000 | 02936cam a22003377a 4500 | ||
---|---|---|---|
999 |
_c79973 _d79973 |
||
001 | 7lcpmn645bwf57f6 | ||
003 | SE-LIBR | ||
005 | 20201111140935.0 | ||
008 | 200928s2020 sw |||||||||||000 0|eng|c | ||
022 | _a1652-0432 | ||
040 | _aSipr | ||
041 | _aeng | ||
100 | 1 | _aTurell, Johan | |
245 | 1 | 0 |
_aCyber-incident management : _bidentifying and dealing with the risk of escalation / _cJohan Turell, Fei Su and Vincent Boulanin |
260 |
_aSolna : _bSIPRI, _c2020 |
||
300 | _a50 p. | ||
490 | 0 |
_aSIPRI policy paper ; _v55 |
|
500 | _aCover: "September 2020" | ||
500 | _aSIP2023 | ||
500 | _aThe ever-increasing dependence on information and communication technologies (ICTs) in all aspects of society raises many challenges for national crisis management agencies. These agencies need to prepare not only for new cyberthreats and cyber vulnerabilities, but also for the fact that the aftermath of a cyber incident affecting critical infrastructure has its own challenges. On the one hand, the practical disruptions caused by an isolated incident can be hard to predict and control and, on the other hand, the consequences and perceptions of an incident whose cause is not yet determined can be equally hard to manage. Uncertainty around the cause of the incident and remedial actions being taken often lead to public speculation and political pressure to respond in ways that could create political tensions, and possibly conflict, between countries. | ||
500 | _aThis policy paper is the result of a nine-month research project that was jointly conducted by SIPRI and the Swedish Civil Contingencies Agency (MSB) on cyber-incident management. It explores what national crisis management authorities can do to improve their cyber-incident prevention, detection and response strategies and also how they can do better to deal with the larger societal and potentially political aftermath. It investigates why and how cyber incidents may lead to escalatory scenarios and how these scenarios can be avoided and contained using various de-escalatory approaches. It comprises an introduction providing background and the inspiration of this report (section I); four sections that explore the dynamics of escalation and de-escalation from conceptual (section II), analytical (sections III–IV) and empirical (section V) standpoints; and two sections that present the main findings and recommendations (sections VI–VII). | ||
650 |
_ainformation technology _xrisk assessment _xcrisis management _xsecurity _xcommunications |
||
653 | _acyber security | ||
700 | 1 | _aBoulanin, Vincent | |
700 | 1 | _aSu, Fei | |
710 | 2 | _aSIPRI | |
710 | 1 |
_aSverige. _bMyndigheten för samhällsskydd och beredskap, MSB |
|
852 | _h341.67SIPRI Su | ||
856 | 4 | 1 | _uhttps://www.sipri.org/publications/2020/sipri-policy-papers/cyber-incident-management-identifying-and-dealing-risk-escalation |
942 | _cEMON |