NATO: Rethink - Realign - React
At the beginning of June, the NATO Summit took place in Warsow. With reference to this event, the Institute for Eastern Studies in Poland published a composition of essays. The BIGS participated in this with an essay by Tim Stuchtey "Absolute vs. Comparative Advantage of Defense Industries in NATO Countries”.
The complete compilation can be found here.
Lagebild zum Hackerangriff auf Telekomgeräte
Unsere Partner von der FU Berlin im Projekt RiskViz haben zum aktuellen Angriff auf die Router der Telekom ein detailliertes Lagebild erstellt. Nach den USA ist Deutschland am Häufigsten betroffen. Details des Lagebildes und weitere Karten können bei der FU eingesehen werden.
Quelle: Freie Universität Berlin/scadacs.org
IT-Sicherheitsforum zu Kritischen Infrastrukturen
Digitale Technologien durchdringen heute nahezu alle Bereiche der Wirtschaft und Gesellschaft. Auch Infrastrukturen von essentieller Bedeutung für das staatliche Gemeinwesen wie die Energie- und Kommunikationsinfrastruktur, Industrienetzwerke und Verkehrsleitzentralen werden zunehmend von IT-Systemen gesteuert, die mit dem Internet verbunden sind. Damit wird der Schutz der „Kritischen Infrastrukturen" (KRITIS) vor Cyberangriffen zu einer zentralen Herausforderung der digitalen Gesellschaft.
Welche Fragen mit diesen Veränderungen aufkommen und wie derzeit damit umgegangen wird, soll am 23.11. um 18 Uhr im IT-Sicherheitsforum diskutiert werden. Der Präsident des BSI, Arne Schönbohm, wird dazu eine Keynote-Rede halten. In der Podiumsdiskussion wird Dr. Tim Stuchtey die gesellschaftlichen Implikationen erläutern. Die aktuellen Projekte des BIGS zu diesem Förderschwerpunkt können Sie beim anschließenden Get together kennenlernen, wenn Sie sich hier anmelden.
Security Management Education in Europe
As part of the fit4sec research team, Alexis Below conducted a survey across Europe in which he analyzed the status quo of European security management education.
The survey serves as exploratory research into current offerings and developments in tertiary security management education to provide new insights and ideas for further research to interested scholars, educators and practitioners in Germany and elsewhere.
The study finds that there is a small number of relatively young programs in each country often based at universities of applied sciences with a strong focus on vocational training. While participants’ backgrounds seem similar across countries, most programs are nationally oriented with little to no formal internationalization. The complete survey can be found here.
Die Sicherheitswirtschaft in Deutschland 2015
The annual survey, conducted by BIGS, measuring the overall contribution of Germany's security industry for the contry's composite security level since 2012.
The results for 2015 show that the security industry grew faster than the overall German economy. The complete survey can be found here.
- 3. International VDI Conference – IT Security for Vehicles
- Aktuelles PizzaSeminar
- Universität Potsdam SoSe 2017
3rd VDI Conference - IT Security for Vehicles
In regard to the future of vehicles we cannot miss the fact that it is all about connectivity and new mobility solutions. Unfortunately huge amounts of data and the enormous complexity give room to hackers with sinister intent. At the 3. Conference IT Security for vehicles the best protective measures as well as the most up-to-date security Topics will be discussed. Further and more detailed information can be found here. The programme can be accessed here.
Dr. Tim Stuchtey will represent the BIGS at the conference as an expert speaker. The Conference will be held in English and takes place from July 5th - 6th 2017 in Berlin.
Keynotes will be:
- Autonomous Driving, Digital Infrastructure & Mobility Solutions as Key Drivers for the Automotive Industry given by Johannes Jungwirth, Chief Digital Officer, Volkswagen AG, Germany
- Volvo Cars development of Autonomous Vehicles, in cooperation with Uber and Zenuity given by Kent Melin, M. Sc., Senior Technical Leader, Electrical System Design, Volvo Car Group, Sweden
- No Need to fight the Cyber War alone! Auto-ISAC- An Information sharing for Vehicles Cyber Security given by Faye Francy, Executive Director, Automotive ISAC, USA
- Cyber Security in the Era of automotive Technology Disruption given by Henry Bzeih BSEE/MBA, Managing Director, Connected & Mobility, KIA MOTORS AMERICA, USA
Further Topics will be:
- The Security Perspective on major automotive Trends
- Security Weaknesses in connected and automated Cars
- Software- and Hardware Attacks and Responses to Threats
- Latest Developments in Privacy and Data Protection
- Lessons learned in Cyber Security from other Industrie
We are looking forward to seeing you on the conference. Fore more information please contact info[at]bigs-potsdam.org or visit the links above for registration.
