North Atlantic Treaty Organization
The North Atlantic Treaty Organization (NATO) is a regional organization composed of 29 countries of the Northern Atlantic area. Cyber defense entered into NATO’s agenda at the Prague Summit in 2002. Its first cyber policy was prepared in 2008, officialized at the Lisbon Summit of 2010 when Cyber Defense was included in NATO’s Strategic Concept. At the Warsaw Summit of 2016, recognized cyberspace to be a new military operations’ domain and in 2018 Member States’ Ministers of Defense agreed to create a new Cyber Operation Center at SHAPE, in order to help and integrate all aspects of cyberspace at every level of NATO’s operations planning and execution.
Enhanced Cyber Defence Policy
https://www.nato.int/cps/en/natohq/official_texts_112964.htm
Adopted at the Wales Summit of 2014. It enhances allies’ cooperation in four areas: cyber defense (affirming the applicability of art. 5 in case of a cyber-attack), assistance among Member States, capacity development and creation of new partnerships.
Cyber Defence Pledge
https://www.nato.int/cps/en/natohq/official_texts_133177.htm
Declaration adopted during the Warsaw Summit of 2016 where Member States’ Head of States reaffirmed their willingness to strengthen Member States’ cyber defense and that of NATO. It also declares cyberspace as a domain for military operations.
Brussels Summit Declaration
https://www.nato.int/cps/en/natohq/official_texts_156624.htm
Declaration following the Brussels Summit of July 2018: at point n. 20 it reaffirms the need to develop the capacity in NATO countries to defend themselves and respond to cyber threats.
Tallinn Manual 2.0
https://ccdcoe.org/research/tallinn-manual/
Second edition of the Manual, prepared by the CCDCOE, and it contains indications on how to apply international law in cases of cyber incidents.
Guide to Developing a National Cybersecurity Strategy: Strategic Engagement in Cybersecurity
https://www.itu.int/dms_pub/itu-d/opb/str/D-STR-CYB_GUIDE.01-2018-PDF-E.pdf
Joint publication to guide States in developing national cybersecurity, cyber-preparedness and resilience strategies.
Wales Summit Declaration
https://www.nato.int/cps/en/natohq/official_texts_112964.htm#cyber
Statement supporting the adoption of the Enhanced Cyber Defense Policy and the need to develop a NATO collective defense system in the cyber sector.
NATO Information Assurance Symposium (NIAS)
NATO conference, held annually, on emerging cybersecurity trends.
NATO Annual Cyber Coalition Exercise
https://www.nato.int/cps/en/natohq/news_160898.htm
The largest cyber defense exercise inside NATO, held annually, which prepares Member States for the Alliance defense networks. It involves more than 700 military and civilian actors.
International Conference on Cyber Conflict
Annual conference, promoted by the CCDCOE, dealing with major problems related to cyber-defense.
Locked Shields
https://ccdcoe.org/exercises/locked-shields/
Annual exercise organized by the CCDCOE testing the skills of NATO’s cyber security experts in realistic scenarios.
Project, NATO-Moldova
https://www.nato.int/cps/en/natohq/news_152364.htm?selectedLocale=en
Multi-year collaboration project to improve the cyber-defense capabilities of the Moldavian armed forces.
Cooperation, Estonia/NATO-Japan
Cooperation that led Japan to participate as a member of the CCDCOE.
Cooperation Agreement, EU-NATO
https://www.nato.int/cps/en/natohq/news_149848.htm
Meeting between NATO and EU officers to discuss current efforts and new areas of cooperation for cyber-defense.
NATO-Kuwait ICI Regional Center activities
https://www.nato.int/cps/ic/natohq/news_147010.htm
Cooperation between NATO and Kuwait ICI Regional Center in a number of sectors, including cyber defense and critical infrastructure security.
Agreement, NATO-Lithuania
https://kam.lt/lt/titulinis_1220.html
Agreement to strengthen cooperation between NATO and Lithuania in cybersecurity.
Cooperation, NATO-Bosnia and Herzegovina
https://www.nato.int/cps/en/natohq/news_144045.htm
Cooperation born following the NATO SPS (Science for Peace and Security) program. NATO and Bosnia and Herzegovina seek common solutions to cyber defense, anti-terrorism and other security challenges.
Morocco-NATO Talks
https://northafricapost.com/17912-morocco-nato-cooperate-countering-cyber-security-risks.html
Meeting between NATO and Morocco representatives to evaluate cooperation between the two bodies at a bilateral level, specifically in cybersecurity.
NATO Training
https://www.nato.int/cps/ua/natohq/news_139179.htm?selectedLocale=en
NATO training program for Iraqi cyber defense experts, with the aim of strengthening Iraq's cyber capacity.
