New Cybersecurity Policy White Paper by the ACM Europe Policy Committee

By Renee Dopplick, ACM Director of Public Policy
December 22, 2016

A new policy white paper by the ACM Europe Policy Committee on “Advancing Cybersecurity Research and Education in Europe: Major Drivers of Growth in the Digital Landscape,” explores the important role of cybersecurity research and education in enhancing cybersecurity, and provides an overview of emerging trends and challenges, including new privacy and security concerns.

The white paper discusses approaches to addressing those challenges through strategic investments in cybersecurity research and development, strengthening the education and workforce pipelines. It spotlights the need for government-funded research and public-private coordination in the expanding fields of new secure networking and computing architectures, high-performance computing, encryption, data integrity, artificial intelligence, big data, privacy, and risk management strategies.

Contributors and reviewers included a high-level experts group of computing professionals, scientists, researchers, educators, and other technology professionals with backgrounds in a range of computing disciplines, cybersecurity education, and computing education.

12 Guiding Principles for Public Policies to Advance Cybersecurity Research and Education

  1. Cybersecurity Research and Education as Public Policy Priorities

    Strengthening cybersecurity research, education, and workforce development are vital to achieving overall cybersecurity policy objectives.

  2. Cybersecurity as Multifaceted and Multidisciplinary

    Research and education policy approaches will be effective only if they encompass the multifaceted and multidisciplinary nature of cybersecurity.

  3. Cybersecurity and Privacy as Complementary

    Security and privacy are complementary concerns, rather than tradeoffs. Planning should address both aspects.

  4. Build in Security and Privacy

    Security and privacy should be built in as part of the culture, approaches, processes, systems, and technical infrastructures.

  5. Cybersecurity Research and Development Funding

    Research and development funding is indispensable to cybersecurity and innovation and needs to address both security and privacy.

  6. Cybersecurity Research Opportunities in Higher Education

    Expanded opportunities for students and faculty to engage in cutting-edge and high-impact research are important to growing a strong research community.

  7. Legal Protections for Privacy and Security Researchers

    Governments should provide legal protections for individuals conducting legitimate and beneficial computing privacy and security research.

  8. Cybersecurity Education and Workforce Pipelines

    Expanded access to cybersecurity and computing education at all levels is needed to prepare, build, and improve the workforce. Policy approaches should address diversity and inclusiveness.

  9. Educator Professional Development

    Ongoing professional development enables educators to gain and update their knowledge and skills, and supports high-quality instruction to improve student learning.

  10. Public-Private Coordination

    Improved coordination of the public and private sectors is needed to address cybersecurity research and education.

  11. Public Engagement

    Cybersecurity public advisory boards, research review boards, and public forums should include representation from the computing field.

  12. International Cooperation

    International cooperation plays a key role. Cybersecurity challenges and benefits flow across borders and globally interconnected systems.

ACM Europe Policy Committee

The ACM Europe Policy Committee is a standing committee of ACM Europe. It serves as the focal point for ACM’s interaction with the EU and member states’ governmental bodies, the computing community, and the public in matters of European public policy related to computing and technology. The committee represents a diverse community of computing practitioners, scientists, educators, researchers, and other technology professionals from government, business, academia, and the nonprofit sector. The committee’s contributions to public policy draws from the deep scientific and technical expertise of the computing community.