Documenti di Didattica
Documenti di Professioni
Documenti di Cultura
be improved if the whole society becomes more aware of the problem. Therefore, in order to recognize the public
vulnerability to cyberthreats and the importance of public participation in building cybersecurity policies,
awareness-raising campaigns as well as education, training, and research have been continuously emphasized in
strategy and policy papers. The 1997 report on critical infrastructure protection in the United States already includes
a clear call for ingraining infrastructure protection “in our culture, beginning with a comprehensive program of
education and awareness”,[53] and the Cyberspace Policy Review of 2009 recommends that “[t]he Federal
government, in partnership with educators and industry, should conduct a national cyber security public awareness
and education. The strategy should involve public education about the threat and how to enhance digital safety,
ethics, and security.”[54]
While many strategies emphasize the importance of awareness and education programs, they rarely specify how
or by whom such programs should be implemented. Some refer to previous established and still ongoing programs,
[55] while others refer to implementation plans that will be issued later.[56] It also often remains unclear who
should be targeted by such campaigns (the strategies and policy papers mention company leaders, students,
government officials, or the general public as potential addressees). Although it is not necessary to define every
detail of awareness and education programs at the level of a strategy, it would still be beneficial to have better
specifications, which would make it possible to analyze which programs are already implemented (and by whom)
and which have still to be developed.