Cybersecurity in the European Union and Beyond: Exploring the Threats and Policy Responses
Nov 18, 2015
Exploring the Threats and Policy Responses
|PDF file||2.9 MB||
Use Adobe Acrobat Reader version 10 or higher for the best experience.
The European Commission published the European Union Cyber Security Strategy along with the accompanying proposal for a Network and Information Security (NIS) Directive in 2013. Since the proposal was published, the cybersecurity landscape has continued to evolve, leading to questions regarding the nature and seriousness of the cyberthreats faced by the European Union (EU), the capabilities of Member States to manage these threats and respond to incidents, and the effectiveness of these capabilities. At the time of writing, discussions about the content and scope of the proposed NIS Directive are continuing.
This study on cybersecurity has been commissioned by the European Parliament (EP) and has five objectives:
The main theme in the authors' findings is that the existing cybersecurity measures in the EU are fragmented, largely due to gaps in operational capabilities as well as strategic priorities of Member States regarding cybersecurity. Whether the EU response to cybersecurity should adopt a formal and mandatory character is also debated. The authors suggest 5 policy options that the EP should consider in order to improve the EU's overall approach to cybersecurity.
Mapping global cybersecurity threats: patterns and challenges
Cybersecurity capabilities in the European Union
Cybersecurity capabilities in the United States
Transnational cooperation in the fight against cybercrime
Effectiveness of the EU response
Conclusions and Policy options
The research described in this report was prepared for the European Parliament's Committee on Justice, Liberty and Home Affairs and conducted by RAND Europe.
This report is part of the RAND Corporation Research report series. RAND reports present research findings and objective analysis that address the challenges facing the public and private sectors. All RAND reports undergo rigorous peer review to ensure high standards for research quality and objectivity.
This document and trademark(s) contained herein are protected by law. This representation of RAND intellectual property is provided for noncommercial use only. Unauthorized posting of this publication online is prohibited; linking directly to this product page is encouraged. Permission is required from RAND to reproduce, or reuse in another form, any of its research documents for commercial purposes. For information on reprint and reuse permissions, please visit www.rand.org/pubs/permissions.
The RAND Corporation is a nonprofit institution that helps improve policy and decisionmaking through research and analysis. RAND's publications do not necessarily reflect the opinions of its research clients and sponsors.