The malicious use of Information and Communication Technologies is escalating in sophistication, frequency and scale of attack, affecting people in countries throughout the world.
Cyber tools are being used as weapons and methods of warfare; harmful content and disinformation campaigns are proliferating online, and essential critical infrastructure is being targeted on a regular basis. There is, however, hope that this could change as the global drive for peace and security in cyberspace progresses. But how to achieve cyber peace if we cannot measure the current situation of threats and harm, the effectiveness of our responses , and the next steps needed?
Cyberpeace is possible when the world's digital ecosystems promote human security, dignity, and equity. Achieving peace in cyberspace is significantly hampered by the fact that to date there is no mechanism to track the status of cyber peace, which means that a baseline of understanding and shared knowledge is required to achieve this goal.
With the CyberPeace Watch, an interactive online platform that provides a publicly accessible baseline of data to understand and share knowledge about cyberattacks, including threat analysis, societal harm, applicable laws and norms, and related paths for accountability, the CyberPeace Institute seeks to fill this gap. The platform's goal is to assess cyberpeace based on evidence of the societal harm caused by cyberattacks and the actions taken by states and other relevant actors to strengthen responsible behaviour in cyberspace.
Documents cyberattacks and operations, providing information on the what, when, where, how, and who of incidents impacting society and vulnerable communities.
Collates information related to various types of impact including physical, psychological, digital, informational enabling an assessment of the harm caused by disruptive and malicious cyber incidents.
Tracks and analyzes conduct in cyberspace in order to provide information on measures for responsible behaviour and accountability, with a focus on state actors and companies.
Captures legal, normative, institutional and technical instruments applicable to counter cyberattacks and reduce their impact, focusing on regional and global levels.
A key contribution to advancing responsible behaviour in cyberspace is recognition that cyberattacks and incidents do not just attack or harm technology, do not always have (easily) reversible effects, and can have impacts at national and international levels. A clarification on what constitutes harm in a comprehensive and measurable manner is required, coupled with data-driven and evidence-based metrics, tools and frameworks for understanding, tracking, and measuring this harm. Recognizing this, the CyberPeace Institute initiated, in 2022, research and a process to develop a harms methodology. The strategic objective is to determine the means to measure harm from cyberattacks and incidents in order to increase knowledge of the human costs, and influence policy, accountability and resilience efforts. See the Report of Expert Meeting on the Development of a Harms Methodology: A standardized methodology to measure the harms and impacts of cyberattacks on people, society and the environment.
As a first of its kind platform, the CyberPeace Watch collects and aggregates knowledge crucial for people to make their own assessments about the state of cyberpeace and particularly regarding accountability. The four pillars taken together provide a platform that will: