Skip to main content
Publications
Subject(s)
Information technology and systems; Strategy and general management; Technology, R&D management
Keyword(s)
Cybersecurity, cyberattack, cyber defence
Cyberattacks have become part of every company’s daily routine. Every business leader must therefore prepare for a situation in which their company is successfully attacked. Defending against a cyberattack requires many parallel activities – assessing the impact, implementing technical defense measures, collecting evidence, rebuilding reliable IT systems and business processes, and communicating with customers and partners. The article describes five lessons that will help business leaders on Day X to successfully manage a serious and complex cyberattack.
ISSN (Print)
0015-6914
Subject(s)
Information technology and systems; Strategy and general management
Keyword(s)
Digital identity, digitale Identitäten, e-governance, digital sovereignty, digitale Souveränität
Vom 1. Januar 2018 bis zum 31. März 2020 hat das Digital Society Institute (DSI) der ESMT Berlin ein Begleitforschungsprojekt zu digitalen Identitäten mit Unterstützung der Verimi GmbH durchgeführt. Im Rahmen des Projekts fanden acht halbtägige Fach-Workshops mit jeweils 15 bis 30 externen Experten und Praktikern unterschiedlicher Stakeholdergruppen aus Politik, Wirtschaft, Wissenschaft und Zivilgesellschaft sowie eine Konferenz zu digitalen Identitäten an der ESMT Berlin statt. Die Workshops befassten sich mit der Rolle digitaler Plattformen im Bereich des digitalen Identitäten-Managements in spezifischen Sektoren sowie mit sektorübergreifenden Fragestellungen hinsichtlich der Daseinsvorsorge, Datenschutz und -souveränität sowie Interoperabilität, Offenheit und Datenportabilität. Die Ergebnisse der Fach-Workshops sind in den folgenden acht Papieren zusammengefasst.
---
From January 1, 2018, to March 31, 2020, the Digital Society Institute (DSI) at ESMT Berlin conducted a research project on digital identities with support from Verimi GmbH. The project included eight workshops with 15 to 30 external experts and practitioners from politics, business, academia, and civil society, as well as a conference on digital identities at ESMT Berlin. The workshops addressed the role of digital platforms in digital identity management in specific sectors as well as cross-sectoral issues, such as data protection and data sovereignty, interoperability, openness and data portability. The results of the specialist workshops are summarised in the following eight papers.
Pages
41
DSI Industrial & Policy Recommendations Series (IPR)
DSI Industrial & Policy Recommendations Series (IPR)
Martin Schallbruch, Tanja Strüve, Isabel Skierka (2020)
Subject(s)
Information technology and systems; Strategy and general management
Keyword(s)
Digitale Identitäten, E-Governance, Innovation, Digitalpolitik
Am 4. März 2020 war das Digital Society Institute der ESMT Gastgeber der Konferenz Digitale Identitäten 2020, die unter der Schirmherrschaft des Bundesministeriums des Innern, für Bau und Heimat sowie des Bundesministeriums für Wirtschaft und Energie an der ESMT ausgerichtet wurde. Ziel der Konferenz war es, gemeinsam mit Stakeholdern aus Politik, Wissenschaft und Wirtschaft der Frage nachzugehen, wie eine sektorübergreifende Strategie für digitale Identitäten aussehen kann. Im Plenum und in vier sektoralen Workshops – in den Bereichen Bildung, Gesundheit, Mobilität und öffentlicher Verwaltung – diskutierten die Teilnehmerinnen und Teilnehmer über Anforderungen an digitale Identitäten, innersektorale Strategien zur Flächendeckung innerhalb des Sektors sowie über eine Strategie für eine sektorübergreifende digitale Identität.


