile mindset doesn't mean denying feelings of anxiety and stress, but instead, training ourselves to summon the opposite responses.
    [Show full text]
  • Building and Sustaining Antifragile Teams
    Audrey Boydston Dave Saboe Building and Sustaining Antifragile Teams “Some things benefit from shocks; they thrive and grow when exposed to volatility, randomness, disorder, and stressors and love adventure, risk, and uncertainty.” Nassim Nicholas Taleb FRAGILE: Team falls apart under stress and volatility ROBUST: Team is not harmed by stress and volatility ANTIFRAGILE: Team grows stronger as a result of stress and volatility “Antifragility is beyond resilience or robustness. The resilient resists shocks and stays the same; the antifragile gets better” - Nassim Nicholas Taleb Why Antifragility? Benefit from risk Adaptability and uncertainty Better outcomes Growth of people More innovation Can lead to antifragile code Where does your team fit? Fragile Robust Antifragile Prerequisites for Antifragility Psychological Safety What does safety sound like? Create a safe environment Accountability Honesty Healthy Conflict Respect Open Communication Safety and Trust Responsibility Radical Antifragile Candor Challenge Each Other Love Actively Seek Differing Views Growth Mindset Building Antifragile Teams Getting from Here to There Fragile Robust Antifragile “The absence of challenge degrades the best of the best” - Nassim Nicholas Taleb Fragile The Rise and Fall of Antifragile Teams Antifragile Robust Eustress Learning Mindset Just enough stressors + recovery time Stress + Rest = Antifragile Take Accountability I will . So that . What you can do Change your questions Introduce eustress + rest Innovate Building and Sustaining Antifragile Teams Audrey Boydston @Agile_Audrey Dave Saboe @MasteringBA.
    [Show full text]
  • Towards Antifragile Software Architectures
    Available online at www.sciencedirect.com Procedia Computer Science 00 (2016) 000–000 www.elsevier.com/locate/procedia 4th International Workshop on Computational Antifragility and Antifragile Engineering (ANTIFRAGILE 2017) Towards Antifragile Software Architectures Daniel Russoa,b,c,∗, Paolo Ciancarinia,b,c aDepartment of Computer Science & Engineering - University of Bologna, Mura Anteo Zamboni 7, 40126 Bologna, Italy bConsiglio Nazionale delle Ricerche (CNR), Institute of Cognitive Sciences and Technologies cConsorzio Interuniversitario Nazionale per l’Informatica (CINI) Abstract Antifragility is a rising issue in Software Engineering. Due to pervasiveness of software in a growing number of mission critical applications, traditional resilience and recovery systems may not be sufficient. Software has taken over many functionalities which are of vital interest in today and future world. We relay a lot on software applications which may be faulty and cause immense damages. To cope with this scenario, claiming to develop better software is not enough, since unexpected events a.k.a. Black Swans, may disrupt and overcome our system. The purpose of this paper is to propose a new architectural design that responds to the need to build antifragile systems for contemporary complex scenarios. We suggest a system which enhances its strength through experience and errors. It is a self adaptive system architecture improving when facing errors. The most relevant aspect of this approach is that architectures are not only resilient, they extract the intrinsic value of faults. This paper suggests that a fine grained architecture is the key issue to build antifragile systems. c 2016 The Authors. Published by Elsevier B.V. Peer-review under responsibility of the Conference Program Chairs.
    [Show full text]
  • The Unconstrained Vision of Nassim Taleb
    The Unconstrained Vision of Nassim Taleb F RYAN H. MURPHY assim Taleb has risen in the past decade to become an authority on the intersection of finance, statistics, and epistemology, popularizing insights N regarding fat tails and true uncertainty. While he has brought attention to many worthy concepts poorly understood by the public, his recent work under- scores an important tension within his thought. Though Taleb claims to champion the superiority of traditional institutions over the rationalism and expertise of social engineers, his arguments and conclusions betray a supreme confidence in his own ability to rationally evaluate which traditions are beneficial. In contrast to many thinkers who see the institutions and practices of modern civilization as outcomes of evolutionary processes, Taleb is a social engineer who endorses radical change, although those radical changes involve a return to institutions and practices of years past. Most recently, his 2012 book Antifragile: Things That Gain from Disorder follows the ideas of the earlier publication The Black Swan: The Impact of the Highly Improbable (2007), and its extensions are apparent. The Black Swan challenged readers to consider unpredictable events that fall outside the formal models of aca- demics, especially economists. A theory may always seem right—but only until it isn’t; the eponymous black swan falsified the long-standing theory that all swans are white. Similarly, theories that data told us perform well may suddenly cease describing reality, just as a financial model may cause a naive investor to lose his shirt. Ryan H. Murphy is a research associate at the O’Neil Center for Global Markets and Freedom in the Southern Methodist University Cox School of Business.
