The project «Creating an ethical and legal governance framework for trustworthy cybersecurity in Switzerland» develops findings and recommendations on non-technical aspects of cybersecurity.
Cybersecurity is characterized by rapid technological progress. New security gaps are constantly emerging, which are countered with technical protection measures. The speed of this development overwhelms many users of the technologies and limits their ability to make informed decisions about their usage behavior. The rule of law is also challenged by the pace of technological change, as democratically supported legislative processes cannot always keep pace with the speed of technological development. This leads to governance and legislative gaps that make effective and democratically supported cybersecurity difficult.
A key element to address these challenges in Switzerland is the strategy «Nationale Strategie zum Schutz der Schweiz vor Cyber-Risiken» (NCS). Its core principles include a risk-based approach to cybersecurity, decentralized implementation of appropriate measures, a subsidiary role for the state, promotion of public-private partnerships, and active communication with civil society, business, and political stakeholders. The central goal of our project is to support these key elements of the NCS through research that provides data, insights, and recommendations with a particular focus on non-technical aspects of cybersecurity.
The project has three goals:
The project will develop concrete proposals for the Swiss parliament and the administration on how Swiss legislation can address cybersecurity challenges. In addition, guidelines for dealing with cybersecurity dilemmas will be created for government and private actors such as law enforcement agencies, computer emergency response teams, critical infrastructure risk and compliance teams, and cybersecurity solution providers.
Project Advisory Board
Swiss National Science Foundation, National Research Programme 77 «Digital Transformation».