Pages
7
Magazine article
Today's General Counsel 16 (4): 36–38
Subject(s)
Information technology and systems; Technology, R&D management
Keyword(s)
Cybersecurity, digital strategy
Volume
16
Journal Pages
36–38
DSI Industrial & Policy Recommendations Series (IPR)
DSI Industrial & Policy Recommendations Series (IPR)
Annegret Bendiek, Martin Schallbruch (2019)
Subject(s)
Economics, politics and business environment; Information technology and systems; Technology, R&D management
Keyword(s)
cybersecurity, digital sovereignty
Cybersicherheit ist für Europa zu einer Schlüsselfrage der globalen digitalen Transformation geworden. Mit dem Cybersecurity Act, also der Cybersicherheitsverordnung, hat die EU einen rechtlichen Rahmen mit dem Anspruch globaler Ausstrahlung vorgelegt. Eingebettet in eine Politik, die digitale Souveränität mit strategischer Verflechtung kombiniert, kann die Verordnung das Tor zu einem dritten Weg Europas im Cyberraum sein, der zwischen dem US-amerikanischen Modell der Marktfreiheit und dem chinesischen Modell des autori- tären Staatskapitalismus verläuft. Der Cybersecurity Act wird verbindlicher Handlungsrahmen und Rückenwind für die bundesdeutsche Cybersicherheitspolitik sein.
Pages
7
Keyword(s)
Digital strategy, government, digital law, digital infrastrucure
Today’s digital strategy of governments worldwide is failing. The result is a weakening of government functions in the digital sphere – with risks for democracy and freedom. Digital innovation on a society-wide scale will only be effective if governments adopt stronger digital strategies. Key issues are a principle-oriented, less-specific digital regulation, bigger government’s spendings for digital infrastructures, a greater autonomy of state and local governments, and the establishment of a ‚Ministry for Digital Affairs“.
Subject(s)
Information technology and systems; Technology, R&D management
Keyword(s)
Digital strategy, government reform, digital law, digital infrastrucure
Digital innovation can be extremely beneficial to citizens. However, current digital strategies of governments are not strong enough to ensure that digital innovation is not a threat to society – but, only a benefit. Digital innovation will only be effective if governments adopt strong digital strategies. Key issues are a less-specific digital regulation, a greater government’s investment in digital infrastructures, a higher flexibility for local governments, and a strengthening of digital policy leadership within governments.
Argument
Foreign Policy
Andrew Grotto, Martin Schallbruch (2019)
Subject(s)
Information technology and systems; Technology, R&D management
Keyword(s)
China, privacy, cybersecurity, transatlantic relationship
China, Europe, and the United States are competing over whose image will be most reflected in rules and normst hat define digital markets. Regulatory measures such as Europe’s GDPR and China’s Cybersecurity Law combine privacy, security, and safety regulation. Driving factors are security policy as well as industry and trade policy. With China pulling into the pole position in the digital technology race, it is time for the United States and Europe to forge a digital governance alliance
Report
Report by the Commission ‘Competition Law 4.0’
Martin Schallbruch, Heike Schweizer, Achim Wambach (2019)
Subject(s)
Information technology and systems; Technology, R&D management
Keyword(s)
Competition law, antitrust law, digital platforms, data access
The Commission “‘Competition Law 4.0’” was set up by the German Federal Minister for Economic Affairs and Energy with the task to draw up recommendations for the further development of EU competition law in the light of the digital economy. The final report with 22 recommendations was handed over in September 2019.
The commission finds that the practical and actual power of consumers to dispose of their own data must be improved, clear rules of conduct for dominant platforms must be introduced, legal certainty for cooperation in the digital sector must be enhanced, and the institutional linkage between competition law and other digital regulation must be strengthened.
