The Lawfare Podcast Summary
Episode: Lawfare Daily: Phil Reitinger and Komal Bozaz-Smith on Civil Society and Strengthening Internet Security
Release Date: May 23, 2025
Hosts: Justin Sherman, Phil Reitinger (President and CEO, Global Cyber Alliance), Komal Bozaz-Smith (Chief Business Officer, Global Cyber Alliance)
1. Introduction
In this episode of The Lawfare Podcast, host Justin Sherman engages in an in-depth discussion with Phil Reitinger and Komal Bozaz-Smith from the Global Cyber Alliance (GCA). The focus centers on cyber risks to core Internet functions, the Alliance’s Common Good Cyber Project, and the pivotal role of civil society partnerships, funding, and data in enhancing Internet security.
2. Speaker Backgrounds
Phil Reitinger shares his extensive experience in cybersecurity, beginning in 1995 with the U.S. Department of Justice's Computer Crime Unit. Over the years, Phil has worked with entities such as DOJ, Microsoft, DHS, DOD, Sony, and has led the GCA for the past decade.
Komal Bozaz-Smith outlines her background in strategic consulting and international development, with roles at Dai, R4D, Arabella, Booz Allen, and Accenture. She co-founded the Kashmiri Institute and highlights her passion for solving complex problems through stakeholder collaboration, leading her to GCA.
3. The Global Cyber Alliance: Mission and Unique Approach
Phil Reitinger (02:28) explains that GCA is a globally distributed, virtual organization with a presence in countries like the U.S., Canada, the Netherlands, Belgium, Spain, and North Macedonia. Unlike other nonprofits that focus solely on policy or technical operations, GCA occupies a unique niche by delivering scalable cybersecurity solutions accessible to all.
Notable Quote:
“Our view is it's a fundamental human right, much like privacy or food is. So we really need to give everybody access to cybersecurity.”
— Phil Reitinger (05:31)
GCA's initiatives, such as Quad9—a global protective DNS infrastructure—and Manners, an effort to increase routing security, exemplify their commitment to operating at the intersection of technical and operational cybersecurity.
4. Challenges in Cybersecurity: Funding and Critical Infrastructure
Komal Bozaz-Smith (09:09) highlights the often-overlooked role of hundreds of small nonprofits that maintain critical cybersecurity functions essential for a safe and functioning Internet. These organizations, typically staffed by volunteers and operating on razor-thin budgets, are vulnerable to funding fluctuations.
Notable Quote:
“Most of them are, again, really skeleton crews, volunteers. They're working on razor thin budgets.”
— Komal Bozaz-Smith (09:09)
The discussion underscores the fragility of core Internet infrastructure maintained by these nonprofits, emphasizing the dire need for sustainable funding models.
5. Common Good Cyber Initiative
Phil Reitinger (11:44) delves into the Common Good Cyber Initiative, born from a 2022 Brussels meeting where nonprofits identified a critical need for collective funding to sustain essential cybersecurity operations. The initiative aims to bridge funding gaps, ensuring that vital services like Let's Encrypt and QUAD9 remain operational.
Komal Bozaz-Smith (32:18) elaborates on the initiative’s mapping efforts, categorizing 334 public interest-driven cybersecurity tools and services into six groups based on the NIST framework. This mapping facilitates strategic investments, reduces duplication, and enhances the overall effectiveness of cybersecurity efforts.
Notable Quote:
“It's an effort to actually enable nonprofits that fill that critical juncture between what individuals and the private sector and governments all do in a way that keeps the Internet safe for everybody.”
— Phil Reitinger (11:44)
6. Mapping and Data Needs in Cybersecurity
The speakers discuss the importance of creating a comprehensive mapping dashboard to identify and quantify the roles and effectiveness of various cybersecurity tools and organizations. Komal Bozaz-Smith (32:18) emphasizes the need for metrics to evaluate impact, prevent resource duplication, and direct strategic investments.
Phil Reitinger (35:00) points out the global deficiency in cybersecurity metrics, contrasting it with established public health metrics. He highlights efforts like the Cyber Peace Institute and GCA’s own reporting tools but underscores the pressing need for standardized, scalable data collection.
Notable Quote:
“It's like, you know, we know what food safety metrics look like. We've been doing that for 100 years. We haven't been doing the Internet for 100 years.”
— Phil Reitinger (35:00)
7. Policy Impacts and Future Directions
Komal Bozaz-Smith (39:08) reflects on the declining funding trends in cybersecurity over recent years and how Common Good Cyber aims to mitigate funding uncertainties through collective fundraising and joint investments.
Phil Reitinger (40:48) discusses the necessity of global collaboration and policy initiatives like “Secure by Design” to enhance the Internet’s inherent security. He stresses the importance of international cooperation and sustained investment to address the complex, global nature of cyber threats.
Notable Quote:
“Cybersecurity is not unique here. You see this all around the world, not just in the United States, where there's a lot more uncertainty and people focus on the problems closer to home.”
— Phil Reitinger (40:48)
8. Optimistic Outlooks and Conclusion
Looking ahead, Phil Reitinger (44:35) expresses optimism that the growing recognition of cybersecurity’s importance will drive governments and organizations to take collective action. He envisions significant positive change through initiatives like Common Good Cyber, leading to a more secure and resilient Internet infrastructure.
Komal Bozaz-Smith (46:10) echoes this optimism, emphasizing the critical role of the Internet in economic prosperity and global peace. She highlights the momentum building towards a stronger, more secure Internet driven by collaborative efforts.
Notable Quote:
“We've got the Internet that underpins literally everything we do. And if I can do that, I think it really changes the game.”
— Komal Bozaz-Smith (46:35)
Phil Reitinger (46:50) adds a crucial note on the nonpartisan nature of cybersecurity, advocating for a unified approach detached from political divisions to achieve effective outcomes.
Notable Quote:
“Cybersecurity has always been substantially a nonpartisan issue and it needs to remain that way.”
— Phil Reitinger (46:50)
Conclusion
This episode of The Lawfare Podcast provides a comprehensive look into the challenges and initiatives shaping Internet security today. Through the insights of Phil Reitinger and Komal Bozaz-Smith, listeners gain a deeper understanding of the critical role civil society plays in safeguarding the digital realm and the urgent need for sustainable, collaborative solutions to enhance global cybersecurity.
Resources and Further Information:
- Visit the Global Cyber Alliance for more on their initiatives.
- Explore the Common Good Cyber mapping dashboard to understand current public interest-driven cybersecurity tools and services.