This paper considers public-private partnerships related to the protection of critical infrastructure. It recommends expanding on existing partnerships in the following areas: risk management, incident management, information sharing and privacy, international engagement, supply chain security, innovation and research and development, and education and awareness.
This article reviews the partnership between Google and the NSA. It argues that the national government cannot be exclusively responsible for providing national cybersecurity. By establishing first economic principles it argues that the main domain in which government action is effective and desirable is that of fostering the sharing of cybersecurity information.
These sections review the different characteristics of an incoming cyber attack, active defense, and cyberexploitation.