Memorandum of Understanding, Bulgaria-NATO
https://www.nato.int/cps/en/natohq/news_137069.htm
Agreement to enhance cooperation for cyber defense between NATO and Bulgaria, through measures facilitating the exchange of information and knowledge. The deal also allows NATO to assist Bulgarian authorities in case of need.
EU-NATO Technical Arrangement
https://eeas.europa.eu/headquarters/headquarters-homepage/5254_en
Agreement signed in February 2016 between NATO, NCIRC and CERT-EU to facilitate the exchange of information. It represents a step forward for the EU Cyber Defense Policy Framework which sees in cooperation with NATO one of its 5 fundamental points.
NATO Science for Peace and Security (SPS) project to enhance Jordanian cyber defense capabilities
https://www.nato.int/cps/en/natohq/news_146287.htm
A Project which is part of the SPS initiative, aiming at establishing a collaboration between Jordan and NATO to enhance cyber defense capabilities. Among the results achieved, a CERT was established in Amman, Jordan.
NATO-Ukraine Trust Fund for Cyber Defense
Program to help Ukraine develop a defensive CSIRT to investigate cybersecurity incidents.
Discussions, Slovakia-NATO
https://www.mosr.sk/28788-sk/statny-tajomnik-m-koterec-rokoval-v-nato/
Meeting between NATO and Slovakia representatives to discuss various defense-related issues, including cybersecurity.
Memorandum of Understanding, NATO-Czech Republic
https://www.govcert.cz/en/info/events/2444-nsa-director-sign-memorandum-with-nato/
Agreement between the Czech Republic's NSA and NATO CDMB to increase cooperation in the field of cyber defense.
Memorandum of Understanding, Romania-NATO
https://nato.mae.ro/local-news/487
Agreement between NATO and Romania to strengthen cybersecurity cooperation.
Critical Information Infrastructure Protection Course
https://ccdcoe.org/training/critical-information-infrastructure-protection-2019-october/
Corso promosso dal CCDCOE per addestrare e formare personale responsabile per la protezione di infrastrutture critiche di informazione (CIIP).
Course promoted by the CCDCOE to train personnel responsible for the protection of critical information infrastructures (CIIP).
Executive Cyber Seminar
https://ccdcoe.org/training/executive-cyber-seminar-2/
Seminar promoted by CCDCOE to familiarize staff, with functions partly related to cyber, on cyberspace, particularly to the technical and legal aspects useful for the decision making process.
EU-NATO (15283/16)
http://data.consilium.europa.eu/doc/document/ST-15283-2016-INIT/en/pdf
Annex to the Council Conclusion on the implementation of the Joint Declaration of July 2016.
Memorandum of Understanding, Lithuania-NATO
https://ccdcoe.org/sites/default/files/multimedia/pdf/CS_organisation_LITHUANIA_092015.pdf
Agreement between NATO and Lithuania to strengthen cybersecurity cooperation.
NATO Communications and Information Agency
https://www.ncia.nato.int/what-we-do.html
Agency with the function of protecting the communication systems of NATO military commanders and decision makers.
North Atlantic Council (NAC)
https://www.nato.int/cps/en/natohq/topics_78170.htm?selectedLocale=en
https://www.nato.int/cps/en/natolive/topics_49763.htm
Council responsible for the main political decisions within NATO, it is the main authority in the field of cyber defense and incident management.
Cyber Defense Committee
https://www.nato.int/cps/en/natohq/topics_78170.htm
Commission helping Member States, subordinated to the NAC, with supervision and advice mechanisms in the field of cyber defense.
NATO Cyber Defense Management Board
https://www.nato.int/cps/en/natohq/topics_78170.htm
Board responsible for the coordination of the military and civil sectors for cyber-defense.
NATO Consultation, Control and Command Board
https://www.nato.int/cps/en/natohq/topics_78170.htm
Board with consultation functions for technical aspects and implementation of cyber-defense measures.
NATO Military Authorities
https://www.nato.int/cps/en/natohq/topics_78170.htm
They share responsibilities with NATO Communications and Information Agency (NCIA) for the monitoring of the status of NATO's operational requirements, acquisition and implementation of cyber defense capabilities.
Allied Command Transformation
https://www.nato.int/cps/en/natohq/topics_78170.htm
Body responsible for the planning and execution of the annual NATO Cyber Coalition Exercise.
NATO Cooperative Cyber Defense Centre of Excellence (CCDCOE)
Organization whose purpose is to research and support NATO in the field of cyber defense. It is composed of experts from 25 nations.