The fourth measure used was each country’s score from the Cybersecurity Exposure Index
(CEI), which measures how at-risk internet users are in their country. This is something that the report’s authors considered to be “a good alternative take on the other cybersecurity indices… as it looks at the problem from a different angle, helping to create an overall clearer picture of the cybercrime landscape”.
Lastly, the fifth source of data was an analysis of how strong anti-cybercrime legislation is in each country. For this, the report looked at the Global Cyber Strategy Index
, recording the number of strategies and pieces of legislation that have been enacted in each country, as well as the number of fields that said legislation covers. Using this data, each country was assigned one point for each piece of legislation and half a point if the legislation was in draft form. An extra point was added for each regulatory category covered by the legislation.
“The scores from all of these factors were converted into a single, equally-weighted score out of ten”, the report explains, allowing them to “rank the countries for their overall internet safety, revealing the best and worst countries for cybersecurity”. To this, the report also adds snapshots of the most common forms of cybercrime using data from Statista and used other data from the Centre for Strategic and International Studies (CSIS).
The most low-risk country in the world, in other words, those with the best score from all these data sources, is Denmark, scoring 8.91 out of 10. They are followed by Germany with 8.76 and the United States, which has to settle for third place despite being the only country to score 100/100 in the ITU index. The top 10 are then completed by Norway, the United Kingdom, Canada, Sweden, Australia, Japan and the Netherlands, which scored exactly 8 out of 10.
Looking at the other extreme, we find the 10 most high-risk countries, with scores ranging from the 2.22 scored by Myanmar to the 3.51 achieved by El Salvador. Between the two, from lowest to highest score, we find Cambodia, Honduras, Bolivia, Mongolia, Algeria, Zimbabwe, Nicaragua and Bosnia-Herzegovina.
Spain is positioned in the top half of the ranking in 25th
place, below Turkey, South Korea and Portugal and above Croatia, Slovenia and Mauritius. This is due to a rather poor score in the CEI and Global Cyber Strategy Index, as well as a particularly low score in the NCSI. However, here at GDS Modellica, we are open to the possibility that this is a scoring error since the NCSI itself puts Spain at a much-improved 6th
in the world.
Regardless of this possible error, reading the report in full, as well as the highly valuable sources of information we have mentioned, is well worth the trouble for anyone interested in the “geopolitics of cybersecurity” and looking to keep up to date regarding the strengths and weaknesses of the various regions around the globe.