Hide

Keep up with our work!

Follow us on Twitter for to keep up with the latest cybersecurity developments

Follow us on Spotify for the latest and greatest in cyber-themed music playlists

Follow the Atlantic Council on LinkedIn for the the latest geopolitical analysis

Events

Online Event Mon, July 17, 2023 • 11:30 am ET

Getting to fault tolerant: Policy for secure and resilient cloud computing

A panel discussion on cloud computing, its emerging criticality, and what role policy can play in helping ensure its secure and resilient adoption.

Cybersecurity Internet
Public Event Thu, April 20, 2023 • 1:45 pm ET

On Breaking Things: Melding Cyber and Kinetic in Conflict

A panel discussion on lethal outcomes of cyber operations, coordination between cyber and kinetic forces, and integration of cyber options in future warfare within the context of larger intelligence and military behaviors.
Conflict Cybersecurity Security & Defense
Public Event Thu, April 6, 2023 • 10:15 am ET

Rebalancing responsibility: Implementing the National Cybersecurity Strategy

Top United States government leaders discuss and answer questions on the latest US cyber strategy, what the NCS offers to the public, and how it will be implemented in a panel discussion.
Cybersecurity National Security Technology & Innovation United States and Canada

Cyber Statecraft projects

Cloud security & policy

Cloud computing is more than technology and engineering minutia—it has real social and political consequences. Cloud providers influence the pace and direction of economic growth, shape international security competition, and mediate access to technologies which today inform changes in the global balance of power.

Cyber 9/12 Strategy Challenge

The Cyber 9/12 Strategy Challenge is an annual cyber policy and strategy competition where students from across the globe compete in developing policy recommendations tackling a fictional cyber catastrophe.

Breaking Trust: Software Supply Chain Insecurity

The Breaking Trust project seeks to catalog software supply chain intrusions and identify major trends and implications from their execution. This project remains ongoing to highlight the need for a more coherent policy response together with action from industry and open-source communities.

The Proliferation of offensive cyber capabilities

The proliferation of offensive cyber capabilities (OCC) presents an expanding set of risks to states and challenges commitments to protect openness, security, and stability in cyberspace. As these capabilities continue to proliferate with increasing complexity and to new types of actors, the imperative to slow and counter their spread only strengthens.

Open source software

Open source software underlies much of the modern digital world, enabling massive productivity and remarkable creation. That criticality, born of OSS’s success, creates challenges for resourcing, security, and long-terms sustainability. The future of the open-source ecosystem will depend on improved policy conversations, public funding, and bolstered industry support. This project remains ongoing to highlight the need for improved policy together with action from industry and open-source communities to support this critical digital infrastructure.

Cyber safety and control systems security

Operational technology (OT) cybersecurity encompasses the software, hardware, policies, personnel, and services deployed to protect physical systems. These systems comprise the backbone of national critical infrastructure and represent tangible links between society and its digital tools and data.

Seeking resilience in cyberspace

Mission resilience is the ability of a mission system to prevent, respond to, and/or adapt to both anticipated and unanticipated disruptions, optimizing efficacy and long-term value. Resilient mission systems should have the capacity to continue mission essential operations while contested, gracefully degrading through disruption rather than collapsing all at once.

The 5×5 series

The 5×5 series by the Cyber Statecraft Initiative features five experts answering five questions on a common theme, trend, or current event in the world of cyber.

The Cyber Moonshot

The Cyber Statecraft Initiative has established a new project to communicate core themes and concepts in cybersecurity through a series of short stories in a way that is fun and approachable to a broader audience than conventional policy analysis/publication.

Cyber Statecraft team

Staff

Trey Herr

Director

Cyber Statecraft Initiative Digital Forensic Research Lab

Cybersecurity Digital Policy

Staff

Safa Shahwan Edwards

Deputy Director

Cyber Statecraft Initiative Digital Forensic Research Lab

Cybersecurity Spanish

Staff

Will Loomis

Associate Director

Cyber Statecraft Initiative Digital Forensic Research Lab

Cybersecurity

Staff

Emma Schroeder

Associate Director

Cyber Statecraft Initiative Digital Forensic Research Lab

Conflict Cybersecurity

Staff

Stewart Scott

Associate Director

Cyber Statecraft Initiative Digital Forensic Research Lab

Cybersecurity Disinformation

Staff

Maia Hamin

Associate director

Cyber Statecraft Initiative Digital Forensic Research Lab

Cybersecurity Technology & Innovation

Staff

Jen Roberts

Program Assistant

Cyber Statecraft Initiative Digital Forensic Research Lab

Cybersecurity French

Staff

Alexander Beatty

Assistant Director

Cyber Statecraft Initiative Digital Forensic Research Lab

Cyber Statecraft fellows

The Atlantic Council’s Cyber Statecraft Initiative, under the Digital Forensic Research Lab (DFRLab), works at the nexus of geopolitics and cybersecurity to craft strategies to help shape the conduct of statecraft and to better inform and secure users of technology.

The Atlantic Council’s Digital Forensic Research Lab is building the world’s leading hub of digital forensic analysts (#DigitalSherlocks).

