290 Items

A cyber threat map adorns a wall of the Cyber Security Operations Center at AEP headquarters in Columbus, Ohio on Wednesday, May 20, 2015.

AP Photo/John Minchillo

Analysis & Opinions - Foreign Affairs

Battlefield Internet: A Plan for Securing Cyberspace

| September/October 2018

The Internet has always been much more than a venue for conflict and competition; it is the backbone of global commerce and communication. That said, cyberspace is not, as is often thought, simply part of the global commons in the way that the air or the sea is. States assert jurisdiction over, and companies claim ownership of, the physical infrastructure that composes the Internet and the data that traverses it. States and companies built the Internet, and both are responsible for maintaining it. Actions taken in the public sector affect the private sector, and vice versa. In this way, the Internet has always been hybrid in nature. 

So, accordingly, is the real cyberwar threat.

A person types on a laptop keyboard in North Andover, Mass, June 19, 2017. (AP Photo/Elise Amendola)

AP Photo/Elise Amendola

Paper - Cyber Security Project, Belfer Center

(Why) Is There a Public/Private Pay Gap?

| August 2018

The government is facing a severe shortage of skilled workers, especially in information technology and cyber security jobs. The conventional wisdom in branches of policy and public administration is that the shortage is driven by low salaries that are not competitive for attracting top talent. Using longitudinal data on high skilled workers between 1993 and 2013, this paper shows that, if anything, government employees earn more than their private sector counterparts. Although government workers tend to earn less in the raw data, these differences are driven by the correlation between unobserved ability and selection into private sector jobs. These results are robust to additional data from the Census Bureau between 2005 and 2016. Instead, this paper shows that a more plausible culprit behind the worker shortage in government is a lack of development opportunities and poor management.

teaser image

Analysis & Opinions

Russian digital attacks pose a threat to democratic elections

| July 25, 2018

President Trump’s effort to improve the climate for dialogue with Putin may be commendable, but his reluctance to object to Russia’s offensive digital campaigns targeting democratic processes is a cause for concern. The indictment of 12 Russian intelligence officers is a sharp reminder of Russian capabilities for coming elections, writes two Swedish researchers at Harvard Kennedy School.

Job One for Space Force

NASA

Report - Cyber Security Project, Belfer Center

Job One for Space Force: Space Asset Cybersecurity

| July 12, 2018

When we think about critical infrastructure, the first assets that come to mind include the electric grid, water networks and transportation systems. Further unpacking the definition of critical infrastructure, we consider industries such as agriculture, defense or the financial sector. However, we rarely think about where the underlying systems that enable technology functionality across these sectors physically reside, who developed the technology, and who can access and manage that technology.

U.S. Army Chief Warrant Officer 2 Michael Lyons, Joint Tactical Communications Office communications operator, Fort Sam Houston, Texas, looks through information on a workstation inside the Combined Air and Space Operations Center-Nellis during Red Flag 14-1 Feb. 5, 2014, at Nellis Air Force Base, Nev.

U.S. Air Force photo/Senior Airman Brett Clashman

Paper - Hoover Institution Press

Strengths Become Vulnerabilities: How a Digital World Disadvantages the United States in its International Relations

    Authors:
  • Jack L. Goldsmith
  • Stuart Russell
| June 05, 2018

This essay seeks to explain why the United States is struggling to deal with the “soft” cyberoperations that have been so prevalent in recent years: cyberespionage and cybertheft, often followed by strategic publication; information operations and propaganda; and relatively low-level cyber disruptions such as denial-of-service and ransomware attacks.