Technology allows individuals and organizations access to more comprehensive and diverse information, but this access requires that electronic information, networks, data repositories, and data transmissions be adequately safeguarded. RAND has developed a large body of research focused on recognizing the potential threats to information security and data integrity, as well as implications for personal and institutional privacy.
REPORT
After visiting EU high tech crime units, conducting interviews with stakeholders, and holding a scenario-based workshop, RAND Europe researchers determined that a European Cybercrime Centre hosted by Europol would bring together input from several different entities and drive a common approach to tackling cybercrime.
PROJECT
Cyberspace is increasingly important for economic growth, openness, and democracy, but poor cybersecurity can make governments, businesses, and individuals open to cyber attack and cyber crime. RAND Europe conducts a range of research on the topic to advise policymakers.
REPORT
It has become clear that Stuxnet-like worms pose a serious threat even to critical U.S. infrastructure and computer systems that are not connected to the Internet. However, defending against such attacks involves complex technological and legal issues.
REPORT
The EC Health and Consumer Protection Directorate-General commissioned RAND Europe to provide support in developing a comprehensive data strategy for DG SANCO that meets the needs of increasingly evidence-based policymaking in the future.
REPORT
Cloud computing is a model for enabling on-demand network access to a shared pool of computing resources—such as storage and applications—that can be rapidly provisioned with minimal management effort or service provider interaction. RAND Europe explored the security, privacy, and trust challenges that cloud computing poses.
JOURNAL ARTICLE
Encryption is seen as a way to prevent malicious use of patient data, but there is no empirical evidence that it does.
REPORT
What is the role of government in a borderless internet world? RAND Europe assesses the implications for policy makers.
JOURNAL ARTICLE
Much of the current debate concerning civil liberties and security is adversarial, and little robust research data informs these arguments.This paper outlines the results of a study that attempts to objectively understand the real privacy, liberty and security trade-offs made by individuals, so that policymakers can be better informed about the preferences of individuals with regard to these important issues.
NEWS RELEASE
Because it will be difficult to prevent cyber attacks on critical civilian and military computer networks by threatening to punish attackers, the United States must focus its efforts on defending these networks from cyber attack.
COMMENTARY
In the future, the EU will inevitably have to adjust its system of rules to cope with the evolving uses of personal data, globalization and international data flows, write Neil Robinson and Lorenzo Valeri.
REPORT
This report reviews the strengths and weaknesses of the EU Data Protection Directive and proposes avenues for improvement. The ideas presented here provide some ideas on how to improve the data protection regime for European citizens.
RESEARCH BRIEF
This research brief addresses key cybersecurity concerns, such as protecting critical products and services and ensuring that software will work. It identifies how organizations perceive the importance of cybersecurity in making investment decisions.
REPORT
Precluding terrorists from getting the technology they want is impractical, and developing direct counters is unlikely to yield high payoffs. Instead, counterterrorism programs should exploit the technologies and the information such technologies use to enable more direct security force operations.
NEWS RELEASE
Security experts from the technology industry, law enforcement and academia will outline what is needed to better measure and understand the effect of computer-based crime in the United States during a public forum Sept. 25 in Silicon Valley.
COMMENTARY
RFID Security in the Workplace: Perk or Privacy?, in the Security World International.
REPORT
Explores the potential for and limitations to information warfare, including its use in weapons systems and in command-and-control operations as well as in the generation of “noise” and how far “friendly conquest” in cyberspace extends.
NEWS RELEASE
On behalf of the U.S. Departments of Justice and Homeland Security, the RAND Corporation is fielding the first national survey to measure the impact of cybercrime on American businesses.
REPORT
The Computer Security Incident Response Team (CSIRT) Legal Handbook provides a comprehensive collection of information on European and national rules, regulations, and laws concerning computer misuse, as well as guidelines for when and how law enforcement must be informed of incidents.
COMMENTARY
Published commentary by RAND staff: President Obscured the Case for Spying, in the San Francisco Chronicle.
REPORT
U.S. government decisionmakers face a number of challenges as they attempt to form policies that aim to dissuade terrorists from attacking the United States, divert youths from joining terrorist groups, and persuade the leaders of states and nongovernmental institutions to withhold support for terrorists. The successes or failures of such policies and campaigns have long-lasting effects. The findings of this research help U.S.…
RAND® is a registered trademark. Copyright © 1994-2012 RAND Corporation.