Challenges and recommendations for research security: Learning from research ethics and integrity

Abstract

Collaborative and open research combined with influential technological advancements and geopolitical tensions allow Higher Education Institutions (HEIs) and Research Performing Organisations (RPOs) to become prone to Research Security (RS) risks. Despite its recent conceptualisation, RS has been swiftly recognised as a critical issue globally, highlighting the need to quickly adopt policy actions. To this direction, the CHANGER consortium recommends policy actions particularly relevant to the European context. Policy actions are informed by the accumulated experience generated through established research ethics and integrity frameworks, in order to build resilience to RS risks, while ensuring freedom and openness of research. Adaptions to existing training programmes on research ethics and integrity programmes in order to embed RS considerations in the research culture, as well as the cultivation of professional expertise and capacity building in RS, are among these policy recommendations. Leveraging experience and insights from research ethics and integrity infrastructure offers valuable opportunities to raise awareness and establish procedures for safeguarding RS. The proposed policy actions offer flexibility to meet specific research needs of each HEI and RPO, and are proportionate to related risks rising from each research project. They foster capacity-building for researchers and cultivate a culture of awareness, shared responsibility and proactive responsiveness, facilitating the responsible internationalisation of research.

Keywords

research security knowledge security foreign interference policy research ethics research integrity

Problem identification

International, interdisciplinary and open research has been promoted for decades by research funding organisations, due to its significant value in accelerating scientific knowledge and global innovation. However, the landscape of international research is changing due to rising geopolitical tensions, foreign interference and the use of influential technological advancements for strategic, geopolitical, or economic objectives (European Commission JOIN 20, 2023). In support of this, the European Commission (EC) has identified Artificial Intelligence technologies, Quantum technologies and Biotechnologies as 3 out of 4 critical technology areas with the highest likelihood of presenting the most sensitive and immediate risk related to technology security and technology leakage (European Commission C 6689, 2023). These three technologies are extensive and intensive areas of funded research in Higher Education Institutions (HEIs) and Research Performing Organisations (RPOs) at a global scale, with research aiming to provide insights on pressing needs and challenges that beset the society. Hence, funding organisations, HEIs and RPOs become prone to Research Security (RS) risks that threaten national security, the ethical conduct of research and fundamental human rights. Several cases of research projects and international collaborations, which generated a lot of public attention, have exemplified this vulnerability of higher education (Lewis, 2020) and scientific research (Snetselaar, 2023) to RS risks.

With this manuscript the CHANGER consortium (CHANGER Project, 2024) aims to identify challenges raised by RS, discuss policy implications and recommend policy actions aiming to build resilience to RS threats.

The concept of research security and what is at stake

RS is a relatively recent concept with no clear consensus on its definition. Although a conceptual analysis of RS is beyond the scope of this manuscript, Table 1 presents indicative examples that highlight the uniform underlying concept across definitions, but also the variation in the terms used and their particular aspects.

Table 1.

Indicative terms related to RS across countries and organisations.

Definition	Reference
Research security is defined as “the anticipation and management of three types of risks: (a) the undesirable transfer of critical knowledge and technology that may affect the EU’s security (e.g. if channelled to military or intelligence purposes in third countries; (b) malign influence on research where research can be instrumentalised by or from third countries in order to inter alia create disinformation or incite self-censorship among students and researchers infringing academic freedom and research integrity; (c) ethical or integrity violations, where knowledge and technologies are used to suppress, infringe on or undermine fundamental values and rights”	Council of the EU C/3510 (2024)
Research security is defined as “safeguarding the research enterprise against the misappropriation of research and development to the detriment of national or economic security, related violations of research integrity, and foreign government interference”	National Science and Technology Council (2022)
“Trusted Research supports the integrity of the system of international research collaboration. Trusted Research: • Outlines the potential risks to UK research and innovation. • Helps researchers, UK universities and industry partners to have confidence in international collaboration and make informed decisions around those potential risks. • Explains how to protect research and staff from potential theft, misuse or exploitation”	National Protective Security Authority (2023)
“Knowledge security is first and foremost about preventing the undesirable transfer of sensitive knowledge and technology. Transfer is undesirable if it compromises our country’s national security. Knowledge security also entails the covert influencing of education and research by other states. Such interference places academic freedom and social safety in jeopardy. Finally, knowledge security involves ethical issues that can be at play in collaboration with countries that do not respect fundamental rights.”	Government of the Netherlands (2025)
Lack of a clear definition of research security. “Foreign interference occurs when activities are carried out by, or on behalf of a foreign actor, which are coercive, clandestine, deceptive or corrupting and are contrary to Australia’s sovereignty, values and national interests.”	Australian Research Council (2025)
“Knowledge security entails mitigating the risks of espionage, unwanted knowledge transfers, intellectual property theft, data leakage and the misuse of dual-use technology (technology that is primarily “focused on commercial markets but may also have defence and security applications”).”	Snetselaar et al. (2022)

These definitions overlay -to a certain extent- with established concepts in research, such as dual use, misuse, data protection, intellectual property, ethical conduct of research and research integrity, causing further variations in the interpretation of what RS is. In addition, some definitions adopt a narrow perspective, focusing primarily on risks related to misappropriation, espionage, intellectual property theft, and dual-use technology. Herein, the definition given by the Council of the European Union (EU) has been adopted (Council of the EU C/3510, 2024), because it not only addresses the risks of foreign interference, knowledge and technology transfer but also explicitly foregrounds violations of ethics, integrity and fundamental rights.

