Public-Private Partnerships for Cybersecurity Information Sharing
So in the cyber domain we often talk about the need for a “Public-Private-Partnership” or a PPP to share information about cyber threats and vulnerabilities. These PPPs are sometimes criticized as ineffective and convoluted in nature.
Well, now we have graphic proof of that proposition. The chart below was created by Rachel Nyswander Thomas, a graduate student at Georgetown University, as part of her thesis “Securing Cyberspace Through Public Private Partnership: A Comparative Analysis of Partnership Models” and is republished here with her kind permission.
}
So in the cyber domain we often talk about the need for a “Public-Private-Partnership” or a PPP to share information about cyber threats and vulnerabilities. These PPPs are sometimes criticized as ineffective and convoluted in nature.
Well, now we have graphic proof of that proposition. The chart below was created by Rachel Nyswander Thomas, a graduate student at Georgetown University, as part of her thesis “Securing Cyberspace Through Public Private Partnership: A Comparative Analysis of Partnership Models” and is republished here with her kind permission.
What the graphic shows is the radical proliferation of sharing structures across the cyber domain. Even though I study this area, there are a few on the chart that are unfamiliar to me. As Thomas rightly notes, we need a new model. While the McCain bill would leave this structure unchanged (I guess on the theory that you can only make it worse) the Lieberman-Collins bill would have added at least one more exchange. If it replaced all these others it might be an improvement – if it just added to them … perhaps not.
What the graphic shows is the radical proliferation of sharing structures across the cyber domain. Even though I study this area, there are a few on the chart that are unfamiliar to me. As Thomas rightly notes, we need a new model. While the McCain bill would leave this structure unchanged (I guess on the theory that you can only make it worse) the Lieberman-Collins bill would have added at least one more exchange. If it replaced all these others it might be an improvement – if it just added to them … perhaps not.
Paul Rosenzweig is the founder of Red Branch Consulting PLLC, a homeland security consulting company. He formerly served as deputy assistant secretary for policy in the Department of Homeland Security. He is a professorial lecturer in law at George Washington University, a senior fellow in the Tech, Law & Security program at American University, and a board member of the Journal of National Security Law and Policy.
More Articles
-
Congress—Not the Pentagon or Anthropic—Should Set Military AI Rules
The Pentagon's threat to designate Anthropic a "supply chain risk" over its AI use restrictions is extreme—but the deeper problem is that the rules for military AI are being set through ad hoc haggling i... -
Europe’s Cyber Bullets Can’t Replace Political Will
The latest edition of the Seriously Risky Business cybersecurity newsletter, now on Lawfare. -
Scaling Laws: Claude’s Constitution, with Amanda Askell
Discussing the creation and deployment of Claude’s Constitution.
-(1).jpg?sfvrsn=a0f57148_5)