    [Show full text]
  • Antifragile-How-To-Live-In-A-World-We-Dont-Understand
    blo gs.lse.ac.uk http://blogs.lse.ac.uk/lsereviewofbooks/2013/02/23/book-review-antifragile-how-to-live-in-a-world-we-dont-understand/ Book Review: Antifragile: How to Live in a World We Don’t Understand by Blog Admin February 23, 2013 In The Black Swan, Nassim Nicholas Taleb wrote on the highly improbable and unpredictable events that underlie almost everything about our world. In Antifragile, Taleb aims to stand uncertainty on its head, making it desirable, even necessary. Steve Fuller comments on the applicability of Taleb’s work to academia and discusses just how ‘fragile’ the academic way of being has become. Antifragile: How to Live in a World We Don’t Understand. Nassim Nicholas Taleb. Allen Lane. November 2012. Find this book: Antifragile is the most inspiring work that I have read in a long time. It provides a comprehensive rational basis f or the Nietzschean maxim, ‘What doesn’t kill me makes me stronger’, which is the essence of the ‘antif ragile’ world-view. Taleb generalises the lesson that he f irst taught concerning ‘black swans’, namely, those highly improbable events that when they happen end up producing a step change in the course of history. Taleb’s deep insight involved a radical dismissal of those who claim in retrospect that they nearly predicted such events and think they ‘learn’ by improving their capacity to predict ‘similar events’ in the f uture. Such people, who constitute an unhealthy proportion of pundits in the f inancial sector (but also a large part of the social science community), are captive to a hindsight illusion that leads them to conf use explanation with prediction.
    [Show full text]
  • Talebdouady Version 11
    Taleb Douady 1 Mathematical Definition, Mapping, and Detection of (Anti)Fragility N. N. Taleb NYU-Poly R Douady CNRS- Risk Data First Version, August 2012 Abstract We provide a mathematical definition of fragility and antifragility as negative or positive sensitivity to a semi-measure of dispersion and volatility (a variant of negative or positive “vega”) and examine the link to nonlinear effects. We integrate model error (and biases) into the fragile or antifragile context. Unlike risk, which is linked to psychological notions such as subjective preferences (hence cannot apply to a coffee cup) we offer a measure that is universal and concerns any object that has a probability distribution (whether such distribution is known or, critically, unknown). We propose a detection of fragility, robustness, and antifragility using a single “fast-and-frugal”, model-free, probability free heuristic that also picks up exposure to model error. The heuristic lends itself to immediate implementation, and uncovers hidden risks related to company size, forecasting problems, and bank tail exposures (it explains the forecasting biases). While simple to implement, it outperforms stress testing and other such methods such as Value-at-Risk. What is Fragility? The notions of fragility and antifragility were introduced in Taleb(2011,2012). In short, fragility is related to how a system suffers from the variability of its environment beyond a certain preset threshold (when threshold is K, it is called K-fragility), while antifragility refers to when it benefits from this variability —in a similar way to “vega” of an option or a nonlinear payoff, that is, its sensitivity to volatility or some similar measure of scale of a distribution.
    [Show full text]
  • Besprekingsartikel – Review Article the Black Swan and the Owl Of
    Historia 59, 2, November 2014, pp 369-387 Besprekingsartikel – Review Article Nassim Nicholas Taleb, The Black Swan: The Impact of the Highly Improbable Penguin, London, Second edition, 2010 xxxii, 444 pp ISBN 978-0-1410-3459-1 R233.00 Price The Black Swan and the owl of Minerva: Nassim Nicholas Taleb and the historians Bruce S. Bennett Nassim Nicholas Taleb’s The Black Swan,1 and some of his other writings, put forward ideas on history. The book is unusual since it is neither a normal academic work nor a popularisation but an attempt to do both at once.2 The book’s subtitle is The Impact of the Highly Improbable. It is a wide-ranging work, more a collection of essays than a unity, and something of a personal manifesto on his view of life as well as an argument. The basic idea is that highly improbable events have a disproportionate influence in life, and that it is dangerously misleading to treat them as exceptions which can be ignored. Taleb refers to his improbable events as Black Swans. The name comes from an ancient Latin idiom for something fantastically rare, based on the fact that all European swans are white. 3 The metaphor is also used in discussing the philosophical problem of induction, but that is not relevant to Taleb’s sense. A Black Swan has three attributes. Firstly, rarity: it is an “outlier”, something way outside the normal range. Secondly, “extreme impact” in terms of its effect on human events. Thirdly, “despite its outlier status, human nature makes us concoct explanations for its occurrence after the fact, making it explainable and predictable”.4 It is naive, in Taleb’s view, to attempt to predict such events.