Why does RS demand policy attention? On one side, inadequate safeguards may expose research to malign influences, misuse, and applications that threaten security, violate human rights, or undermine ethical standards. On the other side, openness and international collaboration that drive scientific progress and innovation must be preserved. The challenge lies in striking a careful balance between protecting research from foreign interference and maintaining collaboration, which essential for a vibrant and globally connected research ecosystem.

Methodology

The study employed a two-stage qualitative methodology combining an integrative review of the literature with expert consultation. Existing RS initiatives were initially identified from the scientific and grey literature through a non-systematic, integrative review, aiming to assess, critique and synthesise the literature on RS as an emerging topic (Snyder, 2019; Torraco, 2005). An integrative review was chosen because the aim of the manuscript was not to cover all articles ever published on the topic but rather to identify and combine information-rich documents to generate new policy recommendations.

Articles and reviews written in English were identified through a search in the Scopus bibliographical database in December 2024. The Scopus search used the keywords [TITLE] “research security” OR “knowledge security” OR “foreign interference AND research” OR “trusted research”. Exclusion criteria were “food security,” “cybersecurity,” “data security,” “network security,” “energy security,” “water security”. Titles were initially screened for 1574 articles, which were identified by the Scopus search. After screening, 11 full papers were downloaded for review and analysis, 6 of which were informative for the topic of RS (Supplemental Table S1).

The grey literature included searches on information produced on all levels of government, academia, business and industry in electronic and print formats not controlled by commercial publishing (Third International Conference on Grey Literature, 1997). Search queries were conducted using the keywords “research security,” “knowledge security,” “foreign interference,” “trusted research,” “international cooperation,” “international collaboration,” AND “guidelines,” “recommendation,” “statement,” “position paper,” “regulation,” “legislation,” “declaration,” “policy.” Titles and, subsequently, executive summaries were screened for relevance. The screening resulted in 54 information-rich documents, which were critically analysed (see next Section Existing Initiatives Tables 2–3 and, Supplemental Table S2).

Table 2.

An overview of existing initiatives relevant to research security at the international level, in chronological order.

Date, Institution	Initiative	Recommendations
06/2022 and 05/2023, G7	Paper by the G7 on Common Values and Principles on RS and Research Integrity (2022). Best Practices for Secure and Open Research (2023) by the G7 Working Group on the Security and Integrity of the Global Research Ecosystem (G7 SIGRE WG), setting the G7 common values and best practices of research integrity and RS: (i) to establish resources to promote awareness and forums for dialogue and information sharing on RS and integrity across all research stakeholders, (ii) to Identify areas of risk activity by conducting due diligence and ensuring transparency and the disclosure of relevant information, and, (iii) to implement risk mitigation measures, both as standard organizational practice and for individual research projects.	1. Establish resources to promote awareness and forums for dialogue and information sharing on research security and integrity across all research stakeholders. 2. Identify and share information on which research areas are at risk 3. Identify areas of risk activity by conducting due diligence and ensuring transparency and the disclosure of relevant information 4. Implement risk mitigation measures, both as standard organizational practice and for individual research projects.
06/2022, OECD	Report on Integrity and Security in the Global Research Ecosystem by the Organisation for Economic Co-ordination and Development (OECD), which identifies security risks arising from the internationalisation of research and analyzes good practices to safeguard national and economic security whilst protecting freedom of enquiry, promoting international research cooperation, and ensuring openness and non-discrimination. The report stresses that RS calls for the adoption of various measures (e.g. legislation, awareness raising activity, capacity building) and multilevel coordination.	1. Underscore the importance of freedom of scientific research and international collaboration as a key element of the global research ecosystem 2. Integrate research security considerations into national and institutional frameworks for research integrity 3. Promote a proportionate and systematic approach to risk management in research 4. Promote openness and transparency in relation to conflicts of interest or commitment 5. Develop clear guidelines, streamline procedures, and limit unnecessary bureaucracy 6. Work across sectors and institutions to develop more integrated and effective policy 7. Enhance international information exchange on research integrity and security

RS: research security.

Table 3.

An overview of existing initiatives relevant to research security at the European level, in chronological order.

