News

• CircleID: Internet Governance News

  Blogs, news briefs, and industry updates.

• CNET: Security News

  From updates on brands, to technology in the military, health, and business fields, to concerns like privacy, security, political, and legal issues.

• Computerworld: Security News

• Crypto-Gram Newsletter

  Monthly free newsletter from Bruce Schneier, who "explains, debunks, and draws lessons from security stories that make the news."

• ExecutiveBiz: Cybersecurity

  Businesses and their cybersecurity news, reports, and awards.

• Foreign Policy: Killer Apps blog

  "Cyber war and the latest in military technology."

• Homeland Security Newswire: Cybersecurity

• Information Security Media Group

  Publishes information security news to help banking executives, credit unions, government and healthcare officials, and IT professionals manage risk in their sectors.

• Information Week: Security

  Includes free newsletters for IT professionals, Government, and others interested in technology. Dark Reading is aimed at business and data security.

• New York Times Topics: Computer Security

• NextGov: Cybersecurity

  "Technology and the business of government"; latest articles about cybersecurity from government, technology, and executive sources.

• Threat Post

  Analysis and news coverage for security professionals; with links to cybesecurity blogs of the Kaspersky Lab News Service.

• SecLists: Information Security News Mailing List

  Aggregates news from mostly mainstream sources related to cybersecurity.

• U.S. Computer Emergency Readiness Team Security Alerts

• Wired: Threat Level

  "Privacy, crime, and security online"

History, Background, and Research Guides

• CFR.org Backgrounder: Confronting the Cyber Threat

• beSpacific: Cybercrime

  Links to primary (policies, reports, events) and secondary sources (news).

• CRS: Cybersecurity: Authoritative Reports and Resources

  (PDF, April 26, 2012) legistlation and hearings from 112th Congress, executive orders, data sources, glossaries, reports by topic, and other websites.

• CSIS: Significant Cyber Events since 2006

• Cyber Conflict Studies Association

  Working on strategic history of cyber conflict.

• Department of Homeland Security: Roadmap for Cybersecurity Research

• George Mason University - Center for History and New Media: Critical Infrastructure Protection Overview

  Oral history and digital archive of government, private sector, academic, and media initiatives and reports related to cybersecurity., as well as related websites

• Google: Transparency Report

  Real-time and historical traffic from around the world; government and copyright owners requests for content removal; government requests for user data.

• Harvard University Berkman Center for Internet & Society: Cybersecurity wiki

  Definitions, case studies, and annotated bibliography of government documents andhearings, nongovernmental reports, news and journal articles.

• InfoPlease: Computer Virus Timeline

  1949-2008

• NATO Library Guides: Cyberspace Security

  Official documents, books, reports, websites, some free articles. Updated frequently with relevant and authoritative resources.

• Military Education Resource Library Network: Cybersecurity

  From National Defense University; news sources and analysis, including reports and speeches from both U.S. and international officials and scholars, primary sources on U.S. cybersecurity policy, and resources on the types and effects of cybersecurity.

• SANS Institute: Information Security Resources

  Computer security research, guidelines for effective cyber defense, thought leaders, glossary, intrusion detection FAQs. Links to other SANS projects, like Internet Storm Center.

Data, Polls, and Surveys

• Department of Homeland Security (DHS): National Vulnerability Database

• McAfee and Security and Defense Agenda: "Cyber-security: The vexed question of global rules"

  (PDF, January 2012) includes survey of 250 experts from around the world about strengths and vulnerabilities for 21 countries.

• Pricewaterhouse and Coopers: Information Security Survey

  2012 data; "the majority of executives...are confident in the effectiveness of their organization’s information security practices."

• Sophos: Security Threat Report 2012

  Survey of attitudes toward cyberwarfare and cyber-espionage, as well as other IT security developments and statistics.

• Ponemon Institute: "2011 Cost of Data Breach Study United States"

  (PDF, March 2012) sponsored by Symantec.

• Symantec: Internet Security Threat Report

  Build your own report, view charts, related white papers.

See also Must Reads on cybersecurity, CFR.org's collection of the best online analyses and inquiries on foreign policy.

Publications

• Air University: Cyberspace and National Security Bibliography

  Last updated September 2010

• Bloomberg FixThis: Cybersecurity

  "Quarterly series of roundtable discussions...to offer solutions to major challenges facing the world." Includes interviews and solutions proposed from tech thought leaders; infographic on cybersecurity costs, related articles.

• Center for New American Security: Cybersecurity Publications

• IEEE Security & Privacy magazine

• National Academies Press: Information Security and Privacy

  Full-text readable online.

• National Security Cyberspace Institute: Reference Library

  Aggregates latest policies and articles from government, think tank, and industry sources.

U.S. Government Departments and Initiatives

• DHS: National Cyber Security Division

  See also for resources: http://www.dhs.gov/files/cybersecurity.shtm .

• Department of Justice: Computer Crime & Intellectual Property Section

• Department of the Treasury: Cyber-security office

• National Telecommunications and Information Administration: Internet Policy Task Force

• National Security Council: Cybersecurity

• Securities and Exchange Commission: Corporation Finance Disclosure Guidance - Cybersecurity

  Disclosure obligations relating to cybersecurity risks and cyber incidents.

