        TY  - JOUR
T1  - Estonya 2007 Siber Saldırılarının İncelenmesi ve Ülkelerin Ulusal Siber Güvenlik Politikalarına Etkileri
TT  - An Examination of Estonia 2007 Cyber Attacks and the Effects on National Cyber Security Policies of Countries
AU  - Dilek, Esma
AU  - Talih, Özgür
AU  - Bensghir, Türksel
PY  - 2023
DA  - December
Y2  - 2023
DO  - 10.33721/by.1392577
JF  - Bilgi Yönetimi
JO  - BY
PB  - Ankara Üniversitesi
WT  - DergiPark
SN  - 2636-8544
SP  - 332
EP  - 347
VL  - 6
IS  - 2
LA  - tr
AB  - Siber saldırılar, dijitalleşmiş ve bilgi toplumuna dönüşen ülkelerde, ulusal güvenlik açısından dikkate alınması gereken önemli hususlar arasındadır. Geleneksel fiziksel saldırılardan farklı olarak siber saldırıların ne şekilde meydana geleceği, hangi saldırı yüzeylerini kullanacağı ve hangi hedeflere yöneleceği konuları beklenmedik şekillerde ve çeşitliliktedir. Siber dünyada meydana gelen savaşların sonuçları farklı boyutlarda öngörülemeyen etkilere sahip olabilmektedir. Bu durumun dünyada ses getiren örneklerinden biri, 2007 yılında Estonya’ya yönelik olarak meydana gelmiştir. Avrupa’nın en teknolojik ülkelerinden olan Estonya, o tarihe kadar tek bir ülkeye yönelik düzenlenen, koordineli, en kapsamlı siber saldırılardan birine maruz kalmıştır. Gelişmiş siber savunma yeteneklerine sahip olmanın önemini vurgulayan, Estonya’ya yönelik bu siber savaş dalgası, ulusal güvenliğin sağlanması için siber güvenlik alanında odaklanılması gereken konuları gün yüzüne çıkarmıştır. Bu çalışmada, 2007 yılında, Estonya’ya düzenlenen siber saldırılar, bu saldırıların nedenleri, hedefleri, ulusal ve uluslararası etkileri, alınan siber savunma önlemleri, saldırılar sonrasında öğrenilmiş dersler incelenmiştir. Bu dersler ışığında, Uluslararası Telekomünasyon Birliği (ITU) Küresel Siber Güvenlik İndeksinde üst sıralarda yer alan ülkelerin ve Türkiye’nin güncel siber güvenlik politikaları değerlendirilmiştir.
KW  - Estonya
KW  - Siber Saldırı
KW  - Siber Savunma
N2  - Cyber-attacks are among the major issues that need to be taken into consideration in terms of national security in countries that are digitalised and transforming into an information society. Unlike traditional physical attacks, the manner in which cyber attacks will occur, which attack surfaces they will use, and which targets they will be directed towards are unpredictable and varied. The consequences of attacks in the cyber space can have unpredictable effects in various dimensions. One of the most prominent examples of this issue in the world occurred in 2007 against Estonia. Estonia, one of the most technological countries in Europe, was exposed to one of the most coordinated, comprehensive cyber-attacks ever organised against a single country. This wave of cyber attacks against Estonia, which emphasised the importance of having advanced cyber defence capabilities, highlighted the issues that need to be focused on in the field of cyber security to ensure national security. In this study, the cyber-attacks against Estonia in 2007, the reasons, targets, national and international effects of these attacks, the cyber defense measures taken, and the lessons learned after the attacks were examined. In the light of these lessons, the current cyber security policies of Türkiye and the countries ranked high in the International Telecommunication Union (ITU)’s Global Cyber Security Index have been evaluated.
CR  - Boeke, S. (2017). National cyber crisis management: Different European approaches. Governance-An International Journal of Policy Administration and Institutions. https://doi.org/https://doi.org/10.1111/gove.12309
CR  - Buresh, D. L. (2020). A Critical Evaluation of the Estonian Cyber Incident. Journal of Advanced Forensic Sciences, 1(2), 7-14. /https://doi.org/10.14302/issn.2692-5915.jafs-20-3601
CR  - CCDCOE. (2013). The Tallinn Manual. 3, https://web.archive.org/web/20130424162717
CR  - CCDCOE. (2021). Crossed Swords. https://www.ccdcoe.org/exercises/crossed-swords/
CR  - CCDCOE. (2022). Locked Shields., https://ccdcoe.org/exercises/locked-shields/
CR  - CCDCOE. (2023). CCDCOE to Host the Tallinn Manual 3.0 Process., https://www.ccdcoe.org/exercises/crossed-swords/
CR  - Crandall, M. (2014). Soft Security Threats and Small States: The Case of Estonia. Defence Studies, 14(1), 30-55. https://doi.org/10.1080/14702436.2014.890334
CR  - Czosseck, C., Ottis, R., &amp; Talihärm, A.-M. (2011). Estonia after the 2007 Cyber Attacks: Legal, Strategic and Organisational Changes in Cyber Security. IJCWT, 1, 24-34, http://doi.org/10.4018/ijcwt.2011010103.