Date, Institution	Initiatives relevant to Research Security at the European level
18/05/2018, EC	Communication COM/2021/252 on the Global Approach to R&I Europe’s strategy for international cooperation in a changing world, stating the intention to pursue reciprocal openness in R&I and provide for an investment strategy based on a differentiated approach, to ensure an international playing field that is as open as possible and as closed as necessary.
19/03/2019, EU	Regulation (EU) 2019/452 on establishing a framework for the screening of foreign direct investments into the Union, which lays down rules to check such investment on the grounds of security and public order.
20/05/2021, EU	Regulation (EU) 2021/821 setting up a Union regime for the control of exports, brokering, technical assistance, transit and transfer of dual-use items designed to avoid unlawful dissemination of EU knowledge, technology, and know-how that qualify as dual-use items or associated technical assistance.
28/04/2021, EU	Regulation (EU) 2021/695 laying down the rules for participating in the EU’s funding programme for R&I Horizon Europe, including all entities regardless of their jurisdiction, including also new obligations intended to safeguard research security through reciprocity.
19/09/2021, EC	Recommendation (EU) 2021/1700 on internal compliance programmes for controls of research involving dual-use items under Regulation (EU) 2021/821 for the control of exports, brokering, technical assistance, transit and transfer of dual-use items, which provides MS and exporters, including research organisations and researchers, guidance to fulfil their obligations.
17/01/2022, EC	Staff Working Document on tackling foreign interference adopted by the EC. It is intended as a toolkit of measures developed by the EC and MS to mitigate foreign interference in research and innovation, it outlines best practices to support EU HEIs and RPOs in safeguarding their fundamental values, including academic freedom, integrity and institutional autonomy, as well as to protect their staff, students, research findings and assets.
08/03/2022, EU	Marseille Declaration on International Cooperation in Research and Innovation (R&I), in which EU ministers for higher education, research, and innovation agree to promote and protect freedom of scientific research and academic freedom in international research, innovation, and higher education collaboration while taking measures to counter and manage security risks inherent to international cooperation.
09/03/2022, European Parliament	Resolution P9_TA(2022)0064 on foreign interference in all democratic processes in the EU, including disinformation, in which the Parliament recognized that foreign interference constitutes a serious violation of the universal values and principles on which the Union is founded and the need for a coordinated strategy against foreign interference.
06/04/2022, European Parliament	Resolution P9_TA(2022)0112 on a global approach to R&I: Europe’s strategy for international cooperation in a changing world, in which the Parliament supported the principle of enabling reciprocal access to research programmes, open science and intellectual property protection while requiring partners to respect and match European standards for the protection of intellectual property, welcoming the EC’s toolkit on Tackling Foreign Interference.
10/06/2022, Council of Europe	Council’s Conclusions on principles and values for international cooperation in R&I, setting out the values and principles which must guide international cooperation in research and innovation and recommends mitigation measures to avoid foreign interference and manage the risks inherent in international R&I cooperation, including safeguards of intellectual and industrial property rights, and personal data.
02/12/2022, Council of Europe	Council’s Conclusions on research infrastructure, in which the EC was invited to present a revised European Charter for Access to Research Infrastructures by the end of 2023 in view of the evolving European RI ecosystem and landscape of RI facilities, which accommodate their user strategies and access policies for operations under various business models, serve users in the physical, remote and virtual access modes via secure connectivity.
01/03/2023, EC	Commission Recommendation (EU) 2023/499 on a Code of Practice on the management of intellectual assets for knowledge valorisation in the ERA, recommending strategic intellectual assets management practices to enable open science, open innovation and training for universities and other public research organisations on intellectual assets management, including in joint R&I activities.
09/05/2023, European Parliament	Parliament’s resolution C/2023/1059 (P9_TA(2023)0131) on critical technologies for security and defence: state of play and future challenges highlighted the growing relevance of research security, in which the Parliament called the EC to better connect EU civil, defence and security programmes and instruments with the relevant stakeholders, in particular in the field of innovation, making clear that RS is expected to become more central to EU R&I programming and implementation.
23/05/2023, Council of Europe	The Presidency Note for the exchange of views on knowledge security and responsible internationalization, acknowledges that threats from foreign states and non-state actors can lead to unwanted knowledge transfer and interference in R&I activities, that security risks threaten to seriously damage the international research ecosystem, stressing the need to ensure complementarity between openness and security with respect to ethics, fundamental rights and academic freedom.
20/06/2023, EU	Joint communication JOIN(2023) 20 by the European Parliament, European Council, Council on “European Economic Security Strategy” on setting the priorities of an EU Economic Security Strategy by promoting our own competitiveness, protecting ourselves from economic security risks, and partnering with the broadest possible range of countries who share our concerns or interests on economic security.
12/12/2023, EC	Proposal for a Directive on establishing harmonised requirements in the internal market on transparency of interest representation carried out on behalf of third countries, recognizing the opportunity for third-country actors to evade transparency requirements and covertly influence decision-making and democratic processes in the Union and the need for new rules to address foreign influence, including by imposing general obligations on entities receiving foreign funding that would in practice apply to the provision of interest representation on behalf of third countries.
2023–2024, EC	Mutual Learning Exercises on Knowledge Valorisation – Focus on Skills, Intersectoral Cooperation and Incentive Systems with the participation of 12 MS, including an exercise on identifying foreign interference threats and mitigation measures.
17/01/2024, European Parliament	Resolution P9_TA(2024)0022 on promotion of the freedom of scientific research in the EU, presenting views on how to balance the safeguard of RS with the freedom of scientific research, and requests the EC to submit a proposal for an act on the freedom of scientific research including security-associated restrictions.
21/01/2024, EC	Proposal for a Council Recommendation (COM/2024/26) on enhancing RS, adopted on 14 May 2024 (See Council Recommendation 9097/1/24).
24/01/2024, EC	White paper on options for enhancing support for research and development involving technologies with dual-use potential, which launches a broad public consultation of MS, the European Parliament, stakeholders and civil society, and reviews the current relevant EU funding programmes and assesses whether this support is still adequate and strategic in the face of existing and emerging geopolitical challenges outlined in the European Economic Security Strategy, suggesting options for the future. The received input will contribute to the preparation of the next Framework Programme for R&I.
14/05/2024, Council of Europe	Council Recommendation (9097/1/24) on enhancing RS, in which RS is defined based on the risks that need to be avoided and managed. The recommendation invites MS and the EC to take into account specific principles for responsible internationalisation when designing and implementing policy actions to enhance RS, and MS to develop and implement a coherent set of policy actions to enhance RS, while engaging in dialogue with the R&I sector with a view to defining responsibilities and roles and developing a national approach. MS are expected to prepare an action plan to implement it.

