The digital space has long since become an area of geopolitical conflict. Criminal networks, state actors and technological dependencies create a threat situation that is increasingly overwhelming traditional security concepts. Against this background, the Federal Office for Information Security (BSI) has presented a strategic model that aims to think about cybersecurity holistically.
At the Schwarz Digits Cyber Security Conference (CSC), BSI President Claudia Plattner presented the so-called “Wheel of Motion”. The concept sketch is aimed at a specialist audience from IT security, business, politics and science and describes a multi-dimensional approach to dealing with modern cyber aggression.
Three forms of cyber aggression
From the BSI’s perspective, the key threats in the digital space can be divided into three categories. Cyber crime includes crimes in the digital space that are primarily carried out for financial reasons. These include, for example, ransomware attacks, data theft/espionage and digital blackmail.
Cyber Conflict, on the other hand, describes state-controlled attacks with a political, military or ideological background. Such operations often target critical infrastructure, authorities or strategically relevant companies.
A third category is cyber dominance. This refers to the influence via digital products or platforms that give manufacturers or operators access to data, functions or system structures. Such dependencies can become a strategic risk in geopolitical competition.
Three strategic countermeasures
The “Wheel of Motion” compares each of these three threat types with their own areas of action. A central approach is the targeted automation of security measures, which the BSI summarizes under the term cyber automation.
The authority sees automated defense mechanisms as the crucial next step, particularly in the fight against cyber crime. In this context, the BSI is building a so-called cyberdome for Germany on behalf of the Federal Ministry of the Interior. The digital protective shield is intended to automatically detect and ward off attacks and thus significantly shorten reaction times.
In the area of cyber conflict, the BSI is relying on a stronger state defense structure. Under the term cyber defense, the authority calls for more efficient organizational structures, clearly defined interfaces between authorities and improved cooperation within the national cybersecurity architecture.
Digital sovereignty as a strategic goal
The concept pays particular attention to cyber dominance. In order to counteract technological dependencies, the BSI is pursuing a dual strategy under the term cyber control.
On the one hand, the European digital industry should be specifically strengthened. The aim is to develop our own technologies and platforms that meet high security standards and at the same time create strategic independence.
On the other hand, the model provides for technical control layers for non-European products. These are intended to ensure that such technologies can continue to be used without losing control of data or system functions.
Cooperation between the state and business
Cooperation between government institutions and business also plays a central role. Just a few weeks ago, the BSI entered into a strategic partnership with Schwarz Digits, the information technology division of the Schwarz Group, as part of the Munich Security Conference.
The aim of this cooperation is to advance the digitalization of the federal administration and at the same time establish new security standards. Specific projects are planned to develop powerful digital solutions with modern security and sovereignty features.
With the “Wheel of Motion”, the BSI is sending a clear signal: in the future, cybersecurity should no longer be thought of exclusively in a reactive manner, but rather as a strategic component of digital action in Germany and Europe.