Cyber Resilience

This project aims to investigate the factors influencing the exposure of firms and consumers to cyber risk, the economic incentives of firms to invest in cybersecurity, and their interplay with the environment in which firms operate (specifically, the market structure and the digital infrastructure). The focus is to understand the role of regulation, by designing the optimal policy tools that can spur investments in cyber security while avoiding potentially unintended effects, and by analyzing the effects of the privacy regulation currently in place. 

Two main goals:

i) To understand and analyze the factors affecting the exposure to cyber risk of firms and consumers. We aim to explore both the contextual factors arising externally of the firm’s environment, and factors stemming within firms, because of their own strategy.

•  As to the external factors, we will focus on hackers’ behavior, on the role of advanced digital infrastructure on firms’ resilience to cyber risk, as well as on individuals’ potentially risky online activities. 

• As internal factors, we will analyze how the exposure to cyber risk affects firms’ strategies in terms of prices, innovation activity, data collection, and investment in cybersecurity. 

ii) To identify policy tools through which firms and regulatory authorities can design implementable policies to protect individuals and firms online as well as to spur investments in cybersecurity. 

• The work will provide insights on the interplay between investments in cybersecurity and regulatory instruments such as optimal liability structure, platform interoperability (e.g., as now possible by the EU Digital Markets Act), and content moderation policies mandating platforms to delete content hurting fundamental rights. 

Principal Investigator: Laura Abrardi (POLITO)

Research Units: POLITO, UNIBZ, UNIPD, UNIUD.