Benoît J. Dupont

Canada Research Chair in Cybersecurity

Tier 1 - 2017-11-01
Renewed: 2011-10-01
Université de Montréal
Social Sciences and Humanities Research Council

514-343-6111, ext./poste 2586

Research involves

Comparing global cybersecurity policies and assessing their effectiveness by leveraging publicly available datasets, field studies and qualitative interviews.

Research relevance

This research will generate evidence-based knowledge to better protect our digital ecosystem and reinforce its resilience.

From Hype to Evidence: Assessing the Effectiveness of Cybersecurity Policies

We are experiencing a digital revolution that is as transformative and disruptive as the two industrial revolutions that preceded it. The downside of this revolution is that it is opening us up to online risks. Alarming headlines remind us daily that our personal and financial data can be plundered by hackers who exploit technical vulnerabilities or human errors.

Finding ways to deal with these risks is costly. The global cybersecurity market is estimated to grow to $156 billion by 2019. Yet despite these massive investments, cybersecurity remains an elusive goal. As Canada Research Chair in Cybersecurity, Dr. Benoît Dupont is looking to produce the knowledge we need to better protect our digital ecosystem and reinforce its resilience.

Dupont and his research team are examining cybersecurity as a public good produced through a mix of interdependent government and market mechanisms, and evaluating the effectiveness of these strategies. They are developing a publicly accessible data warehouse that will serve as a repository for case studies. They are also aggregating open and proprietary datasets from cybersecurity companies and international organizations, such as the Organisation for Economic Cooperation and Development, the World Bank, NATO and others.

Dupont and his team will communicate their findings through an array of easily accessible and user-friendly tools with the goal of encouraging a more informed and balanced debate. This information will also support public and private decision-makers by developing open criteria that can be used to assess the claims made by various cybersecurity interests.