ABSTRACT
This chapter examines the contributions of corporate actors to cybersecurity norm development processes. Specifically, it summarizes and comments on the effectiveness of the norms-based cyber insecurity reduction measures undertaken by technology companies. As a result of political and ideological contentions among governments, and against the background of increasing numbers of threats emanating from cyberspace, corporate entities have started inserting their voices more vocally in debates about rules of the road for the digital domain. This chapter argues that while the norms-based activities carried out by technology firms have been effective in terms of output and outcome, their efforts have borne less fruit apropos decreasing systemic risks, and levels of cyber insecurity, respectively.
