Skip to main content
Univ. of Maryland 2017 Joint Cyber Incident Response Teams
Geographical scope: Cross-border, National
What

Description

This University of Maryland research examines the development, structure, and operational effectiveness of international cybersecurity information sharing agreements (ISAs) — formal arrangements between nations and organisations that govern the exchange of threat intelligence, vulnerability data, and incident information across borders. The research analyses a range of agreement types, from bilateral government-to-government treaties to multilateral frameworks and sector-specific arrangements, assessing their legal foundations, scope, governance mechanisms, and practical implementation outcomes. It identifies key design factors that determine the effectiveness of ISAs, including the specificity of sharing obligations, trust-building mechanisms, liability provisions, and data handling standards. The study provides actionable recommendations for designing more effective international agreements that overcome common barriers to timely, high-quality intelligence sharing in the civil-defence cybersecurity domain.

Where

Geographical Scope

Global in scope, with particular focus on European and transatlantic information sharing arrangements. Findings are directly applicable to EU Member States developing bilateral or multilateral cybersecurity cooperation agreements.

Problems Solved

Relevance to Civil-Defence Cooperation

This practice addresses the following cooperation needs identified in the COcyber needs assessment (D2.2). Filled squares indicate needs directly addressed by the practice.

  • Fragmentation of cybersecurity efforts
  • Lack of information-sharing
  • Lack of awareness capacity
  • Lack of dual-use technologies
  • Lack of coordinated policies
  • Lack of cross-pollination
  • Lack of cutting-edge innovation
  • Cultural differences
Impact

Benefits & Challenges

Anticipated Benefits

  • Provides evidence-based design principles for structuring effective international cybersecurity information sharing agreements.
  • Identifies common failure modes and success factors, enabling policymakers to learn from existing agreements before developing new ones.
  • Supports the development of trust frameworks that address liability, classification, and data protection concerns — key barriers to effective sharing.

Anticipated Challenges

  • Divergent national legal systems and data protection regimes create significant friction in designing agreements that are legally valid and operationally effective across all parties.
  • Political sensitivities around intelligence sharing and national sovereignty may limit the scope and depth of what governments are willing to commit to in formal agreements.
  • Maintaining the operational relevance of agreements over time requires active governance and regular review processes that are often underfunded or deprioritised.
How

Domains

Info Sharing
Int'l Agreements
Threat Intel.
COcyber Project - D4.1 Guidelines on Cybersecurity Civil-Defence Cooperation - 2024-2026
Back to Repository of Practices