• WhiteHouse.gov Issues: Cybersecurity and Internet Policy

  Links to policies and departments involved.

U.S. Government Reports and Recommendations

• Comprehensive National Cybersecurity Initiative

• Congressional Research Service (CRS): saved search for "cyber security"

• CRS: The Smart Grid and Cybersecurity—Regulatory Policy and Issues

  (June 2011)

• CRS: Terrorist Use of the Internet: Information Operations in Cyberspace

  (March 2011)

• Cyber Security Research and Development Center: "The Menlo Report: Ethical Principles Guiding Information and Communication Technology Research"

  (PDF, September 2011)

• FBI: Cyber Crime

  Priorities, annual reports, threats and scams, cases and partnerships.

• Government Printing Office: search government documents

• Government Accountability Office (GAO): Continued Attention Needed to Protect Our Nation's Critical Infrastructure

  (July 2010)

• GAO: Cybersecurity Guidance Is Available, but More Can Be Done to Promote Its Use

  (December 2011)

• National Defense University Digital Collections: National Stratetgy Documents for "Cybersecurity"

• Scirus: saved search for "cyber security"

  Database to search scientific government publications.

U.S. Congressional Legislation, Testimony, and Committees

• S.2105: Cybersecurity Act of 2012

• Congressional Research Service: "Federal Laws Relating to Cybersecurity: Discussion of Proposed Revisions"

  (PDF, December 2011)

• Digital Due Process: Legislation, Hearings, Cases related to Electronic Communications Privacy Act

  Mission of website: "To simplify, clarify, and unify the ECPA standards, providing stronger privacy protections for communications and associated data...while preserving the legal tools necessary for government agencies to enforce the laws, respond to eme

• GovTrack: latest bills on "Computer Security and identity theft bills"

• House Republican Cybersecurity Task Force

  In October 2011, Task Force presented recommendations to guide legislation regarding cybersecurity.

• House Subcommittee on Cybersecurity, Infrastructure Protection, and Security Technologies: latest hearings

• House Subcommittee on Oversight, Investigations, and Management Hearing: America is Under Cyber Attack: Why Urgent Action is Needed

• Library of Congress Congressional Bills and Statuses: THOMAS

  Congressional Bills and Statuses; search for "cyber."

• Senate Committee Homeland Security and Governmental Affairs Committee: Cybersecurity hearings

• Select Senate Committee on Intelligence: "Worldwide Threat Assessment of the US Intelligence Community"

  (PDF, January 31, 2012) Testimony of Director of National Intelligence, James Clapper.

Government, Industry, and University Partnerships

• East-West Institute: Worldwise Cybersecurity Initiative

• DHS: Cyber Security Research and Development Center

  "Conducts its work through partnerships between government and private industry, the venture capital community, and the research community."

• Initiative for Collaborative Government: Cybersecurity

• University of Maryland: Cybersecurity Seminar Series

Cybersecurity and International Relations

• The Atlantic Council: Cyber Statecraft Initiative

• Brookings: Cybersecurity Research and Commentary

• CSIS: Cybersecurity

• Internet Governance Forum

• International Security Network: Information and Communications Technology

  Subtopics include Internet Governance, IT Security and Threats, International Technology Policy.

• Interpol: Cybercrime

  Fact sheet, conferences, training. By January 2013, Europol will establish a European Cybercrime Centre

• The London Conference on Cyberspace

• NATO: Defending against cyber attacks

  Dashboard for NATO news, initiatives, and publications on cyberdefense.

• NATO Cooperative Cyber Defence Centre of Excellence: International Cyber Incidents, Legal Considerations

  (2010)

• OECD: External Resources on Internet Governance

• WhiteHouse.gov: "International Strategy for Cyberspace."

  (PDF, May 2011)

Cybersecurity Education and Internet Economy

• Brookings: Economic and Policy Frameworks for Cybersecurity Risks

  (July 21, 2011)

• Cybersecurity Policy and Research Institute: Workshop on Cyber Security Education and Workforce Development: "Building the Cyber Security Workforce of the 21st Century"

  (PDF, December 15, 2010) discusses lessons learned from Scholarship for Service, a government program to fund cybersecurity education and secure an IT federal workforce.

• Department of Commerce: "Cybersecurity, Innovation And The Internet Economy"

  (PDF, July 2011) how to protect "tremendous economic and social value of the Internet, without stifling innovation."

• Educause: Cybersecurity

  "Resource page provides information related to all aspects of cybersecurity for higher education, with an emphasis on strategies, policies, and other tools that will assist institutions of higher education to prevent, detect, respond to vulnerabilities."

• Keep the Web Open

  After SOPA and PIPA elicited strong reactions from citizens and online organizations, OPEN was proposed, aimed to "protect creative ownership in America while securing the open, accessible Internet you deserve."

• OECD: Internet economy - Information security and Privacy

• Office of the National Counterintelligence Executive: "Foreign Economic and Industrial Espionage"

  2011 report: "nearly all business records...exist primarily in digital form. Cyberspace makes it possible for foreign collectors to gather enormous quantities of information quickly and with little risk."