Das letzte PizzaSeminar fand am Freitag, 17.03.2017, um 12 Uhr c.t. in Berlin statt.
Dank der erneuten Hilfe und in Kooperation mit der Botschaft der Vereinigten Staaten von Amerika konnten wir Prof. Dr. Scott Thomas von der University of Bath als Referenten gewinnen. Prof. Thomas trug über
‚Religion and Violence in a Global Age: A survey of theories, approaches, and some policy implications‘
vor. Veranstaltungsort war die IABG, Friedrichstr. 185 (Haus E, 3. Stock, Raum ‚Köpenick‘), 10117 Berlin.
The popular belief religion is the cause of the world’s bloodiest conflicts is central to our modern political imagination. However, this lecture challenges the ‘myth of religious violence,’ not because we do not need to take religious seriously, but this way to do so does not taking culture and politics seriously enough. Religion is not some neutral descriptor of a reality in the world, which can cause violence, it is always socially, culturally, and politically contested, negotiated, and constructed, which under certain circumstances causes violence.
Prof. Dr. Scott Thomas is an American who lectures in International Relations and the Politics of Developing Countries. He has a research program which centers on how the global resurgence of culture and religion have transformed international relations. It challenges the existing constructions of culture, religion, and identity, and examines the impact of culture and religion on key areas in international relations - conflict, cooperation, diplomacy, peace-making, inter-religious dialogue, and economic development. He writes for a variety of journals, and speaks widely on the role of religion in international relations today to both academic organizations, such as the International Studies Association, and to a variety of NGOs, governments, religious groups, and other organizations. Dr. Thomas taught at universities in the United States, Switzerland, and South Africa before coming to Bath in 1994 where he is a permanent member of the teaching staff.
Seminar im Somersemester 17 - Politikwissenschaftliche und ökonomische Aspekte ziviler Sicherheit
In dem Seminar an der Universität Potsdam werden unterschiedliche gesellschaftliche Aspekte der zivilen Sicherheit behandelt. Dabei sollen insbesondere jene Themen in den Fokus genommen werden, die gegenwärtig die öffentliche Diskussion beherrschen und ihre ökonomische, institutionelle und politische Rationalität hinterfragt werden. Besondere Handlungsfelder sowie spezielle Problemdimensionen, beispielsweise zu Fragen der Kriminalprävention und dem Thema Terrorismus, sollen interdisziplinär behandelt werden.
Genaue Daten und Themen werden zu gegebener Zeit bekannt gegeben.
- Cyber Security
- Risk and Crisis Communication
fit4sec - Centre of Excellence for Security and Technology
The Centre of Excellence for Security and Technology (fit4sec) will be supported by the Federal Ministry of Education and Research until the end of 2016 as part of the "Deutsche Antragsteller fit für Europa" (German Applicants fit for Europe) scheme. fit4sec pursues the aim of pooling expertise in the German security sector so as to successfully form German-European research alliances together with academic partners and end users. The intention of this is to improve the baseline situation of German enterprises significantly for participating in European security research projects.
fit4sec will, for this purpose, identify the strengths of the German security sector and, building upon that, establish and develop a dialogue between the industrial actors and the circle of end users and representatives of academic research. By integrating selected European partners, the aim is to thus establish excellent international research alliances that are able to contend successfully with European competitors in future research projects. fit4sec will also develop tools whereby security research findings can be applied efficiently in academic and vocational training. This will help counteract the future shortage of qualified personnel in the civil security sector.
The core team of fit4sec comprises the IABG in Ottobrunn and Berlin, Brandenburg Institute for Society and Security in Potsdam, Fraunhofer FOKUS in Berlin and the University of the Federal Armed Forces in Munich.
Within fit4sec BIGS is dedicated to capacity building in the field of civil security (research, teaching and training), focusing particularly on socio-scientific security research. BIGS is also responsible for networking on matters of resilience.
For more information on the project visit http://www.fit4sec.de/en/.
RiskViz – Providing a risk situation picture of industrial IT security in Germany
Cyber attacks on critical infrastructures are having an increasingly negative impact on the private sector and governments and thus on the general public who depend on their services as well. At the same time, many operators of critical infrastructure are increasingly connecting their Industrial Control Systems (ICS), which are also used in many critical infrastructures, to the Internet to monitor and control their operations in an uncomplicated and inexpensive way. However, security incidents in the past have shown that connecting an internal IT environment to the Internet can increase vulnerabilities to network breaches, data theft and Denial-of-Service activities in the industrial environment of electricity plants and other critical infrastructure. Yet, the federal government, federal states or municipalities, which are in charge of critical infrastructures, have no appropriate means to assess the intensity of threats, vulnerabilities and potential impacts and to make them transparent for operators. Moreover, it is extremely difficult to insure critical infrastructures against damages due to IT security breaches.