RS: research security; EU: European Union; EC: European Commission; R&I: research & innovation; MS: member states.

Table 4.

An overview of the Council Recommendation on enhancing research security (Council of the EU C/3510, 2024).

Stakeholders	Recommendations on enhancing Research Security
MS	Collaboration (national-international level): 1. Dialogue with the R&I sector 2. A national approach (guidelines, measures, other initiatives) 3. Information exchange (between RPOs & RFOs) 4. Engage with the private sector (research-intensive start-ups, spin offs, SMEs) 5. Cross-sectoral cooperation (within government) 6. Application of the recommendation’s measures to international cooperation activities (related to researchers’ mobility) 7. International cooperation (involving critical knowledge & technology) Policy actions/support measures: 8. Policy actions to foster RS 9. A support structure/service to deal with risks of international cooperation 10. Compliance with the applicable Union export control rules for dual-use items, national measures on intangible technology transfer, implementation/ enforcement of restrictive measures Instruments: 11. Evidence base for RS policymaking (threat landscape analysis) 12. Resilience testing and incident simulations (considering support of the EC) 13. Proactively contribute to the Union’s one-stop-shop platform on tackling research and innovation foreign interference (sharing tools, resources)
RFOs	Risk-appraisal, safeguarding measures, assurance for high -risk projects: 1. RS as an integral part of the application process to identify up-front potential risks and threats 2. A risk-appraisal for research projects that raise concerns proportionate to their risk profile 3. Consider risks related to international cooperation (research partnership agreements), include key framework conditions (e.g. values, fundamental rights) 4. Relevant Union funding programmes to be considered when applying safeguarding measures in national funding programmes 5. Applicants seek assurance from prospective partners for high-risk profile projects
RPOs	Collaboration: 1. Information exchange, peer learning, development of tools and guidelines, incident reporting among peers Risk-appraisal/management: 2. Internal risk management procedures (risk appraisal, due diligence on prospective partners etc.) 3. Consider possible risks related to the international cooperation and include key framework conditions 4. Assess risks related to foreign government-sponsored talent programmes (undesirable obligations) Capacity building: 5. Invest in dedicated in-house RS expertise and skills, assign RS responsibility at appropriate levels, invest in cyber hygiene and in a culture in which openness and security are in balance
EC	Coordination/collaboration: 1. Open Method of Coordination, ERA governance structures, support the implementation of this recommendation (awareness, peer learning, capacity building, consistency of policies) 2. Engage with the R&I sector and MS to increase transparency of research funding sources and affiliations of researchers 3. Dialogue and cooperation with international partners (exchange information, experience, best practices) Research supporting infrastructure: 4. A Union one-stop-shop platform (on tackling R&I foreign interference to consolidate data, tools, reports, resources) Policy actions/Support measures: 5. Policy making evidence, MS expertise, a European centre of expertise on RS linking it to the one-stop-shop platform 6. Enhance situational awareness among policymakers (assessing hybrid threats) 7. A resilience testing methodology for RPOs (on a voluntary basis for MS) 8. A biennial flagship event on RS (sharing information and solution-oriented exchanges) 9. Guidance on risk appraisal procedures and on the application of relevant Union legislation

MS: Member States; RFOs: Research Funding Organisations; RPOs: Research Performing Organisations; EC: European Commission; R&I: Research & Innovation; SMEs: Small and Medium Enterprises; ERA: European Research Area.

A critical analysis of the identified literature and a critique of existing policy-papers and legislative framework on RS followed, using a mixed “research agenda” and “alternative conceptual framework” approach (Torraco, 2005) to synthesise new knowledge and perspectives on the topic of RS. For the critical analysis and synthesis, the interdisciplinary CHANGER project consortium was convened. CHANGER is a 3-year EU-funded project (January 2024 to December 2026), aiming to identify challenges in ethics reviews in a changing research environment, particularly in light of emerging technologies and transdisciplinary research and develop new methodologies, training materials, guidelines and policy changes to embed ethics-by-design in research (CHANGER project). The project promotes capacity building and reflexivity in both the ethics expert and researchers’ community. The consortium is consisted of ethics experts, research integrity experts, members of ethics committees, law and human rights experts, some of whom are also involved in policy advising. Consortium members were well-versed in established concepts in research, such as dual use, misuse, data protection, intellectual property, ethical conduct of research, research integrity and human rights protection, which often overlay with the concept of RS. In a series of online and in-person meetings conducted between January to May 2025, we drew on collective expertise and knowledge from the interdisciplinary CHANGER consortium to facilitate deliberative discussion, employing iterative feedback and consensus building on policy recommendations to address the challenges identified by the literature analysis.

Existing initiatives

Despite its recent conceptualisation, RS has been swiftly recognised as a critical issue at a global scale, as evidenced by relevant policy-related initiatives at multiple levels (Tables 2, 3 and 6 and, Supplemental Table S2). Nevertheless, the academic literature on the subject remains notably sparse, as indicated by the Scopus search which revealed only a limited number of scholarly publications explicitly engaging with RS (Supplemental Table S1). This underscores a significant gap between policy discourse and academic inquiry.

At the international level, the Organisation for Economic Co-operation and Development (OECD) has produced an extensive report on good practices to safeguard national and economic security while protecting international research, and the G7 Working Group on the Security and Integrity of the Global Research Ecosystem has published best practices for secure and open research (Table 2).

