While China’s political and academic discourse on cybersecurity uses many of the same concepts as other countries’, the notion of deterrence is largely missing from its vocabulary. This can be explained by China’s relative vulnerability to cyberattacks: deterrence through denial lacks credibility and deterrence through punishment would be counter-productive. China has chosen instead to promote an international convention on interstate …
Microtargeted Propaganda by Foreign Actors
Microtargeting involves collecting information about people and using that information to show them targeted political advertisements. Such microtargeting enables advertisers to tailor ads to specific groups of people, for instance people who visit certain websites or share specific characteristics. Microtargeted propaganda can be more effective, more efficient and more hidden than traditional propaganda. Consequently, its use, especially by foreign actors, …
Ukraine: Cyber Operations and Digital Technologies
Towards the end of 2021, Russia began a military build-up around Ukraine. Then, after several months unsuccessfully pressuring the Ukrainian government to accede to its demands, Russia invaded Ukraine on 24 February 2022. This post collects and synthesises information and perspectives on the cyber and information technology-related aspects of the conflict thus far, including the cyber operations and tactics of …
Unpacking Brazil’s Cyber Diplomacy
Brazil’s diplomacy has historically been one of soft power and brokering discussions. In Internet governance, the country has been internationally recognised for to its multi-stakeholder governance model and for advocating for privacy in the digital age. As cyber threats become a national security concern and a key part of the political agenda in the run-up to 2022 presidential elections, the …
Data Protection in China
In the summer of 2021, China’s National People’s Congress passed two pieces of data-related legislation, the Data Security Law (DSL) and the Personal Information Protection Law (PIPL). These laws, which entered into force in September and November respectively, form the centre of what will become a comprehensive regulatory architecture governing all important aspects of data collection, storage, processing, trading and …
The Political Economy of European Cybersecurity
Public-private cooperation is often suggested as one response to an increasingly volatile digital security environment. But there has been little attention paid to how outcomes at the EU level are influenced by how such cooperation is organised in practice, what its drivers are and specific models of organising relations between the public and private sector. By making a distinction between …
Securing Critical Gas Infrastructure
Europe relies heavily on imported natural gas, and the Gas Critical Infrastructure (GCI) involved in transporting, storing and distributing it must be made secure and resilient to both physical and cyber threats. However, the complexity of the gas network – including its diversity of transportation lines, geographies crossed, and production and storage facilities – make it a challenging environment to …
Net Politics in Africa
African governments’ views on cybersecurity are not homogenous and actions that indicate ideals of “net nationalism” continue to emerge in parts of Africa. A politics of net nationalism utterly focused on individual governmental interests will imperil international cooperation, mutual legal assistance and the cross-border flow of information, and may derail international cybersecurity efforts, especially harmful to a region like Africa …
German Cybersecurity Policy 2021-2025
The new German government will mean a shift for the country’s cybersecurity policy. The joint coalition agreement of the three ruling parties lays out their plans for the next four years and signals changes of course in areas like encryption policy and “hackbacks”. In other fields – particularly cyber diplomacy – the devil will be in the details. The country’s …
Cybersecurity Convergence in the BRICS Countries
The thirteenth BRICS Summit took place on 9 September 2021 and cybersecurity featured prominently amongst the priorities identified by BRICS leaders. The BRICS – Brazil, Russia, India, China, and South Africa – are explicitly advocating for enhanced cooperation on cybersecurity issues, both at the international and intra-BRICS level. The facility with which cooperation can be enhanced remains unclear, but BRICS priorities …