Estonia’s 2007 cyberattacks provided some of the first evidence that cyber threats could pose as significant a threat to a nation’s sovereignty as physical weaponry. Fifteen years later, Estonia’s policy and cultural focus have placed it at the forefront of European cybersecurity practices. Piret Pernik offers a discussion of how Estonia’s cyber-deterrence strategy has evolved as a result of these attacks, and what other countries can learn from Estonia’s policies. This paper is part case study, part theoretical analysis, and treats the topic with medium rigor.
