Microsoft: International cyber-pacts can lead to less malware
- 06 February, 2013 20:29
Countries that have signed on to international cybersecurity agreements tend to have fewer malware infections among their citizens, according to new research released by Microsoft and George Washington University.
Countries that have signed the 2001 Council of Europe Cybercrime treaty or the 2004 London Action Plan on spam tend to outperform other countries in a key cybersecurity measure, said the report, released Wednesday by Microsoft and George Washington University's Homeland Security Policy Institute.
While simply signing on to an international cybersecurity agreement may not have an impact on the metric, computers cleaned per mile, or CCM, the agreements often come with requirements for countries before they can sign on, said Paul Nicholas, senior director of global security strategy and diplomacy at Microsoft.
The requirements from the agreements include methods for international cooperation on cybercrime that "can evolve with the changing threat landscape," he said.
To sign on to the agreements, countries "had to go and build capabilities, they had to change laws," Nicholas added.
Beyond the international agreements, researchers found 34 factors that correlate with a stronger national cybersecurity posture. Among the factors that correlated with a lower CCM number were computers per capita, Facebook use, health expenditures per person, broadband penetration, and research and development spending.
However, Microsoft and George Washington found that countries with a defensive strategy for cybersecurity don't necessarily have low CCM rates. "The expression of military doctrines for cyberspace is a novel and ongoing development," the report said.
Countries with the lowest CCM, according to the report, included Australia, China, Japan, Sweden and France. The U.S., U.K., Russia, South Africa, Spain and Argentina had slightly higher CCM rates.
Among the countries with the highest CCM: Turkey, Egypt, Pakistan and Iraq.
Microsoft, in the report, noted that CCM isn't a perfect measure of cybersecurity posture in a country. And a low CCM number doesn't mean that a country is safe from cyberattacks, Nicholas said. "You're safer than you were, but you're not yet safe," he said. "Certainly, there are a lot of painful things happening in the world right now."
Authors of the report hope it will be helpful to policymakers in countries looking to increase their cybersecurity posture, Nicholas said. Policymakers and cybersecurity experts in many parts of the world are currently talking about new ways to cooperate internationally and improve national cybersecurity responses, and those are "very positive" discussions, he said.
Grant Gross covers technology and telecom policy in the U.S. government for The IDG News Service. Follow Grant on Twitter at GrantGross. Grant's e-mail address is firstname.lastname@example.org.
Join the CIO Australia group on LinkedIn. The group is open to CIOs, IT Directors, COOs, CTOs and senior IT managers.
CIOs say cost, complexity impede true mobile gains in enterprise
The enlightened CIO’s guide to running projects
The enlightened CIO’s guide to running projects
Why IT projects really fail
Queensland government to provide 200 services online by 2015
Managing Web Security in an Increasingly Challenging Threat Landscape
Cybercriminals have increasingly turned their attention to the web, which has become by far the predominant area of attack. Those who would do harm to our computer systems for profit or malice always manage to focus their efforts on our most vulnerable weak spots. Today, that is the web, for a wide number of reasons. Download to find out why and what you can do to protect yourself.
Leadership and technology: Mobility and BYOD insights for midmarket enterprises
BYOD trends are putting pressure on IT departments to support all personal mobile devices in all work spaces, while Analysys Mason forecasts that revenue from mobility for mid-market enterprises will grow to US$79 billion by 2018. This white paper looks at the power of mobility as part of a unified communications (UC) platform; the competing interests of IT departments, and why vendors supplying these solutions are well prepared to meet the needs of mid-market enterprise technology and business challenges.
Optimize Your Campaign Testing
Looking for guidance on how to properly conduct tests prior to launching any email campaign? This whitepaper discusses important areas for campaign managers to test; the best approaches to managing the testing process, seven key pitfalls to avoid, and specific testing best practice for marketers. The sooner you define and implement your testing program, the sooner you will be positioned to send meaningful communications to your customers through the channels they prefer. The more you test, the more you learn and the more you sell.