At the European level there are numerous initiatives including communications, recommendations, but also regulations, such as export control and screening of foreign direct investments into the EU, some of which are not specific but relate to RS (Table 3). Among these initiatives reflecting complementary approaches to RS, particular attention should be drawn to the Council Recommendation on Enhancing Research Security (Council of the EU C/3510, 2024), formulating a comprehensive list of actions on enhancing research security (Table 4), and the Toolkit on Tackling R&I Foreign Interference (European Commission, 2022; Table 5), because these policy instruments specifically address the issues of foreign interference and RS and offer mitigation strategies aimed at multiple stakeholder groups. Among the mitigation measures to tackle foreign interference, the EC Toolkit suggests the establishment of a foreign interference Committee integrated with existing institutional structure, responsible for awareness raising, monitoring of risks, management of research data and intellectual assets and providing advice and support to research groups (Table 5).

Table 5.

An overview of the mitigation measures described in the EC Toolkit on Tackling R&I Foreign Interference (European Commission, 2022).

Area	Mitigation measures for tackling R&I foreign interference
Values	1. Identify countries and partner institutions where academic freedom is at risk. 2. Conduct a vulnerability assessment to understand external pressures on academic freedom and integrity in your institution. 3. Strengthen commitment to academic freedom and integrity at institutional and individual levels. 4. Continue to cooperate with partners in repressive settings.
Governance	1. Publish a Code of Conduct for Foreign Interference. 2. Establish a Foreign Interference Committee.
Partnerships	1. Develop general prerequisites for the implementation of a risk management system. 2. Establish a sound procedure for developing robust partnership agreements.
Cybersecurity	1. Raise awareness of cybersecurity risks. 2. Detect and prevent cybersecurity attacks from foreign interference actors. 3. Respond to and recover from cybersecurity attacks from foreign interference.

Although non-binding, the Marseille Declaration on International Cooperation in Research and Innovation, is equally important because it sets the pace for a common strategy in the EU, according to which EU ministers for higher education, research, and innovation agree to promote and protect freedom of scientific research and academic freedom in international research, innovation, and higher education collaboration, while taking measures to counter and manage security risks inherent to international cooperation (Table 3).

The number of existing policy-oriented initiatives highlights that RS is being recognised as an urgent issue, which needs to be handled at different levels in a complementary way. But it also highlights a difference in the pace of development, adoption and implementation of frameworks between continents but also between European countries (Table 6). By now, a relevant legislative framework on national security strategy for government-supported research is already in place in the UK, and USA; France has a Decree on Protecting the Nation’s Scientific and Technical capabilities; the Netherlands have set up a National Contact Point for Knowledge Security; Germany has established a Competence Centre for international academic cooperation, with other countries in Europe lagging behind in setting up framework components for RS.

Table 6.

An overview of existing initiatives relevant to research security at the national level, in chronological order.