Within the framework of its IT Security Research Program, the Federal Ministry of Education and Research is funding the project "Providing a risk situation picture of industrial IT security in Germany" (RiskViz). In a consortium with the University of Applied Sciences Augsburg, the Freie Universität Berlin, Genua mbH, Koramis GmbH, LEW Verteilnetz GmbH, Technologie Centrum Westbayern and MunichRe (associated partner), the Brandenburg Institute for Society and Security (BIGS) will develop methods and instruments to identify ICS that have insufficient protection against cyberattacks. The research project aims to create a search engine that is capable of finding ICS and of collecting relevant information about the system and its risk situation without interfering with its operations.
The overall aim of this project is to improve the German economy's IT security, in particular with regard to critical infrastructures. Within this scope, BIGS will analyze the regulatory framework that is necessary for the development of a market for cyber insurance and will highlight and develop further political and economic instruments that could help to close identified security breaches.
SenSE4Metro is a joint project involving partners from BIGS Potsdam, the Fraunhofer Institute, the Berliner Fire Brigade, ITC Engingeering and Universität Bundeswehr. The project will provide information leading to improved security of persons in urban underground trains and underground stations during emergency situations. BIGS will implement a Work Package that will investigate the feasibility of internationally standardizing response protocols by testing cultural differences between firefighters across countries.
In the first phase, this will involve systematic comparison of responses in emergency situations that have occurred in a wide spectrum of socio-economic backgrounds. This will be augmented by a review of existing regional and national protocols, which will determine existing underlying differences in emergency response. In the second phase, laboratory-based experimental games and computer-based simulations will determine the extent to which cultural differences exist at the individual level and the extent to which such differences can be overcome by the adoption of standardized protocols.
For more information on the project visit sense4metro.org.
OSiMa - Organization and Regulation of the Civil Security Market in Germany
In academic literature and in public discourse often the assumption can be found that the protection of the society from terrorism, crime or natural disasters is a public good, which due to its nature has to be provided and financed by the public sector. Though, since years there is a trend towards increased private provision of protection in order to achieve security. Security in this connection is not to be understood as the absolute absence of threat, but as a function of threat and protection. While in Germany the public inflation-adjusted spending stagnates, the private security business keeps growing at a faster pace than the economy as a whole (Gummer & Stuchtey, 2014). Here we observe a relative shifting of public towards private provision of protection, which one can term privatization in the wider sense. Moreover, a privatization in the more narrow sense can be identified in a few realms of security. Luggage inspection and screening of persons at airports is one of the most obvious examples.
Besides state-controlled actions to protect economy and society, private enterprises are required to contribute themselves to safeguarding their value added chains. At the same time, in an open economy such value added chains are cross-frontier, thus the protection has an international dimension. Besides deploying private security service providers, many companies develop internal concepts in order to protect integrity and resilience of their organizations against white-collar crime. This entails comprehensive Compliance Management Systems (CMS), which manifest features of privatization of security in the wider sense. For instance there are internal investigations which sometimes replace that of prosecuting attorneys. The danger of circumventing process principles in accordance with the rule of law cannot be precluded in this context.
While the description if this trend and its extent by means of individual indicators (e.g., growth in sales, number of persons employed) has been subject to earlier examinations and studies, the underlying causes and the consequences for organizational and regulative embodiment of the privatization process has been hardly analyzed in Germany. To date, a comprehensive and interdisciplinary analysis of the good “protection” has yet to be conducted, by means of which political leadership, administration, security business and society can evaluate diverse courses of action.
Within the framework of the topic “Civil Security – New Economic Aspects” from the program “Research for Civil Security 2012-2017” the German Federal Ministry of Education and Research (BMBF) funds the consortium project “Organization and Regulation of the Civil Security Market in Germany” (OSiMa). Coordinated by the Brandenburg Institute for Society and Security (BIGS), we partnered with the Viadrina University Frankfurt (Oder), the Friedrich-Schiller-University Jena (FSU Jena), the University of Potsdam, the Federal Association of the German Security Industry (BDSW), and the Fraunhofer Institute for Open Communication Systems (FOKUS).
The OSiMa consortium analyzes collaboratively and multi disciplinarily which forms of the good “security” exist, and how these should be organized and financed. It is of particular interest which contribution the private security business can provide from a viewpoint of regulatory policy. Furthermore, the framework shall be described within which new services and forms of organization of protection and security supplied by the security business can develop.
