Common Good Cyber short paper on Advancing Cybersecurity by Design for the Global Digital Infrastructure argues that achieving a secure digital environment requires collective action to not only build security into the design of digital products but also into the Internet infrastructure to ensure that the most vulnerable in society benefit from these protections. The paper highlights key policy areas where alignment and collaboration are needed and provides recommendations for policymakers, industry stakeholders, and civil society actors.
It also outlines the critical relationship between Common Good Cyber and the ongoing policy efforts around Cybersecurity by Design, and puts forward the following policy recommendations:
- The cybersecurity by design mandate could extend beyond product and service manufacturers and include digital infrastructure providers, such as ISPs, which play a crucial role in securing the Internet ecosystem.
- Governments and industry should collaborate to support the distribution and analysis of free actionable threat intelligence.
- Governments should fund and promote initiatives and solutions that provide cybersecurity training, tools, and services tailored to high-risk communities, ensuring equitable access to digital security.
The document offers best practices and resources in line with the mapping that Common Good Cyber is undertaking to identify solutions that work in the public interest at various levels of implementation. Common Good Cyber defends a holistic approach, and encourages policymakers to loop in the variety of actors involved in securing the digital commons and the high-risk communities by integrating Common Good Cyber principles to ensure that the Internet is secure for everyone—not just those who can afford it.