Preventing or Mitigating Adversarial Supply Chain Attacks; a legal analysis

Kaspar Rosager Ludvigsen, Shishir Nagaraja, Angela Daly

Research output: Working paper/PreprintPreprint

79 Downloads (Pure)


The world is currently strongly connected through both the internet at large, but also the very supply chains which provide everything from food to infrastructure and technology. The supply chains are themselves vulnerable to adversarial attacks, both in a digital and physical sense, which can disrupt or at worst destroy them. In this paper, we take a look at two examples of such successful attacks and consider what their consequences may be going forward, and analyse how EU and national law can prevent these attacks or otherwise punish companies which do not try to mitigate them at all possible costs. We find that the current types of national regulation are not technology specific enough, and cannot force or otherwise mandate the correct parties who could play the biggest role in preventing supply chain attacks to do everything in their power to mitigate them. But, current EU law is on the right path, and further vigilance may be what is necessary to consider these large threats, as national law tends to fail at properly regulating companies when it comes to cybersecurity.
Original languageEnglish
Place of PublicationCornell University
Publication statusPublished - 6 Aug 2022


  • cs.CY
  • cs.CR
  • K.4.2; K.4.1; K.5.1; K.5.2


Dive into the research topics of 'Preventing or Mitigating Adversarial Supply Chain Attacks; a legal analysis'. Together they form a unique fingerprint.

Cite this