Die Sicherheitswirtschaft leistet neben den öffentlichen Institutionen einen wichtigen Beitrag zum Schutzniveau der Gesellschaft. Allerdings gab es über diese Branche kaum Daten — bisher fehlten eine allgemeine anerkannte und klare Definition der Sicherheitswirtschaft sowie eine nachvollziehbare Datenquelle, um vergleichbare Eckdaten zu erfassen.
Am BIGS versuchen wir einen Beitrag zu leisten, die Sicherheitswirtschaft als Branche besser zu verstehen. Dabei definieren wir die Sicherheitswirtschaft wie folgt:
Die Sicherheitswirtschaft umfasst alle Unternehmen, die Produkte und Dienstleistungen zum Schutz von kritischen Infrastrukturen sowie zum Schutz vor Kriminalität, Wirtschaftsspionage und Terrorismus und zur Bewältigung von Krisen und (Natur-) Katastrophen anbieten. Unter dem Begriff der Kriminalität werden Alltagskriminalität, Gewaltkriminalität, organisierte Kriminalität und Internetkriminalität zusammengefasst.
Auf der Grundlage dieser Definition erhebt das BIGS seit 2012 jährlich Daten zur Sicherheitswirtschaft in Deutschland, um den Umfang, die Entwicklung und Trends der Branche zu erfassen und zu analysieren. Die dabei gewonnene Datenbasis bietet für Politik, Wirtschaft und Gesellschaft gleichermaßen die Möglichkeit, ein fundiertes Verständnis über den Beitrag der Sicherheitswirtschaft für das Schutzniveau Deutschlands und Trends in dieser Branche zu erlangen sowie deren Mehrwert für die deutsche Gesellschaft zu analysieren.
Zum Ausbau der bestehenden Analysebasis wird ein Unternehmenspanel aufgebaut, für welches wir fortwährend Teilnehmer suchen. Wenn Sie Interesse an einer Teilnahme haben, finden Sie hier weitere Informationen.
Analysen zu der Thematik wurden unter anderem im Rahmen des WISIND-Projektes publiziert.
Economic and Social Aspects of Cyber Security
BIGS is particularly dedicated to the economic and social dimensions within the research field of cyber security. Although cooperation between government, business and science regarding cyber security is improving on the national as well as international level, there is still urgent need for action. This is where BIGS comes into play and uses its organizational and research capacities to tackle various aspects of cyber security from a cross-disciplinary perspective.
These are, firstly, the social and structural changes that result from advancements in information and communication technology. Secondly, questions about constraints put upon various institutions, organizations and actors of cyber security are examined in the interdisciplinary setting of the Brandenburg Institute for Society and Security. Aside from issues of internet governance, BIGS also deals with the challenges imposed on the Germany economy by interconnectedness and digitalization. The focus here is on cooperation between business on the one hand and government actors and institutions on the other hand, as well as the safety of highly interconnected industries in the area of critical infrastructures.
In order to discuss these cyber-security issues, BIGS organizes together with Hasso Plattner Institute the annual Potsdam Conference of National Cyber Security. This conference aims to bring together stakeholders from politics, administration, and economy in a neutral place of science in order to jointly analyze operating options in the area of cyber security, to discuss defense mechanisms and their technical feasibility, as well as to provide a forum for mutual exchange and networking.
Publications in this field address, for example, the importance of civilian cyber security (BIGS Essence: Civilian Cyber security: Cybercrime between reality and risk) or illuminate cyber security under the heading of "digital hygiene".
Terrorism and politically/religiously motivated violence have a wide ranging impact on the state, society and citizens, be it under the aspect of social peace, economic effects, societal resilience and individual security.
The BIGS is working on different aspects of this complex challenge, including structures, strategies and objectives of terrorist actors, countermeasures and concepts, radicalization and de-radicalization programs, counter-terrorism legislation and the field of tension between liberty and security.
The BIGS is part of the "Radicalisation Awareness Network (RAN)" of the European Commission which aims on fostering exchange between practitioners, policy makers and academics.
Risk and Crisis Communication
BIGS has a long-term focus on risk and crisis communication in the field of civil security. The application of risk and crisis communication in the field of public risk and crisis management is central to research projects as well as the exploration of how our society deals with risk and crises - especially in politics and media.
Additionally, BIGS provides a platform of in-depth discussion on the topics of risk and crisis communication in relation to social resilience, which is understood as the self-help capacity of a population in crisis and disaster situations. Apart from project work and research on these topics, BIGS also organizes events concerning risk and crisis communication issues on a regular basis.
Recently, BIGS hosted a symposium on "Social Media in Crisis and Disaster Management" together with the Department of Business Information Systems and Electronic Government at the University of Potsdam (November 2013). The symposium proceedings titled "Social Media in Crisis and Disaster Management" were published at GITO Verlag in spring 2014.