Pages
88
Report
Bericht der Kommission Wettbewerbsrecht 4.0
Martin Schallbruch, Heike Schweizer, Achim Wambach (2019)
DSI Industrial & Policy Recommendations Series (IPR)
DSI Industrial & Policy Recommendations Series (IPR)
Subject(s)
Economics, politics and business environment; Information technology and systems; Technology, R&D management
Keyword(s)
Blockchain, distributed ledger, strategy, policy, innovation
In its 2018 coalition agreement, the German federal government has set itself the goal of adopting a "Blockchain strategy" in this legislative period. As part of the planned promotion of Distributed Ledger and Blockchain technologies, the government wants to create a framework for the development and application of these technologies and test them in public administration. The Federal Ministry of Economics and Energy and the Federal Ministry of Finance are jointly in charge of developing the strategy. On this occasion, in a workshop on 3 July 2018 at the Digital Society Institute of ESMT Berlin, 35 experts from politics, business and science discussed how a national blockchain strategy can be practically organized. The discussion focused on the questions of what goals such a strategy should have, what the central enablers and appropriate framework conditions for the development and application of Distributed Ledger technologies such as blockchain can be in Germany, and what role the state plays in promoting the technology and managing risks in this technology field. Sarah Basic and André Eid (Federal Ministry for Economic Affairs and Energy), Dr. Christian Hampel (Ernst & Young GmbH), Dr. Jürgen Kohr (Fujitsu), Dr. Manfred Lochter (Federal Office for Security in Information Technology) and Kai Wagner (Jolocom) gave input speeches to the debate. Based on the workshop discussion, this paper outlines requirements for a national blockchain strategy. [Die Bundesregierung hat sich in ihrem Koalitionsvertrag das Ziel gesetzt, in dieser Legislaturperiode eine „Blockchain-Strategie“ zu verabschieden. Im Rahmen der geplanten Förderung von Distributed Ledger und Blockchain Technologien sollen die Rahmenbedingungen für Entwicklung und Einsatz der Technologien verbessert und diese auch in der öffentlichen Verwaltung erprobt werden. Mit der Erarbeitung der Strategie sind federführend das Bundesministerium für Wirtschaft und Energie (BMWi) und das Bundesministerium der Finanzen (BMF) betraut. Aus diesem Anlass erörterten in einem Workshop am 3. Juli 2018 am Digital Society Institute der ESMT Berlin 35 Experten aus Politik, Wirtschaft und Wissenschaft, wie eine nationale Blockchain-Strategie praktisch organisiert sein kann. Im Zentrum der Diskussion standen die Fragen, welche Ziele eine solche Strategie haben sollte, was zentrale Ermöglicher und geeignete Rahmenbedingungen für die Entwicklung und Anwendung von Distributed Ledger Technologien wie Blockchain in Deutschland sein können, und welche Rolle dem Staat bei der Förderung und Bekämpfung von Risiken in diesem Technologiefeld zukommt. Impulsvorträge für die Diskussion hielten Sarah Basic und André Eid (Bundesministerium für Wirtschaft und Energie), Dr. Christian Hampel (Ernst & Young GmbH), Dr. Jürgen Kohr (Fujitsu), Dr. Manfred Lochter (Bundesamt für Sicherheit in der Informationstechnik) und Kai Wagner (Jolocom). Auf der Grundlage der Workshop-Diskussion skizziert dieses Papier Anforderungen an eine nationale Blockchain-Strategie.]
Pages
14
Book Review

IT-Sicherheitsrecht [IT-security law]

Review of Buchbesprechungen. Paul Voigt, IT-Sicherheitsrecht, Cologne: Computer und Recht
Subject(s)
Information technology and systems; Technology, R&D management
Keyword(s)
Cybersecurity, information security
Book review of Paul Voigt, “IT-Sicherheitsrecht”, (IT security law), 2018
Secondary Title
Buchbesprechungen. Paul Voigt, IT-Sicherheitsrecht
Journal Pages
r81–r81
DSI Industrial & Policy Recommendations Series (IPR)
DSI Industrial & Policy Recommendations Series (IPR) 2018 (2)
Oliver Raabe, Martin Schallbruch, Anne Steinbrück (2018)
Subject(s)
Economics, politics and business environment; Information technology and systems; Technology, R&D management
Keyword(s)
IT security law, state of the art, protection goals, risk definition, systematization
The report deals with the current situation of IT security law and the chance that there are going to be changes in the near future. Further, it explains the system classification of IT security law and that definitions and regulations are different in every field of expertise. Finally, it deals with the state of the art and gives recommendations.
