Institutional Determinants of Cyber Security Promotion: Lessons from Japan, the U.S., and South Korea
My current book project explains why advanced industrial economies pursue different policies vis-a-vis promoting cyber security in the private sector. I argue that states that have pursued strong traditional national security capabilities will promote an indigenous cyber security sector more strongly than those who have not, both because they see relying on foreign cyber security technology as a national security threat and because they have well-developed defense procurement and research-and-development systems which can be used to promote cyber security technologies. I further argue that states that have a history of strong economic guidance by governments are more likely to enact policies to encourage the adoption of cyber security technologies in the private sector. This is both because those governments see securing the economy from the threat of cyber attacks as a role of government, and because the types of instruments that are required for economic guidance are also useful for the dissemination of cyber security technologies. Drawing on government documents, interviews, and a variety of secondary sources, the project provides detailed comparative evidence by looking at the development of these policies in Japan, the U.S., and South Korea.
Government as Facilitator: How Japan is building its cybersecurity market, forthcoming in Journal of Cyber Policy
Drivers of Japanese Cyber Security Capacity-Building Assitance
Measuring Power and Capabilities in Cyberspace
Induction via Machine Learning as Part of a Multi-Methods Approach