    [Show full text]
  • A Political Economy of Nassim Nicholas Taleb
    The Red Swan Rob Wallace The Red Swan A political economy of Nassim Nicholas Taleb 1 farmingpathogens.wordpress.com An e-single by Rob Wallace farmingpathogens.wordpress.com The Red Swan Rob Wallace ‘Why didn’t you walk around the hole?’ asked the Tin Woodman. ‘I don’t know enough,’ replied the Scarecrow, cheerfully. ‘My head is stuffed with straw, you know, and that is why I am going to Oz to ask him for some brains.’ –L. Frank Baum (1900) She didn’t know what he knew, what she could take for granted: she tried, once, referring to Nabokov’s doomed chess-player Luzhin, who came to feel that in life as in chess there were certain combinations that would inevitably arise to defeat him, as a way of explaining by analogy her own (in fact somewhat different) sense of impending catastrophe (which had to do not with recurring patterns but with the inescapability of the unforeseeable)... –Salman Rushdie (1989) ERHAPS BY CHANCE ALONE Nassim Nicholas Taleb’s best-selling The Black Swan: The Impact of the Highly Improbable , followed now by the just released Antifragile, captures the P zeitgeist of 9/11 and the foreclosure collapse: If something of a paradox, bad things unexpectedly happen routinely. For better and for worse, Black Swan caustically critiques academic economics, which serve, more I must admit in my view than Taleb’s, as capitalist rationalization rather than as a science of discovery. Taleb crushes mainstream quantitative finance, but fails as spectacularly on a number of accounts. To the powerful’s advantage, at one and the same time he mathematicizes Francis Fukuyama’s end of history and claims epistemological impossibilities where others, who have been systemically marginalized, predicted precisely to radio silence.
    [Show full text]
  • Principles of Antifragile Software
    Principles of Antifragile Software Martin Monperrus June 7, 2017 Abstract whether natural or artificial: a system is antifragile if it thrives and improves when facing errors. Taleb has There are many software engineering concepts and a broad definition of “error”: it can be volatility (e.g. techniques related to software errors. But is this for financial systems), attacks and shocks (e.g. for enough? Have we already completely explored the immune systems), death (e.g. for human systems), software engineering noosphere with respect to er- etc. Yet, Taleb’s essay is not at all about engineering, rors and reliability? In this paper, I discuss an novel and it remains to translate the power and breadth of concept, called “software antifragility”, that is uncon- his vision into a set of sound engineering principles. ventional and has the capacity to improve the way This paper provides a first step in this direction and we engineer errors and dependability in a disruptive discusses the relations between traditional software manner. This paper first discusses the foundations engineering concepts and antifragility. of software antifragilty, from classical fault tolerance First, I relate software antifragility to classical to the most recent advances on automatic software fault tolerance. Second, I show the link between an- repair and fault injection in production. This paper tifragility and the most recent advances on automatic then explores the relation between the antifragility of software repair and failure injection. Third, I explore the development process and the antifragility of the the relation between the antifragility of the devel- resulting software product. opment process and the antifragility of the resulting software product.
    [Show full text]
  • Complex Systems
    Presented at the Baylor Libraries Symposium, “Understanding Media”, Waco, TX, Sep 25-26, 2014. Complex Systems Dr. Paul C. Grabow Baylor University There are many kinds of complex systems. Some involve primarily machinery – your car or jet airplanes, with multiple electronic subsystems – but oftentimes complex systems directly involve people, such as the air transportation system, economic systems, or political systems. Consequently, there are many ways to define complex systems because complexity has always been in the eye of the beholder. Since complex is a common adjective, the term has conventional meaning and should really not be coopted by science. However, we must recognize that there are formal, scientific definitions used by scholarly journals and conferences – and there is even a Ph.D. in complex systems. Here, however, we will use an informal approach and will focus on our ability – or inability – to understand and control these systems. But first we should start with Marshall McLuhan (1911-1980) and George Grant (1918- 1988), contemporaries who both refer (directly or indirectly) to complex systems. In Understanding Media McLuhan uses a version of “complex” 52 times – not a lot for 392 pages – and the only time that he specifically refers to a complex system it is in the following: “Words are complex systems of metaphors and symbols…” (McLuhan 873)1. He also claims that “fragmented Western man” is being transformed “into a complex and depth-structured person emotionally aware of his total interdependence with the rest of human society” (785) via electric technology. This is in concert with his claim that humans are undergoing an “extension of consciousness” – where “all technologies are extensions of our physical being” (2599, 2659, 2745) and in his reference to “the electronic world of the seamless web of events” (3046).
    [Show full text]
  • 513-515 Holtfort Krajewski 513..515
    AGENDA » Behavioral Finance Black swans, antifragility and pattern recognition at the German stock market vonProf. Dr.Thomas Holtfort | Prof. Dr. Jarek Krajewski " CF0676463 » Executive Summary » AUTOREN Prof. Dr.T. Holtfort | Prof. Dr. J. Krajewski » Die Studie beschftigt sich mit der Relevanz von Schwarzen Schwnen Prof. Dr. Thomas Holtfort, Professur fr Finanz- und Wirtschafts- im Zeitraum November 1990 bis Juni 2014 fr den deutschen Aktien- psychologie/Verhaltensçkonomie, FOM Hochschule. markt, um einerseits deutlich zu machen, dass solche Extremereignis- Prof. Dr. Jarek Krajewski, Experimentelle Wirtschaftspsychologie, Ber- se hufiger vorkommen als es nach der Normalverteilung zu erwarten gische Universitt Wuppertal und Wirtschaftspsychologie, Rheinische wre und andererseits Handlungsempfehlungen abzuleiten. Die Ergeb- Fachhochschule Kçln. nisse belegen den Einfluss von Schwarzen Schwnen, wonach allein in den letzten 24 Jahren fnf Ereignisse zu einer Renditeabweichung von mindestens vier Standardabweichungen gefhrt haben. concept of fragility is also directly related to causality, since it is not linear or causal (Fig. 1) but much more vulnerable to » The study deals with the relevance of Black Swans at the German extreme events than by a sequence of average incidents 5. stock market for the period from November 1990 to June 2014, to decide to what extent very negative yield deviations occur more frequently than would be expected for a normal distribution and to ([WHQWRI derivate recommendations for investors. The analyzes show that the WKHHYHQW negative impact of Black Swans is given clearly, according to five events which have led to a daily loss of more than four standard devia- tions only in the last 24 years. %ODFN6ZDQ I. Introduction Today’s view of the capital markets has changed since at least the scientific knowledge and new approaches of Nassim Taleb 1.
    [Show full text]
  • Arxiv:1602.05670V2 [Physics.Soc-Ph] 18 Mar 2016
    Military Strategy in a Complex World Dominic K. Albino, Katriel Friedman, Yaneer Bar-Yam New England Complex Systems Institute William G. Glenney IV∗ Chief of Naval Operations Strategic Studies Group arXiv:1602.05670v2 [physics.soc-ph] 18 Mar 2016 ∗ The views expressed in this paper are those of the authors and do not necessarily reflect the position of the Department of the Navy, the U. S. Naval War College or the CNO Strategic Studies Group. 1 Abstract A strategy is a plan, method, or series of actions for obtaining a specified goal. A military strategy typically employs the threat or use of military force to advance goals in opposition to an adversary, and is called upon where large scale force is viewed as the way to achieve such goals. Strategic thinking is traditionally focused on which part or combination of land, air, and naval forces is most effective. This may be too narrow an approach to accomplishing the ultimate end, which is generally political influence or control|or preventing influence or control by others|and almost never consists of physical destruction itself. In order to broaden the discussion of military strategy, we consider here three distinct effects of inflicting stress on an opponent: a) A fragile system is damaged|possibly catastrophically, b) A robust system is largely unaffected, retaining much or all of its prior strength, c) Some systems actually gain strength, a property which has recently been termed antifragility. Traditional perspectives of military strategy implicitly assume fragility, limiting their validity and resulting in surprise, and assume a specific end state rather than an overall condition of the system as a goal.
    [Show full text]