Hide

Keep up with our work!

Follow us on Twitter for to keep up with the latest cybersecurity developments

Follow us on Spotify for the latest and greatest in cyber-themed music playlists

Follow the Atlantic Council on LinkedIn for the the latest geopolitical analysis

Upcoming events

Public Event Thu, April 6, 2023 • 10:15 am ET

Rebalancing responsibility: Implementing the National Cybersecurity Strategy

Top United States government leaders discuss and answer questions on the latest US cyber strategy, what the NCS offers to the public, and how it will be implemented in a panel discussion.
Cybersecurity National Security Technology & Innovation United States and Canada
Public Event Thu, April 20, 2023 • 1:45 pm ET

On breaking things: Melding cyber and kinetic in conflict

A panel discussion on lethal outcomes of cyber operations, coordination between cyber and kinetic forces, and integration of cyber options in future warfare within the context of larger intelligence and military behaviors.
Conflict Cybersecurity Security & Defense

Cyber Statecraft projects

Cloud security & policy

Cloud computing is more than technology and engineering minutia—it has real social and political consequences. Cloud providers influence the pace and direction of economic growth, shape international security competition, and mediate access to technologies which today inform changes in the global balance of power.

Cyber 9/12 Strategy Challenge

The Cyber 9/12 Strategy Challenge is an annual cyber policy and strategy competition where students from across the globe compete in developing policy recommendations tackling a fictional cyber catastrophe.

Breaking Trust: Software Supply Chain Insecurity

The Breaking Trust project seeks to catalog software supply chain intrusions and identify major trends and implications from their execution. This project remains ongoing to highlight the need for a more coherent policy response together with action from industry and open-source communities.

The Proliferation of offensive cyber capabilities

The proliferation of offensive cyber capabilities (OCC) presents an expanding set of risks to states and challenges commitments to protect openness, security, and stability in cyberspace. As these capabilities continue to proliferate with increasing complexity and to new types of actors, the imperative to slow and counter their spread only strengthens.

Open source software

Open source software underlies much of the modern digital world, enabling massive productivity and remarkable creation. That criticality, born of OSS’s success, creates challenges for resourcing, security, and long-terms sustainability. The future of the open-source ecosystem will depend on improved policy conversations, public funding, and bolstered industry support. This project remains ongoing to highlight the need for improved policy together with action from industry and open-source communities to support this critical digital infrastructure.

Cyber safety and control systems security

Operational technology (OT) cybersecurity encompasses the software, hardware, policies, personnel, and services deployed to protect physical systems. These systems comprise the backbone of national critical infrastructure and represent tangible links between society and its digital tools and data.

Seeking resilience in cyberspace

Mission resilience is the ability of a mission system to prevent, respond to, and/or adapt to both anticipated and unanticipated disruptions, optimizing efficacy and long-term value. Resilient mission systems should have the capacity to continue mission essential operations while contested, gracefully degrading through disruption rather than collapsing all at once.

The 5×5 series

The 5×5 series by the Cyber Statecraft Initiative features five experts answering five questions on a common theme, trend, or current event in the world of cyber.

The Cyber Moonshot

The Cyber Statecraft Initiative has established a new project to communicate core themes and concepts in cybersecurity through a series of short stories in a way that is fun and approachable to a broader audience than conventional policy analysis/publication.

Cyber Statecraft team

Staff

Trey Herr

Director

Cyber Statecraft Initiative Digital Forensic Research Lab

Cybersecurity Digital Policy

Staff

Safa Shahwan Edwards

Deputy Director

Cyber Statecraft Initiative Digital Forensic Research Lab

Cybersecurity Spanish

Staff

Will Loomis

Associate Director

Cyber Statecraft Initiative Digital Forensic Research Lab

Cybersecurity

Staff

Emma Schroeder

Associate Director

Cyber Statecraft Initiative Digital Forensic Research Lab

Conflict Cybersecurity

Staff

Stewart Scott

Associate Director

Cyber Statecraft Initiative Digital Forensic Research Lab

Cybersecurity Disinformation

Staff

Maia Hamin

Associate director

Cyber Statecraft Initiative Digital Forensic Research Lab

Cybersecurity Technology & Innovation

Staff

Jen Roberts

Program Assistant

Cyber Statecraft Initiative Digital Forensic Research Lab

Cybersecurity French

Staff

Alexander Beatty

Program Assistant

Cyber Statecraft Initiative Digital Forensic Research Lab

Spanish

Cyber Statecraft fellows

The Atlantic Council’s Cyber Statecraft Initiative, under the Digital Forensic Research Lab (DFRLab), works at the nexus of geopolitics and cybersecurity to craft strategies to help shape the conduct of statecraft and to better inform and secure users of technology.

The Atlantic Council’s Digital Forensic Research Lab is building the world’s leading hub of digital forensic analysts (#DigitalSherlocks).

The DFRLab

At the Atlantic Council’s DFRLab, our mission is:

To identify, expose, and explain disinformation where and when it occurs using open source research; to promote objective truth as a foundation of government for and by people; to protect democratic institutions and norms from those who would seek to undermine them in the digital engagement space.

To create a new model of expertise adapted for impact and real-world results.

To forge digital resilience at a time when humans are more interconnected than at any point in history, by building the world’s leading hub of digital forensic analysts tracking events in governance, technology, security, and where each intersect as they occur, as well as a network of #DigitalSherlocks.

