- national strategy
- incident response
- ‘e-Crime’ law enforcement
- information sharing
The index combines measures of both economic prosperity and exposure to cyber risk. For example, cybercrime, resiliency issues, identity theft, intellectual property theft, and other cyber factors are highlighted to illustrate diminished country GDP.
Some conclusions that the study draws include:
- Increase in prosperity that Internet technology and connectivity have brought over the past 30 years may not outweigh “the unreliability and riskiness caused by new threats”
- Costs of malicious cyber activity and risk must be included in a nation’s evaluation of its prosperity so that security investment can be measured
I like the approach of this index. As I suggested in my post on “Force Protection“, businesses and countries that depend on the Internet will have to redirect a real amount of its operating capacity to analyze risk and provide information security, just as the military did with personnel and physical assets in the late 70’s/early 80’s, if it is to continue to move forward.