For years, the phrase information sharing has been used in cybersecurity policy discussions without much attention to what is to be shared, and also without reference to sharing mechanisms already in place. We will unpack this overusedbut under-definedterm and will seek to bring granularity to the understanding of information sharing initiatives. This project includes an inventory and analysis of information currently exchanged or contemplated under new legislation, the associated efficacy, cost/risk/benefit tradeoffs, and emerging future information sharing needs. The team brings legal, policy, and technical expertise together, along with quantitative and qualitative methodologies to provide ready-to-implement recommendations for policymakers, researchers, and industry stakeholders.
Grant /
January 2020