A brief response to Paul Rosenzweig’s meditation on the utility of measuring cybersecurity and the possibility of developing metrics for doing so.
DayZero: Cybersecurity Law and Policy
DayZero dives deep in cybersecurity vulnerabilities, and the crime, espionage, and warfare taking place on networked computers. We look at legislation, practice, and litigation over how to keep our networks and critical infrastructure secure; new and emerging threats and how the policy process responds to them; the relationship between cybersecurity other security goods; and cybersecurity in American relations with foreign adversaries and allies.
The Department of Justice wants access to encrypted consumer devices but promises not to infiltrate business products or affect critical infrastructure. Yet that's not possible, because there is no longer any difference between those categories of devices.
Hackers leaked 700 GB of sensitive data obtained from Argentine law enforcement. The Argentine Navy’s Twitter account was hacked and used to spread misinformation. So why isn’t this a bigger story?
A new team is developing strategies to tackle threats from cyberspace—and it wants your ideas.
Even though 5G deployments are in their infancy, the long time horizons for technology development in this field mean that U.S. political and industry leaders cannot afford to wait when it comes to 6G.
The R Street Institute has begun an initiative intended to build a consensus around how to tackle the problem of measuring cybersecurity.
The market and the government need to move beyond just punishing corporations after major cybersecurity failures to steer them instead toward proactive and comprehensive cyber risk management.
Subscribe to DayZero: Cybersecurity Law and Policy via RSS.