Date, Institution	Initiatives Existing initiatives relevant to Research Security at the national level
2013, UK	The Academic Technology Approval Scheme (ATAS) applies to all international students and researchers who are subject to UK immigration control and are intending to study or research at postgraduate level in certain sensitive subjects and research areas, where knowledge could be used in programmes to develop Advanced Conventional Military Technology, weapons of mass destruction or their means of delivery. Researchers and students in these sensitive subjects must apply for an Academic Technology Approval Scheme (ATAS) certificate before they can study or start research in the UK.
2018, USA	An initiative by the US Department of Justice, focused on specific threats to national security, including educating colleges and universities about potential threats to academic freedom and open discourse from influence efforts on campus.
2019, Germany	Competence Centre for International Academic Cooperation by the German Academic Exchange, providing guidance to German higher education and academic institutions to carry out international cooperation activities while ensuring RS and research integrity.
2019, Australia	Establishment of the University Foreign Interference Taskforce (UFIT) by the Australian Minister for Education, which brings together the university sector and Australian Government agencies to collaboratively support and build an environment of trust and resilience, and to guide a university’s decision-making based on proportionate risks.
2020, New Zealand	Guidance for Institutions and Researchers on Trusted Research issued by the government, to promote risk identification and measures for research protection.
2021, France	A Decree on Protecting the Nation’s Scientific and Technical capabilities by the government to protect the most “sensitive” knowledge, expertise and technologies of public and private establishments (research laboratories, companies, etc.) located on national territory that could harm the economic interests of the nation, strengthen foreign military arsenals or weaken French defence capabilities, contribute to the proliferation of weapons of mass destruction and their delivery systems, and be used for terrorist purposes on national territory or abroad. It introduces a label for sensitive scientific infrastructure, both private and public, designated as “restricted regime zones”.
2021, UK	Trusted Research and Innovation (TR&I) work programme established by the UK Research and Innovation (UKRI), in response to the increasing need across the sector to help manage and provide guidance and support in ensuring collaborative activities are done safely and securely and minimise the risks associated with operating within a global research and innovation ecosystem while maximising the opportunities. The UK National Security and Investment Act (2021) provides the government with powers to scrutinise and intervene in business transactions (including by higher education and research organisations) in 17 key areas of the economy, to protect national security. Any R&I activities that UKRI funds within these areas will be subject to enhanced due diligence processes to ensure that risks associated with trusted R&I are effectively identified and proportionately mitigated against. Guidance on Trusted Research for Academia and on Trusted Research for Industry issued by the National Protective Security Authority (NPSA), to help stakeholders to identify risks, and protect research. Guidance on Secure Innovation: guidance for emerging technology sector, issued by the NPSA, to help protect UK companies’ technology, reputation, and future success.
	A Research Collaboration Advice Team (RCAT) established by the Government to offer researchers advice on how to protect their work from hostile activity, to ensure international collaboration is done safely and securely and promote government advice on security-related topics, such as export controls, cyber security and protection of intellectual property.
2021, USA	Presidential Memorandum on Supported Research and Development National Security Policy (NSPM-33) issued by the government, to strengthen protections of US Government-supported research and development against foreign interference and exploitation, and strengthen cooperation between law enforcement agencies and funding agencies.Guidance by the government for Implementing National Security Presidential Memorandum 33 (NSPM-33) on National Security Strategy for US Government-supported Research and Development, including guidance on disclosure policy, oversight and enforcement and, RS programmes.The Subcommittee on RS and the Joint Committee on the Research Environment of the National Science & Technology Council issued Recommended Practices for Strengthening the Security and Integrity of America’s Science and Technology Research Enterprise for research organisations to protect security and integrity, which include organisational policies and training to researchers on responsible conduct of research.
2021, Australia	Guidelines to Counter Foreign Interference in the Australian University Sector, issued by the University Foreign Interference Taskforce (UFIT) to help manage and engage with risk to deepen resilience against foreign interference in the university sector, to build on risk management policies and security practices already implemented and, assist decision makers to assess the risks from foreign interference. Guidelines include knowledge sharing, due diligence, risk assessment, risk management, and, cybersecurity.
2022, Netherlands	A National Contact Point for Knowledge Security by different Dutch ministries, which offers help to anyone connected to a knowledge institution with questions about opportunities, risks and practical matters concerning international cooperation.National knowledge security guidelines presenting values, risk assessment and management for knowledge security intended to be used to build security awareness and resilience against knowledge security risks faced by Dutch universities, research institutes and universities of applied sciences.
2023, USA	The Chips and Science Act (H.R.4346) (Sec. 10114) according to which the Department of Energy shall develop and maintain tools and processes to manage and mitigate RS risks, such as a science and technology risk matrix, informed by threats identified by the Office of Intelligence and Counterintelligence, to facilitate determinations of the risk of loss of US intellectual property or threat to the national security of the US.A Congressional Research Service Report highlighting federal and legislative efforts to develop a comprehensive research security strategy, and charging the Office of Science and Technology Policy (OSTP) with a leading role in ensuring that policies and requirements related to RS practices are developed and implemented consistently across the federal government.
2023, Canada	National Security Guidelines for Research Partnerships issued by the Ministry of Innovation, Science and Economic Canada, that integrate national security considerations into the development, evaluation, and funding of research partnerships to help safeguard Canada’s research ecosystem from foreign interference, espionage, and unwanted knowledge transfer. Individual researchers are requested to assess the potential national security risks of international collaborative projects. Researchers must complete a risk assessment form when submitting applications for funding.

RS: research security.

Differences in national policies are also evidenced by the available academic literature. Pinna investigated how the EU “narrative” of knowledge and research security has been materialised at the national level in Hungary, Italy and the Netherlands, in relation to their collaboration with Chinese counterparts. The Netherlands has been proactive and created national guidelines for RS, Italy has adopted more cautious approaches, whereas Hungary lags behind (Pinna, 2025). This highlights that at the EU Member State level, the pace and depth of implementation vary significantly, with countries following different approaches to balance between benefitting from international research collaborations and safeguarding their academic sectors from potential security risks (Pinna, 2025). Although a country’s approach for RS is mainly related to its economic interests, the formulation and implementation of knowledge security policies in some countries has been catalysed by specific events. The proactive RS policy in the Netherlands was partially propelled by cases of research projects with China collaborators that generated a lot of public attention (Snetselaar, 2023). In the case of Canada, a case of visa refusal for a Chinese national, due to his apprehended risk of engaging in espionage, partially drove RS discussions in the country (Walker-Munro, 2024). Despite a close case of visa refusal in Australia, where a PhD student was deemed “a person whose presence in Australia may be directly or indirectly associated with the proliferation of weapons of mass destruction,” Australia has focused on foreign interference rather than RS, by setting guidelines for its universities (Smith and Walsh, 2023), which have been criticised (Lewis, 2020).

National funding agencies can also provide directions for managing responsible internationalisation of research and RS considerations, because they are tasked by their governments to consider national interests as well as global challenges (Shih, 2024). Finally, the need to address RS considerations has been acknowledged by numerous Associations, Societies, and Academies, that have published position statements stressing mainly the importance of maintaining institutional autonomy and academic freedom (Supplemental Table S2).

Challenges

The implementation of RS presents a broad array of challenges for HEIs, RPOs and the research community at large. This manuscript focuses specifically on a subset of these challenges, those identified as foundational and most urgent to address, based on their critical intersections with established principles and practices of research ethics and research integrity. These challenges were deliberately selected because they represent essential entry points for policy development.

