Hide
The 5×5—Reflections on trusting trust: Securing software supply chains

In-Depth Research & Reports Oct 4, 2021

Raising the colors: Signaling for cooperation on maritime cybersecurity

By William Loomis, Virpratap Vikram Singh, Dr. Gary C. Kessler, Dr. Xavier Bellekens

Few industries are as critical to the global economy as the maritime transportation system (MTS). However, the efficient operation of the MTS is at risk, as the industry is increasingly vulnerable to cyber threats. The MTS must work to raise its baseline for cybersecurity and better protect its actors from systemic cyber threats going forward.

Cybersecurity Maritime Security
The 5×5—Reflections on trusting trust: Securing software supply chains

Issue Brief Aug 31, 2021

Trusted connectivity: A framework for a free, open, and connected world

By Kaush Arha

As democracies address the global demand for a free, open, and connected world while ensuring that local and global emissions targets are met, they need an organizing framework: the concept of “trusted connectivity.”
China Cybersecurity
The 5×5—Reflections on trusting trust: Securing software supply chains

New Atlanticist Aug 4, 2021

National Cyber Director Chris Inglis: We need to become a ‘harder target’ for our adversaries

By Katherine Walla

How do you strengthen an entire nation’s cyber defenses? That’s the task facing Inglis, who spoke about his priorities in his new White House role at the Atlantic Council.

Cybersecurity National Security

Programs

The Atlantic Council’s Cyber Statecraft Initiative, within the Scowcroft Center for Strategy and Security, works at the nexus of geopolitics and cybersecurity to craft strategies to help shape the conduct of statecraft and to better inform and secure users of technology.

learn more

Experts

Fellow

Danny Citrinowicz  

Nonresident Fellow

Rafik Hariri Center & Middle East programs

Arabic Cybersecurity

Fellow

Nicholas Andersen

Nonresident Senior Fellow

Cyber Statecraft Initiative Scowcroft Center for Strategy and Security

Cybersecurity English

Fellow

Xavier Bellekens

Nonresident Senior Fellow

Cyber Statecraft Initiative Scowcroft Center for Strategy and Security

Cybersecurity Technology & Innovation

Fellow

Andy Bochman

Nonresident Senior Fellow

Global Energy Center

Cybersecurity Energy & Environment

Fellow

Joseph T. Bonivel Jr.

Nonresident Senior Fellow

GeoTech Center

Cybersecurity Defense Technologies

Fellow

Bryson Bort

Nonresident Senior Fellow

Cyber Statecraft Initiative Scowcroft Center for Strategy and Security

Cybersecurity
Load More

Content

The 5×5

May 12, 2022

The 5×5—Reflections on trusting trust: Securing software supply chains

By Simon Handler

Five experts discuss the implications of insecure software supply chains and realistic paths to securing them. 

Cybersecurity Defense Technologies

Article

May 9, 2022

Cyber strategy: Assumptions and hypotheticals 

By Yumi Gambrill and Emma Schroeder

When academics, policymakers, and practitioners discuss security and conflict within the cyber domain, they are often hampered by a series of ongoing debates and unarticulated assumptions. We have brought together members of these communities to discuss the reasons that these debates are important to the shaping of cybersecurity and strategic plans.

Cybersecurity

BelarusAlert

May 4, 2022

Putin’s Ukraine War: Desperate Belarus dictator strikes back

By Brian Whitmore

Belarus dictator Alyaksandr Lukashenka is seeking to introduce the death penalty for anti-war activists who are sabotaging Russian troop movements in protest over Belarus's supporting role in Putin's Ukraine invasion.

Belarus Conflict

Buying Down Risk

May 3, 2022

Buying down risk: Container security

By Trey Herr, Robert Morgus, Stewart Scott, and Tianjiu Zuo

Industry's move towards container architectures provides great promise for dynamic systems and service provision, but it also brings up new concerns and opportunities for the cybersecurity ecosystem.

Cybersecurity Technology & Innovation

Buying Down Risk

May 3, 2022

Buying down risk: Open source software

By Trey Herr, Robert Morgus, Stewart Scott, and Tianjiu Zuo

Open-source software underpins most modern code, and the unique incentives and constraints its developers face pose a tricky set of challenges for the cybersecurity ecosystem.

Cybersecurity Technology & Innovation

Buying Down Risk

May 3, 2022

Buying down risk: Complexity management

By Trey Herr, Robert Morgus, Stewart Scott, and Tianjiu Zuo

The ever-increasing complexity of software programs and services can become a security and operational challenge in and of itself, increasing ecosystem-wide risk.

Cybersecurity Technology & Innovation

Buying Down Risk

May 3, 2022

Buying down risk: Software provenance and composition

By Trey Herr, Robert Morgus, Stewart Scott, and Tianjiu Zuo

SBoM adoption is picking up pace, aiming to provide better insight into and contractual leverage for software components—increased investment, standardization, and coordination can help fully develop SBoM use.

Cybersecurity Technology & Innovation

Buying Down Risk

May 3, 2022

Buying down risk: Cyber poverty line

By Trey Herr, Robert Morgus, Stewart Scott, and Tianjiu Zuo

Many enterprises face systemic challenges to their cybersecurity posture, from resource shortages to suboptimal risk attitudes, all of which weaken an ecosystem only as secure as its weakest links.

Cybersecurity Technology & Innovation

Buying Down Risk

May 3, 2022

Buying down risk: Cyber liability

By Trey Herr, Robert Morgus, Stewart Scott, and Tianjiu Zuo

Despite software's ubiquity and omnipresent vulnerability, conventions around liability for software producers are still informal and rarely enforced.

Cybersecurity Technology & Innovation

Buying Down Risk

May 3, 2022

Buying down risk: Memory safety

By Trey Herr, Robert Morgus, Stewart Scott, and Tianjiu Zuo

Some coding languages, like C and C++, allow for a common, exceptionally dangerous bug called a memory safety error, comprising up to 70 percent of industry vulnerabilities.

Cybersecurity Technology & Innovation
Load More