Volume
2018
DSI Industrial & Policy Recommendations Series (IPR)
DSI Industrial & Policy Recommendations Series (IPR) 2018 (1)
Subject(s)
Economics, politics and business environment; Information technology and systems; Technology, R&D management
Keyword(s)
IT security, cybersecurity
The report gives an overview on the current situation on cybersecurity and the political handling of that topic. It also recaps the goals and failures of the last four years and recommends action areas.
Volume
2018
DSI Industrial & Policy Recommendations Series (IPR)
DSI Industrial & Policy Recommendations Series (IPR) 2017 (5)
Subject(s)
Economics, politics and business environment; Information technology and systems; Technology, R&D management
Keyword(s)
Open source software, free software, IT security, cybersecurity
In April 2017, the Digital Society Institute hosted a workshop entitled "How secure is free software? Security record of open source and free software." The report summarizes the findings of the workshop and gives recommendations for companies and public agencies as well as policy recommendations.
Volume
2017
DSI Industrial & Policy Recommendations Series (IPR)
DSI Industrial & Policy Recommendations Series (IPR) 2017 (4)
Sandro Gaycken, Martin Schallbruch, Georg T. Becker (2017)
Subject(s)
Technology, R&D management
Keyword(s)
Automotive IT, safety, security, data policy, vehicle safety
The DSI has carried out stakeholder workshops with the automotive sector, mobility digital startups, automotive insurers, and vehicle inspectors and, on this basis, has developed the recommendations for safety, security and data policy in automotive IT. The car of the future will collect a wide range of data. Ownership and usage of those data must be clarified, and legal and technical characteristics have to be established in order to endure data protection, data security, vehicle safety, and a fair market.
This issue contains German text and English translation in one file.
Volume
2017
Subject(s)
Economics, politics and business environment; Information technology and systems; Strategy and general management
Keyword(s)
Cybersecurity, Germany
Journal Pages
13–18
Other
Internationale Politik und Gesellschaft 2017 (4)
Subject(s)
Technology, R&D management
Volume
2017
DSI Industrial & Policy Recommendations Series (IPR)
DSI Industrial & Policy Recommendations Series (IPR) 2017 (3)
Subject(s)
Technology, R&D management
Keyword(s)
Cryptograpy, intelligence agencies, IT security law, IT security regulation, industrial recommendations
JEL Code(s)
O30, O33, O38
In January 2017, the Digital Society Institute hosted a workshop on the “Crypto-debate: Strategies for responsible dealings with security agencies on matters of cryptography, vulnerabilities and tools.” Dr. Stefan Grosse (Federal Ministry of the Interior), Ralf Koenzen (Lancom Systems), Linus Neumann (Chaos Computer Club) and Stefan Heumann (Stiftung Neue Verantwortung) contributed to the workshop.
This issue contains German text and English translation in one file.
Volume
2017
Subject(s)
Technology, R&D management
Keyword(s)
Big data & analytics, business mobility, E-Commerce, Internet of Things
DSI Industrial & Policy Recommendations Series (IPR)
DSI Industrial & Policy Recommendations Series (IPR) 2017 (2)
Subject(s)
Technology, R&D management
Keyword(s)
data protection, privacy, IT security law, IT security regulation, industrial recommendations, EU General Data Protection Regulation (GDPR), cyberthreats
JEL Code(s)
O30, O33, O38
In December 2016, the Digital Society Institute hosted a workshop on requirements to create a compatibility of data protection and IT security regulation. Contributions to the workshop were given by Marit Hansen (ULD Schleswig-Holstein), Tomasz Lawicki (TeleTrusT working group “State of the Art Technology”), Steve Ritter (BSI) and Johannes Schlattmann (LVM).
The issue contains German text and English translation in one file.
Volume
2017
Subject(s)
Technology, R&D management
Volume
2016
Journal Pages
6–7
Subject(s)
Technology, R&D management
Journal Pages
5–8