Preventing or mitigating adversarial supply chain attacks: A legal analysis

Kaspar Rosager Ludvigsen, Shishir Nagaraja, Angela Daly

Research output: Chapter in Book/Report/Conference proceedingConference contribution

3 Citations (Scopus)

Abstract

The world is currently strongly connected through both the internet at large, but also the very supply chains which provide everything from food to infrastructure and technology. The supply chains are themselves vulnerable to adversarial attacks, both in a digital and physical sense, which can disrupt or at worst destroy them. In this paper, we take a look at two examples of such successful attacks to put the idea of Supply Chain Attacks into perspective, and analyse how EU and national law can prevent these attacks or otherwise punish companies which do not try to mitigate them at all possible costs. We find that the current types of national regulation are not technology specific enough, and cannot force or otherwise mandate the correct parties who could play the biggest role in preventing supply chain attacks to do everything in their power to mitigate them. But, current EU law is on the right path, and further development of this may be what is necessary to combat these large threats, as national law may fail at properly regulating companies when it comes to cybersecurity.

Original languageEnglish
Title of host publicationSCORED 2022
Subtitle of host publicationProceedings of the 2022 ACM Workshop on Software Supply Chain Offensive Research and Ecosystem Defenses, co-located with CCS 2022
Place of PublicationNew York, NY
PublisherAssociation for Computing Machinery
Pages25-34
Number of pages10
ISBN (Electronic)9781450398855
ISBN (Print)9781450398855
DOIs
Publication statusPublished - 8 Nov 2022
Event2022 ACM Workshop on Software Supply Chain Offensive Research and Ecosystem Defenses, SCORED 2022: Co-located with CCS 2022 - Los Angeles, United States
Duration: 11 Nov 202211 Nov 2022
https://scored.dev/

Conference

Conference2022 ACM Workshop on Software Supply Chain Offensive Research and Ecosystem Defenses, SCORED 2022
Abbreviated titleSCORED 2022
Country/TerritoryUnited States
CityLos Angeles
Period11/11/2211/11/22
Internet address

Keywords

  • Cybersecurity
  • Danish Law
  • EU Law
  • Irish Law
  • Supply Chain Attacks
  • Supply Chains
  • UK Law

ASJC Scopus subject areas

  • Computer Networks and Communications
  • Computer Science Applications
  • Information Systems
  • Software

Fingerprint

Dive into the research topics of 'Preventing or mitigating adversarial supply chain attacks: A legal analysis'. Together they form a unique fingerprint.

Cite this