CR  - Estonia. (2010). National Security Concept of Estonia. https://eda.europa.eu/docs/default-source/documents/estonia---national-security-concept-of-estonia-2010.pdf
CR  - Fonseca, C. E., Perdomo, I. L., &amp; Arozarena Gratacos, M. (2014). El manual de Tallin y la aplicabilidad del derecho internacional de la ciberguerra. Ortiz, Javier Ulises. http://cefadigital.edu.ar/handle/1847939/993
CR  - Georgetown University Law Library. (2023). International and Foreign Cyberspace Law Research Guide. https://guides.ll.georgetown.edu/cyberspace/cyber-conflicts
CR  - Haataja, S. (2017). The 2007 cyber attacks against Estonia and international law on the use of force: an informational approach. Law, Innovation and Technology, 9(2), 159-189. https://doi.org/10.1080/17579961.2017.1377914
CR  - Harrison, K., &amp; White, G. (2012). Information sharing requirements and framework needed for community cyber incident detection and response. 2012 IEEE Conference on Technologies for Homeland Security (HST), 463-469. https://doi.org/10.1109/THS.2012.6459893
CR  - Herzog, S. (2011). Revisiting the Estonian Cyber Attacks: Digital Threats and Multinational Responses. Source: Journal of Strategic Security, 4(2), 49-60. https://doi.org/10.2307/26463926
CR  - ITU. (2020). Global Cybersecurity Index 2020. https://www.itu.int/dms_pub/itu-d/opb/str/D-STR-GCI.01-2021-PDF-E.pdf
CR  - Jackson, C. (2013). Estonian Cyber Policy After the 2007 Attacks: Drivers of Change and Factors for Success.
CR  - Kaska, K., Talihärm, A.-M., &amp; Tikk, E. (2010). Developments in the legislative, policy and organisational landscapes in Estonia since 2007. International Cyber Security Legal and Policy Proceedings, 40-66.
CR  - Mäses, S., Maennel, K., Toussaint, M., &amp; Rosa, V. (2021). Success Factors for Designing a Cybersecurity Exercise on the Example of Incident Response. 2021 IEEE European Symposium on Security and Privacy Workshops (EuroS&amp;PW), 259-268. https://doi.org/10.1109/EuroSPW54576.2021.00033
CR  - NATO OTAN. (2023). Cyber Coalition: NATO’s Flagship Cyber Exercise. https://www.act.nato.int/activities/cyber-coalition/
CR  - Nezgitli, S., &amp; Benzer, R. (2020). Avrupa Birliği Siber Güvenlik Kanunu. Journal, 2(1), 10-17. https://dergipark.org.tr/tr/pub/jismar/issue/55710/659519
CR  - NÚKIB. (2023). Exercise Types. https://nukib.gov.cz/en/cyber-security/exercises/exercise-types/#:~:text=Crossed%20Swords%20is%20a%20technical,to%20full-scale%20cyber%20operations.
CR  - Ottis, R. (2008). Analysis of the 2007 cyber attacks against Estonia from the information warfare perspective. Proceedings of the 7th European Conference on Information Warfare, 163. Academic Publishing Limited Reading, MA.
CR  - Republic Of Estonia. (2020). Cyber Security Strategy 2019-2022. Ministry of Economic Affairs and Communications. https://www.mkm.ee/media/703/download
CR  - Republic Of Estonia. (2023). Cyber Security in Estonia 2023. Information System Authority. https://www.ria.ee/media/2702/download
CR  - Rid, T. (2012). Cyber war will not take place. Journal of strategic studies, 35(1), 5-32, https://doi.org/10.1080/01402390.2011.608939.
CR  - T.C. Ulaştırma ve Altyapı Bakanlığı. (2020). Ulusal Siber Güvenlik Stratejisi ve Eylem Planı 2020-2023., https://hgm.uab.gov.tr//uploads/pages/siber-guvenlik/ulusal-siber-guvenlik-stratejisi-ep-2020-2023.pdf
CR  - T.C. Ulaştırma ve Altyapı Bakanlığı. (2021). 12. Ulaştırma ve Haberleşme Şurası Sektör Raporları. https://sgb.uab.gov.tr/uploads/pages/suralar/12-ulastirma-ve-haberlesme-surasi-sektor-raporlari.pdf
CR  - The White House. (2023). National Cybersecurity Strategy., https://www.whitehouse.gov/wp-content/uploads/2023/03/National-Cybersecurity-Strategy-2023.pdf
CR  - Thematic Area. (2007). 2007 cyber attacks on Estonia., https://stratcomcoe.org/cuploads/pfiles/cyber_attacks_estonia.pdf
CR  - Tikk, E., &amp; Kaska, K. (2010). Legal Cooperation to Investigate Cyber Incidents: Estonian Case Study and Lessons. 9th European Conference on Information Warfare and Security 2010, ECIW 2010.
CR  - Zhu, X. (2023). Western Studies on the Sovietization of Eastern Europe. Chinese Journal of Slavic Studies, 3(1), 15-32. https://doi.org/10.1515/cjss-2023-0008
UR  - https://doi.org/10.33721/by.1392577
L1  - https://dergipark.org.tr/tr/download/article-file/3544839
ER  -