Visit DigitalSherlocks.org Check out the DFRLab on Medium Sign up for The Source newsletter
Cyber Statecraft Initiative

Report Feb 16, 2022

Financing & genocide: Development finance and the crisis in the Uyghur Region

A joint report that reveals how the World Bank’s International Finance Corporation (IFC) has significant investments in China’s Xinjiang Uyghur Autonomous Region, where indigenous peoples have been subjected to what international legislators, legal scholars, and advocates have determined to be a genocide.

Read More
Cyber Statecraft Initiative

Report Jan 4, 2022

After the insurrection: How domestic extremists adapted and evolved after the January 6 US Capitol attack

By Jared Holt

This report by the Digital Forensic Research Lab (DFRLab) provides an overview and analysis of the shifts observed in domestic extremist movements since the 2021 Capitol attack.
Elections Rule of Law
Cyber Statecraft Initiative

In-Depth Research & Reports Jul 22, 2021

Information defense: Policy measures taken against foreign information manipulation

By Jean-Baptiste Jeangène Vilmer

A joint report from the Atlantic Council’s Digital Forensic Research Lab and Europe Center on the policy measures government and private sector can take against foreign information manipulation.
Cybersecurity Digital Policy

Content

Tech at the Leading Edge

Mar 22, 2023

Modernizing critical infrastructure protection policy: Seven perspectives on rewriting PPD21

By Will Loomis

In February of 2013, then President Obama signed a landmark executive order - Presidential Policy Directive 21 (PPD 21) - that defined how U.S. Departments and Agencies would provide a unity of government effort to strengthen and maintain US critical infrastructure. Almost a decade later, evolutions in both the threat landscape and the interagency community invite the US government to revise this critical policy.

Cybersecurity Infrastructure Protection

The 5x5

Mar 22, 2023

The 5×5—Conflict in Ukraine’s information environment

By Simon Handler

Experts provide insights on the war being waged through the Ukrainian information environment and take away lessons for the future.

Conflict Cybersecurity

Tech at the Leading Edge

Mar 16, 2023

Building a shared lexicon for the National Cybersecurity Strategy

By the Cyber Statecraft Initiative

The 2023 National Cybersecurity Strategy, released on March 3, represents the ambitions of the Biden Administration to chart a course within and through the cyber domain, staking out a critical set of questions and themes. These ambitions are reflected within the strategy’s pillars and titled sections, but also key words and phrases scattered throughout the […]

Cybersecurity National Security

Tech at the Leading Edge

Mar 3, 2023

How will the US counter cyber threats? Our experts mark up the National Cybersecurity Strategy

By Maia Hamin, Trey Herr, Will Loomis, Emma Schroeder, and Stewart Scott

On March 2, the White House released the 2023 US National Cybersecurity Strategy. Read along with CSI staff, fellows, and experts for commentary on the document and its relationship with larger cybersecurity policy issues.

Cybersecurity Technology & Innovation

Tech at the Leading Edge

Mar 1, 2023

Makings of the Market: Seven perspectives on offensive cyber capability proliferation

By Jen Roberts and Emma Schroeder

The marketplace for offensive cyber capabilities continues to grow globally. Their proliferation poses an expanding set of risks to national security and human rights, these capabilities also have legitimate use in state security and defense. To dive deeper on this topic, we asked seven experts to offer their perspectives.

Cybersecurity
Russian bombardment of telecommunications antennas in Kiev

Report

Feb 27, 2023

A parallel terrain: Public-private defense of the Ukrainian information environment

By Emma Schroeder and Sean Dack

The report analyzes Russia’s continuous assaults against the Ukrainian information environment, and examines how Russian offensives and Ukrainian defense both move through this largely privately owned and operated environment. The report highlights key questions that must emerge around the growing role that private companies play in conflict.

Conflict Cybersecurity

The 5x5

Feb 23, 2023

The 5×5—Strengthening the cyber workforce

By Simon Handler

Experts provide insights into ways for the United States and its allies to bolster their cyber workforces.

Cybersecurity Education

Report

Feb 8, 2023

Avoiding the success trap: Toward policy for open-source software as infrastructure

By Stewart Scott, Sara Ann Brackett, Trey Herr, Maia Hamin with the Open Source Policy Network

Open-source software (OSS) sits at the center of almost every digital technology moving the world since the early 1980s—laptops, cellphones, widespread internet connectivity, cloud computing, social media, automation, all the rainbow flavors of e-commerce, and even secure communications and anti-censorship tools.

Cybersecurity

The 5x5

Jan 30, 2023

The 5×5—China’s cyber operations

By Simon Handler

Experts provide insights into China’s cyber behavior, its structure, and how its operations differ from those of other states.

China Cybersecurity

Cyber 9/12 Project

Jan 4, 2023

2023 DC Cyber 9/12 Strategy Challenge

By Cyber Statecraft Initiative

The Atlantic Council’s Cyber Statecraft Initiative, in partnership with American University’s School of International Service and Washington College of Law, will hold the eleventh annual Cyber 9/12 Strategy Challenge both virtually and in-person in Washington, DC on March 17-18, 2023. For the first time in the competition’s history, we will be hosting a hybrid event. Teams […]

Cybersecurity
Load More