TY - JOUR AB - Purpose The issue of cybersecurity has been cast as the focal point of a fight between two conflicting governance models: the nation-state model of national security and the global governance model of multi-stakeholder collaboration, as seen in forums like IGF, IETF, ICANN, etc. There is a strange disconnect, however, between this supposed fight and the actual control over cybersecurity “on the ground”. This paper aims to reconnect discourse and control via a property rights approach, where control is located first and foremost in ownership.Design/methodology/approach This paper first conceptualizes current governance mechanisms through ownership and property rights. These concepts locate control over internet resources. They also help us understand ongoing shifts in control. Such shifts in governance are actually happening, security governance is being patched left and right, but these arrangements bear little resemblance to either the national security model of states or the global model of multi-stakeholder collaboration. With the conceptualization in hand, the paper then presents case studies of governance that have emerged around specific security externalities.Findings While not all mechanisms are equally effective, in each of the studied areas, the author found evidence of private actors partially internalizing the externalities, mostly on a voluntary basis and through network governance mechanisms. No one thinks that this is enough, but it is a starting point. Future research is needed to identify how these mechanisms can be extended or supplemented to further improve the governance of cybersecurity.Originality/value This paper bridges together the disconnected research communities on governance and (technical) cybersecurity. VL - 19 IS - 6 SN - 2398-5038 DO - 10.1108/DPRG-05-2017-0029 UR - https://doi.org/10.1108/DPRG-05-2017-0029 AU - van Eeten Michel PY - 2017 Y1 - 2017/01/01 TI - Patching security governance: an empirical view of emergent governance mechanisms for cybersecurity T2 - Digital Policy, Regulation and Governance PB - Emerald Publishing Limited SP - 429 EP - 448 Y2 - 2024/04/18 ER -