ISS-Report: Attribution of Cyber Incidents – A Framework for an International Cyber Attribution Council
The report evaluates existing information and academic literature regarding the attribution of cyber incidents. More precisely, it focuses on an appropriate framework for the creation of an international body tasked to perform independent, objective and transparent attribution of significant/major cyber-attacks on a global scale.
This report was sponsored by the German Federal Foreign Office and written by Marco Macori, ISS research fellow, with input provided by Guido Gluschke, ISS co-director. ISS’ publications do not necessarily reflect the opinions of its sponsors.
Chatham House Research Paper “Cybersecurity of NATO’s Space-based Strategic Assets”
Guido Gluschke and Marco Macori contributed to a research paper on “Cybersecurity of NATO’s Space-based Strategic Assets” by Chatham House. Almost all modern military engagements rely on space-based assets, but cyber vulnerabilities can undermine confidence in the performance of strategic systems. The paper evaluates the threats, vulnerabilities and consequences of cyber risks to strategic systems.
Please visit this page for a report overview and the full report:
World Economic Forum Report on Cyber Resilience in the Electricity Ecosystem, Geneva/Switzerland
On 13 February 2019 the new WEF report on Cyber Resilience in the Electricity Ecosystem: Principles and Guidance for Boards was released. Guido Gluschke and Kristina Sander were part of the expert group at the WEF which worked on the report.
SNV-Paper on Securing Democracy in Cyberspace, Berlin/Germany
Marco Macori contributed to a new paper on Securing Democracy in Cyberspace by the Berlin-based think tank Stiftung neue Verantwortung (SNV). The paper analyses three aspects and based upon the results, it proposes specific recommendations to protect against election interference.
Those recommendations can be adopted by various countries and specifically applied to their unique modern election process and geopolitical situation.
Cyber Security Policies and Critical Infrastructure Protection
This reader deals with cyber security policies in the context of critical infrastructure protection. Experts of various nationalities and backgrounds have contributed. Topics include cyber security for nuclear power plants, the future of nuclear energy security, cyber security education and training for CIP, threat intelligence for CIP, the importance of public-private partnerships in CIP, understanding NATO’s new CIP policies, as well as the threat of cyber terrorism.
The book can be downloaded for free using this link:
Copyright © 2018 by Institute for Security and Safety (ISS) Press
ISBN 978-3-00-060505-5 (pdf)
About the Editors:
Guido Gluschke is one of the directors of the Institute for Security and Safety (ISS) at the Brandenburg University of Applied Sciences, Germany. His main areas of expertise are IT and cyber security, especially in the energy context.
He is a member of nuclear-cyber projects of the Nuclear Threat Initiative (NTI), and of the Energy Expert Cyber Security Platform – Expert Group of the European Commission Directorate General of Energy.
Prof. Dr. Mesut Hakkı Caşın is a Professor at İstinye University, Turkey.
He is a renowned expert on international law, terrorism, international security strategies, energy politics, and military history. He gives lectures on international relations and international law at the graduate and undergraduate levels.
Marco Macori is a research fellow with the Institute for Security and Safety (ISS) at the Brandenburg University of Applied Sciences, Germany.
His research focuses on the nexus of transnational terrorism and cyber threats, an issue on which he lectured at the NATO Center of Excellence – Defence against Terrorism. He’s a member of the academic steering group for the OSCE research project on Cyber CBMs and of the Transatlantic Cyber Forum of Stiftung Neue Verantwortung.
ISS Research Paper on Confidence-Building Measures in Cyber
This paper by ISS research fellow Kristina Sander aims to elaborate the development of confidence- building measures (CBMs) in cyber after outlining traditional CBMs and their origin in the last century. Furthermore, the challenges for confidence-building in cyber, derived from the attribution of cyber-attacks, geographical linking of boundaries in cyber space, and the unequal capabilities of nation states are discussed.
1st Transatlantic Cyber Forum Workshop “Cyber Defence & Political Infrastructures”, Washington D.C./U.S.
Marco Macori, ISS research fellow, participated in the first Transatlantic Cyber Forum Workshop “Cyber Defence & Political Infrastructures“, which took place in Washington D. C. on July 10 and 11, 2017, at the premises of the New America Foundation. During the workshop, phase II of this research project, lead by the Berlin-based think tank Stiftung neue Verantwortung (SNV), was discussed. The outcomes of phase I can be found in the analysis “Cyber Operations: Defending Political lT-Infrastructures”.
Cyber Security in the Energy Sector – Recommendations for the European Commission on a European Strategic Framework and Potential Future Legislative Acts for the Energy Sector, European Commission, Brussels
The report “Cyber Security in the Energy Sector” Recommendations for the European Commission on a European Strategic Framework and Potential Future Legislative Acts for the Energy Sector” by the Energy Expert Cyber Security-Expert Group of the European Commission (EESCP-Expert Group) was published. Guido Gluschke, ISS co-director, was part of the expert group. This report proposes a strategic framework for the energy sector with the target to address the challenges found in the energy sector and in nuclear energy. The overall objectives are to secure energy systems that are providing essential services to the European society and to protect the data in the energy systems and the privacy of the European citizens. The recommendations for the European Commission given in this report targets to provide the set-up and frameworks that allow an efficient, holistic and effective cyber security treatment in the European Union.