Securing Cyberspace Through Public-Private Partnerships

Full Report
 
Though the term “cybersecurity” has only recently penetrated the American psyche, concern among policymakers about the need to better secure cyberspace has been intensifying for nearly two decades. The threat of cybercrime and state-sponsored attacks is growing, and cyber threats are evolving rapidly.[1][2] Today, cybersecurity is a national priority, and public-private partnership (PPP) is understood as a vital tool in securing cyberspace.

Despite the proliferation of cybersecurity PPPs over the past decade, the literature suggests that such efforts have often suffered from ill-defined goals and objectives, a lack of clearly articulated strategy, and a focus on information sharing as a goal rather than a tool. In light of such criticism, this paper asks, and seeks to answer, a foundational question: what model of PPP is most appropriate for the task of securing cyberspace? Four PPP alternatives are proposed and analyzed, from which one alternative is identified for implementation. A strategy for implementation is recommended for the chosen alternative.

[1] Lord, K. & Sharp, T. “America’s Cyber Future: Security and Prosperity in the Information Age.” Center for a New American Security. (2011, June). Vol. 1 & 2.
[2] White House, Cyberspace Policy Review: Assuring a Trusted and Resilient Information and Communications Infrastructure, (Washington, DC: U.S. Government Printing Office, 2009).