Research security understanding varies between members of the research ecosystem

RS remains a relatively nascent concept, and thus, members of the research ecosystem (e.g. researchers, academics, industry actors, funding bodies and policymakers) acting at diverse levels do not necessarily have a common, precise and clear understanding of what RS is, the risks involved and their implications. Even among members of the research ethics and research integrity community, who acknowledge values and principles that need to be respected and are familiar with good research practices, the concept of RS may have diverse interpretations, with several questions requiring clarifications, such as: a) Does RS apply to communities within physical borders (e.g. a nation or the EU) or those within social borders (e.g. ethnicity) or both? Could protecting from foreign interference overly focus on the former at the expense of the latter? b) At which level should RS risks be assessed and managed, e.g. at the researcher-, project- or community-level and which level policy should be focused on? c) Are risks external e.g. utilisation of research findings by third parties for their own malign purposes, and/or internal e.g. improper leakage of findings by researchers themselves? d) How does RS differ between research and innovation in the public and private sector? e) Most importantly, do existing ethics and integrity infrastructures, as well as existing legislation on data protection, intellectual property, cybersecurity, dual use and misuse suffice to tackle RS risks?

Different terminologies related to RS have been used in various guidance and regulatory documents by countries and organisations (Tables 1 –3 and 6): Foreign interference; Security-relevant research; Risks related to international R&I cooperation; Knowledge security; Responsible internationalisation of research; Trusted research; Secure innovation. Such diversity in terms can cause further ambiguity and misinterpretation of what RS is, can hinder the establishment of a unified framework for discussion and/or action and, result in inconsistencies in the implementation of RS measures by various stakeholders, complicating alignment efforts across nations, regions, organisations or sectors. At the same time, the concept of RS is not static, and requires to be versatile enough to respond to the changing research environment, the emerging technologies and the increasing geopolitical tensions. These highlight a critical gap in coherence and, therefore, the need for conceptual clarity.

Balancing institutional autonomy with research security considerations

In order to address and mitigate RS risks, institutions will need to adapt existing policies or develop new ones. This may inadvertently impose significant administrative burden and delays for institutions and, subsequently, for researchers. Such burden could be disproportionate to the scale or nature of research conducted within certain HEIs and RPOs, potentially hindering international collaboration, institutional autonomy and academic freedom. Paradoxically, delays and complex procedures to prevent and manage RS risks may result in reduced vigilance and oversight during research implementation. Indeed, lessons from the ethical oversight of research teach us the importance of maintaining a balance between procedural shortcomings and maintenance of the highest ethical standards in research (Ng et al., 2015). Accordingly, any policies and procedures for RS which will be implemented at the national or institutional level, need to provide sufficient flexibility to HEIs and RPOs, as well as autonomy to tailor their procedures to context-specific research, by leveraging existing infrastructures, rather than imposing uniform requirements horizontally that may exacerbate compliance and procedural challenges.

Lack of research security expertise

Most HEIs and RPOs are currently in the early steps of engaging with the complex and evolving landscape of RS. As they begin to develop institutional strategies to address RS considerations, these organisations face significant uncertainty. At present, there is limited institutional experience to draw upon, and a notable scarcity of expertise in RS capable of offering informed guidance and practical support. This lack of a well-established knowledge base and expert community hampers the ability of HEIs, RPOs and individual researchers to proactively identify and manage potential risks. Drawing from experience in research ethics, the role of ethics experts, either as members of institutional Research Ethics Committees (RECs), Framework Programme ethics appraisal scheme experts, Ethics Advisors or Mentors in research projects (European Commission, 2023), have highlighted the value of having a critical mass of specialised professionals that provide advice and recommendations to researchers, which can be used as a lesson.

Lack of capacities and tools

At present, there is a remarkable absence of established models or best practices to systematically and effectively integrate RS considerations into the research lifecycle. Researchers across disciplines lack necessary capacities and institutional support to adequately identify, assess, and mitigate RS-related risks. This capacity gap is further intensified by the unavailability of practical, fit-for-purpose tools for RS risk assessment and management, limiting researchers in addressing the complex RS challenges. The current situation underscores a critical need to actively involve researchers to take RS considerations in the research design with the support from context-specific tools.

Knowledge from the ethics review process, could be helpful for RS in this case. RECs alone cannot ensure the ethical conduct of research in the changing research environment, unless ethical reflections are introduced upstream (i.e. well before finalising the research design and/or applying for approval to RECs). This presupposes that researchers are actively involved in the ethical design of their own activities.

Policy recommendations

Building upon the guidance provided across various levels (Tables 2 –4 and 6), a coherent set of policy recommendations is presented herein, aiming to strengthen efforts to tackle RS risks in the short and medium term. In this context, “short term” refers to actions that could be implemented within a period of 2 years, and “medium term” refers to actions that could be implemented within a period of 4 years.

Policy recommendations for RS were developed with full consideration of Europe’s long-term strategic vision, which underscores the fundamental importance of maintaining integrity, openness and ethics in research. In the European setting, research ethics and integrity infrastructures are composed of diverse yet complementary elements, all working in synergy to ensure responsible and ethical research and innovation: principles, values, codes of conduct, educational programmes, administrative procedures, management mechanisms and coordination structures, as well as relevant policies and legislation at various levels. Although adaptations are necessary to some of the elements of research ethics infrastructures and ethics review process (CHANGER project, 2024), ethics has long been an important factor influencing the “epistemic identity” of the EU inducing policies in science and technology (European Commission, 2007), while ethical principles have been fundamental in cultivating research integrity and an ethical mindset within the European research community (All European Academies (ALLEA), 2023). The notion of RS is very much different from research ethics and research integrity. Research ethics can be defined as the moral principles that guide researchers carry out their work and take judgements about the ethical permissibility, or acceptability of research, whereas research integrity can be understood to connote a commitment to live in accordance with a certain set of rules or principles to govern one’s conduct (Kolstoe and Pugh, 2024).

