RAND > Congressional Resources >

Cybersecurity Issues

This page offers an easy way for policymakers to access cybersecurity research and analysis that is relevant to current Congressional agendas. For additional information, to request documents, or to arrange a briefing, contact the RAND Office of Congressional Relations at ocr@rand.org or (703) 413-1100 x5643.

Recent Findings

  • Processor pins of a microchip

    Commentary

    Examining the Weak Spots in Tech's Supply Chain Armor

    Oct 16, 2018

    When an attack on the supply chain occurs, manufacturers and purchasers should be better positioned to respond and recover. Even the simplest devices can rely on parts from multiple suppliers, which may have their own suppliers and so on. But every supplier, no matter how small, represents a potential weak link in the chain.

  • Cybersecurity locks illustration superimposed over a photo of Tokyo at night

    Report

    Preparing for Cybersecurity Threats to the 2020 Olympics

    Oct 4, 2018

    The Olympic Games are an attractive target for hackers. An examination of Japan's cybersecurity threat landscape and lessons from past events can help planners reduce cybersecurity risks in advance of the 2020 Tokyo Games.

  • Hacker on a laptop

    Commentary

    Have a Victim Response Plan for Data Breaches

    Oct 2, 2018

    In a large data breach, there could be a real risk to victims' financial or personal security. Though responsible organizations should do everything in their power to ensure data is protected in the first place, they also should prepare a plan to ensure prompt victim response.

  • Voters voting in polling place

    Commentary

    Here's How Russia Will Try to Interfere in the 2018 Elections

    Aug 14, 2018

    Russia will threaten U.S. midterm elections in November, although by how much is unclear. Moscow might be more restrained this year, but it could be wilier.

  • A drone flies over the ocean at dawn

    Commentary

    New Technologies Could Help Small Groups Wreak Large-Scale Havoc

    Jun 18, 2018

    Lone wolves or small groups could use emerging technologies, such as drones or AI, for nefarious purposes. The threat is even greater when these technologies are used along with disinformation spread over social media.

More Research on Cybersecurity

Briefings

  • Security concept: lock on digital screen

    Protecting Consumer Data: Considerations for Congress

    Jun 8, 2018

    Many of the laws that govern data privacy were developed before the widespread adoption of online communications and social media accounts. Should consumers be in charge of self-regulating what they share and how companies use it? Rebecca Balebako and John Davis will discuss policy opportunities for better protecting consumer data. [Washington, D.C.]

  • Capturing data/information theft

    Equifax and the Data-Breach Era: How Worried Should We Be?

    Oct 26, 2017

    Large-scale data breaches have compromised the identifying information of millions of people. What can policymakers do to improve responses to such breaches, and how can the public protect information that has already been compromised? Lilian Ablon and Sina Beaghley answer these questions and more in a RAND Congressional Briefing.

  • Illustration of information security

    RAND Cybersecurity Workshop

    Aug 17, 2016

    In this cybersecurity workshop, legislative staffers can learn how to calculate cyber risk; where to find appropriate information about threats, vulnerabilities, and impact; and better consider options for legislation and federal government response in cyberspace. [Washington, DC]

  • Close up of Lily Ablon holding DEFCON 21 challenge medal

    Lessons from a Hacker: Cyber Concepts for Policymakers

    Sep 14, 2015

    What do policymakers need to know as they confront growing concerns over cybersecurity? Lillian Ablon provides insights into some of the complexities of cybersecurity policymaking, including why software vulnerabilities matter and the motivations of various cyber threats actors.

Alerts & Newsletters

RAND periodically sends alerts and newsletters to update Congress on highlights of recent work about cybersecurity.

  • A Coast Guard Air Station Sitka Jayhawk helicopter crew conducts vertical replenishment training with the crew aboard Coast Guard Cutter Maple in Southeast Alaska's Western Channel

    Catch Up Quick: Homeland Security Issues for Congress

    Aug 14, 2018

    Catch up on the homeland security issues facing Congress, including cybersecurity, the Coast Guard and United States border, and countering violent extremism.

  • Network connection concept with Chicago cityscape

    Protecting Consumer Data: Considerations for Congress

    Jun 28, 2018

    What policy opportunities could Congress consider to better protect consumer data? Rebecca Balebako and John Davis discuss the benefits and risks of data sharing at both the personal and industry level.

  • Abstract motion speed light with night city background

    The Promises and Perils of Speed

    May 4, 2018

    Across the world, there is a profound sense that life is speeding up, and the faster life gets, the more we have to adjust our norms to keep pace. This ramped-up pace and how we react to it have the potential to fundamentally rework how we interact, think, and create.

  • Web access

    In Case You Missed It: Data Thieves

    Mar 22, 2018

    In 2017, there were more than one thousand data breaches exposing over a billion records of sensitive data. What's happening to stolen data and how is it being monetized? Lillian Ablon addresses these concerns.

  • Hands typing with visual of computer code

    In Case You Missed It: Equifax and the Data-Breach Era

    Nov 13, 2017

    There has been a recent string of large-scale data breaches that have compromised the private information of millions of customers. Lillian Ablon and Sina Beaghley briefed Congressional staff on how the government and breached companies can better protect victims.

  • Hacker with Russia flag in data

    In Case You Missed It: Understanding Russian Hybrid Warfare

    Mar 31, 2017

    Russia's use of covert actions to achieve its national security objectives without escalating to the level of traditional war is known as hybrid warfare. Addressing this threat will take time and effort, but there are strategies the U.S. can use to combat these hybrid operations.

  • The Capitol Building, Washington, D.C.

    2016 Hill Highlights

    Dec 15, 2016

    In 2016, RAND experts conducted briefings on Capitol Hill, provided testimonies before congressional committees, hosted workshops, and published reports on some of the nation's most pressing issues, including health care for veterans, autonomous vehicles, NATO military posture, and cyber policy.

  • An ISIS militant waves an ISIS flag in Raqqa, Syria, June 29, 2014

    The Online Fight Against ISIS

    May 10, 2016

    The battle against ISIS is taking place both on the ground and in cyberspace: To prevail, the United States and its allies will have to be capable of reacting quickly, while following an overarching strategy.

  • View to an operating room through an office window

    Ransomware Hackers Are Coming for Your Health Records

    Apr 27, 2016

    Cybercriminals may be preying on hospitals because cyber protection measures likely have not kept pace with electronic data collection and because hospitals typically do not have backup systems and databases in place. These kind of attacks can strain health care systems and potentially put patients' lives at risk.

  • Illustrated photo of a person typing on a computer keyboard

    Cybersecurity Awareness Month: The Latest RAND Research

    Oct 16, 2015

    RAND's research on cybersecurity covers national security, cyberdeterrence, cybercrime centers, information sharing, cyber insurance, and cloud computing. Experts are available to discuss their work, as well as related policy proposals.


Subscribe to Congressional Alerts & Newsletters

Testimony

More Testimony

Briefs

More Research on Cybersecurity