WASHINGTON (Oct. 29, 2019) – Currently, in the field of cybersecurity, there is no well-defined system capable of measuring cybersecurity in an objective, quantifiable and comparative manner. In light of this, the R Street Institute National Security and Cybersecurity program has launched an initiative that intends to fill this gap and create a widely-accepted and easily accessible system for decision-makers with limited resources.
The first step in this multi-pronged approach is a partial bibliography, which compiles a baseline of disparate existing measurement efforts. This document both summarizes the existing field and characterizes it. It is important to emphasize that this bibliography is neither comprehensive nor overtly technical in nature. Rather, its goal is to provide a systematic overview of the field that is both technically literate and of use to decision-makers in the public and private sectors.
R Street National Security and Cybersecurity Resident Fellow Kathryn Waldron added, “Without accurate, standardized methods to measure cybersecurity, detecting and deterring cyber threats will continue to be more art than science. This attempt will shed light on some of the most exciting work that has been and is currently being done in the field.”