The DFRLab

At the Atlantic Council’s DFRLab, our mission is:

To identify, expose, and explain disinformation where and when it occurs using open source research; to promote objective truth as a foundation of government for and by people; to protect democratic institutions and norms from those who would seek to undermine them in the digital engagement space.

To create a new model of expertise adapted for impact and real-world results.

To forge digital resilience at a time when humans are more interconnected than at any point in history, by building the world’s leading hub of digital forensic analysts tracking events in governance, technology, security, and where each intersect as they occur, as well as a network of #DigitalSherlocks.

Visit DigitalSherlocks.org Check out the DFRLab on Medium Sign up for The Source newsletter
Cyber Statecraft Initiative

Report Feb 16, 2022

Financing & genocide: Development finance and the crisis in the Uyghur Region

A joint report that reveals how the World Bank’s International Finance Corporation (IFC) has significant investments in China’s Xinjiang Uyghur Autonomous Region, where indigenous peoples have been subjected to what international legislators, legal scholars, and advocates have determined to be a genocide.

Read More
Cyber Statecraft Initiative

Report Jan 4, 2022

After the insurrection: How domestic extremists adapted and evolved after the January 6 US Capitol attack

By Jared Holt

This report by the Digital Forensic Research Lab (DFRLab) provides an overview and analysis of the shifts observed in domestic extremist movements since the 2021 Capitol attack.
Elections Rule of Law
Cyber Statecraft Initiative

In-Depth Research & Reports Jul 22, 2021

Information defense: Policy measures taken against foreign information manipulation

By Jean-Baptiste Jeangène Vilmer

A joint report from the Atlantic Council’s Digital Forensic Research Lab and Europe Center on the policy measures government and private sector can take against foreign information manipulation.
Cybersecurity Digital Policy

Content

The 5x5

Sep 20, 2023

The 5×5—Bridging the divide: Cyber conflict in international relations

By Simon Handler

Researchers discuss the relationship between the cyber policy and academic communities, and share their advice for those interested in breaking into each community.

Cybersecurity National Security

In the News

Sep 6, 2023

Wired picked up a Global China Hub and Cyber Statecraft Initiative report on how China demands tech firms to reveal hackable flaws in their products. The initial report was written by Global China Hub Nonresident fellow Dakota Cary and Kristin Del Rosso

Andy Greenberg at Wired wrote about the recent Atlantic Council report which “investigates the fallout of a Chinese law passed in 2021, designed to reform how companies and security researchers operating in China handle the discovery of security vulnerabilities in tech products.” The original article report was written by Global China Hub nonresident fellow Dakota […]

China Economic Sanctions

Report

Sep 6, 2023

Sleight of hand: How China weaponizes software vulnerabilities

By Dakota Cary and Kristin Del Rosso

China's new vulnerability management system mandates reporting to MIIT within 48 hours, restricting pre-patch publication and POC code. This centralized approach contrasts with the US voluntary system, potentially aiding Chinese intelligence. MIIT shares data with the MSS, affecting voluntary databases as well. MSS also fund firms to provide vulnerabilities for their offensive potential.

China Cybersecurity

The 5x5

Aug 21, 2023

The 5×5—Cloud risks and critical infrastructure

By Simon Handler

Experts share their perspectives on the challenges facing cloud infrastructure and how policy can encourage better security and risk governance across this critical sector.

Cybersecurity Infrastructure Protection

The 5x5

Aug 3, 2023

The 5×5—Cyber conflict in international relations: A policymaker’s perspective

By Simon Handler

Current and former policymakers address cyber conflict’s fundamental place in international relations, their recommended readings, and ideas for how policymakers and scholars can more effectively engage one another.

Cybersecurity National Security

The 5x5

Jun 20, 2023

The 5×5—Cyber conflict in international relations: A scholar’s perspective

By Simon Handler

Leading scholars provide insights on cyber conflict’s role in international relations, how the topic can best be taught to students, and how scholars and policymakers can better incorporate each other’s perspectives.

Cybersecurity National Security

The 5x5

May 30, 2023

The 5×5—Cross-community perspectives on cyber threat intelligence and policy

By Simon Handler

Individuals with experience from the worlds of cyber threat intelligence and cyber policy share their insights and career advice.

Cybersecurity Intelligence

The 5x5

May 3, 2023

The 5×5—Cryptocurrency hacking’s geopolitical and cyber implications

By Simon Handler

Experts explore the cybersecurity implications of cryptocurrencies, and how the United States and its allies should approach this challenge.

Cybersecurity Digital Currencies

Issue Brief

Apr 19, 2023

Critical infrastructure cybersecurity prioritization: A cross-sector methodology for ranking operational technology cyber scenarios and critical entities

By Danielle Jablanski

As critical infrastructure becomes increasingly targeted by malicious adversaries, how can we effectively prioritize criticality?

Cybersecurity

Tech at the Leading Edge

Mar 22, 2023

Modernizing critical infrastructure protection policy: Seven perspectives on rewriting PPD21

By Will Loomis

In February of 2013, then President Obama signed a landmark executive order - Presidential Policy Directive 21 (PPD 21) - that defined how U.S. Departments and Agencies would provide a unity of government effort to strengthen and maintain US critical infrastructure. Almost a decade later, evolutions in both the threat landscape and the interagency community invite the US government to revise this critical policy.

Cybersecurity Infrastructure Protection
Load More