Harms arising from cybersecurity flaws.

Everyone agrees on the need for more and better cybersecurity. But what exactly does that look like, and how can industry and government get there? Answering these questions requires examining both what behaviors technology designers and operators—such as companies that make software or hold and process sensitive data—should emulate and how government can incentivize or require this behavior. This issue area covers cyber standards and policy and regulatory structures to advance their adoption such as software liability.


The Atlantic Council’s Cyber Statecraft Initiative, under the Digital Forensic Research Lab (DFRLab), works at the nexus of geopolitics and cybersecurity to craft strategies to help shape the conduct of statecraft and to better inform and secure users of technology.