Issues

Cybersecurity Politics & Diplomacy Security & Defense Technology & Innovation

Regions

China East Asia Indo-Pacific
About Related Content

Events

Online Event Fri, November 8, 2024 • 2:00 pm ET

Capture the (red) flag: An inside look into China’s hacking contest ecosystem
China Cybersecurity Technology & Innovation
Online Event Mon, December 4, 2023 • 9:00 am ET

Community watch: China’s vision for the future of the internet
China Cybersecurity Digital Policy International Norms

All Content

Report

Dec 4, 2023

Community watch: China’s vision for the future of the internet

By Dakota Cary

In 2015, Beijing released Jointly Building a Community with a Shared Future in Cyberspace, a white paper outlining the CCP’s vision for the future of the internet. In the eight years since then, this vision has picked up steam outside of China, largely as the result of Beijing’s efforts to export these ideas to authoritarian countries.

China Cybersecurity

In the News

Sep 6, 2023

Wired picked up a Global China Hub and Cyber Statecraft Initiative report on how China demands tech firms to reveal hackable flaws in their products. The initial report was written by Global China Hub Nonresident fellow Dakota Cary and Kristin Del Rosso

Andy Greenberg at Wired wrote about the recent Atlantic Council report which “investigates the fallout of a Chinese law passed in 2021, designed to reform how companies and security researchers operating in China handle the discovery of security vulnerabilities in tech products.” The original article report was written by Global China Hub nonresident fellow Dakota […]

China Economic Sanctions

Report

Sep 6, 2023

Sleight of hand: How China weaponizes software vulnerabilities

By Dakota Cary and Kristin Del Rosso

China's new vulnerability management system mandates reporting to MIIT within 48 hours, restricting pre-patch publication and POC code. This centralized approach contrasts with the US voluntary system, potentially aiding Chinese intelligence. MIIT shares data with the MSS, affecting voluntary databases as well. MSS also fund firms to provide vulnerabilities for their offensive potential.

China Cybersecurity
Load More

Dakota Cary is a nonresident fellow at the Atlantic Council’s Global China Hub. Cary is also a consultant at SentinelOne and previously was a research analyst at Georgetown University’s Center for Security and Emerging Technology on the CyberAI Project. He focuses on China’s efforts to develop its hacking capabilities. His previous reports examine artificial-intelligence and cybersecurity research at Chinese universities, the People’s Liberation Army’s efforts to automate software vulnerability discovery, and new policies to improve China’s cybersecurity-talent pipeline. He has been featured and quoted on his expertise in a variety of outlets, including the Economist, MIT Technology Review, Hill, Breaking Defense, and Defense One. Cary has also testified before the US-China Economic and Security Review Commission.