Herein, it is argued however, that in order to tackle RS, Europe needs to strategically capitalise on existing know-how and infrastructures, and integrate RS considerations with the existing research culture of ethical conduct of research and research integrity – with the necessary support. Nevertheless, this argument should not be interpreted as advocating the transfer of responsibility for RS risk identification and management to RECs or Research Integrity Boards. These bodies already shoulder the critical and demanding task of providing ethical oversight for research activities -often relying on the voluntary commitment of their members. In their current state of play, RECs and Research Integrity Boards do not possess the necessary capacities, resources or systemic support at either the organisational or national level to assume such an expanded mandate in the domain of RS. We rather argue that accumulated expertise and operational experience embedded in research ethics and integrity provide a valuable foundation for enhancing RS. This expertise can be leveraged either by strengthening existing practices and building capacities in established structures (such as RECs and Research Integrity Bodies) which, of course, demands support and resources, or by developing new structures designed to support specifically RS objectives, such as a foreign security Committee as proposed by the Staff Working Document of the EC (European Commission, 2022).

On one hand, research ethics and integrity are both based on fundamental values and principles (ALLEA, 2023; UNESCO, 2005). Research ethics relies on a balance between promoting scientific advancements and innovation with risks for research participants and their rights, societal benefit, respect of animals and the environment, as well as anticipating and mitigating potential harms that emerging technologies might pose. On the other hand, RS concerns responsible research and ethical behaviour aiming to safeguard democratic values and ensure that research is protected from malevolent interference and utilised for the benefit of society (Figure 1). RS seeks to ensure that collaborative research and open science co-exist in equipoise with security considerations. Finally, research ethics operate through joint actions and collective engagement of diverse members of the research ecosystem, without which the balance of scientific progress and protection of human rights would be unattainable. Likewise, addressing RS risks requires cooperation of all involved parties. Therefore, the long-standing infrastructures of ethics and integrity (European Network of Research Integrity Offices (ENRIO), 2025) offer a valuable model of how RS could be coordinated and addressed at different levels. Research ethics, research integrity and research security all require researchers to demonstrate responsibility and responsiveness to emerging challenges, while institutions are expected to provide support mechanisms for the assessment of research practices and the implementation of risk management procedures.

Figure 1.

Empirical similarities and distinctions among research ethics, research integrity and research security.

This approach is aligned with the relevant policies at the European level and particularly the Staff Working Document on tackling foreign interference (Table 5), the Marseille Declaration on International Cooperation in Research and Innovation (Table 3), and the Council Recommendation (C/3510, 2024) on enhancing RS (Table 4), in which it is evident that RS considerations should be integrated in the EU’s research culture. In contrast, the USA model has evolved towards a compliance-oriented framework driven by national security rules, such as the Chips and Science Act and the Presidential Memorandum on Supported Research and Development National Security Policy (NSPM-33; Table 6). These measures are primarily aimed at mitigating risks related to intellectual property theft, espionage and foreign influence, particularly in sensitive technological fields and rely on restrictive controls and enforcement mechanisms that prioritise security and geopolitical protection over openness. Europe’s RS approach integrates ethical reflection, proportionality and trust-building as central elements of policy. Rather than imposing restrictions, EC initiatives seek to balance openness with responsibility.

Insights from the CHANGER project offered additional basis for the critical analysis and synthesis of policy recommendations. Findings highlight the need to build capacities in both the researchers’ community and the ethics expert community, the need for researchers to be supported by ethics experts to promote reflexivity and embed ethics-by-design approached in research, as well as the need for continuous training on the risks arising from emerging technologies for both communities (CHANGER D2.3, 2025).

Reflecting upon the European approach and findings of the CHANGER project, the proposed policy actions in this manuscript focus on awareness-raising, capacity-building and measures that enable the empower the research community to address RS risks, without undermining international collaboration or scientific freedom. RS, research integrity and research ethics are framed as complementary and integral components of responsible research, by cultivating a culture of responsibility rather than through top-down control.

Establish a common understanding and shared responsibility

A common understanding of RS should be established by: (a) using clear definitions and articulations of RS, to promote standardised terminology in all relevant documents, (b) developing training material to educate all members of the research ecosystem on the concept of RS and provide clarifications on potential (misapprehended) overlaps with other notions, such as dual use, misuse, intellectual property, data protection, cybersecurity etc. (see also policy recommendation 2) and, (c) creating channels for stakeholders to provide feedback on their interpretations, enabling iterative refinement of the shared understanding, as new insights, technologies or geopolitical tensions may emerge.

Similarly to the ethical conduct of research which is a collective responsibility of all parties involved, RS should be conceived as a shared responsibility, merely because risks cannot be addressed unless all parties of the research and innovation ecosystem take joint actions. In order to promote RS as a shared responsibility it is required to: (a) identify relevant stakeholders in an inclusive manner (HEIs, RPOs and their researchers both from the public and private sector, national and European research funding agencies, policy makers at the national and European level, scientific associations and bodies, intergovernmental organisations), and stakeholders that share not only the same concerns -as an assemblage of actors referred by Snetselaar (2023) - but also the same interests, resulting in alliances among European and non-European actors to design and adopt comprehensive strategies against RS risks; (b) invite all identified actors to a continuous and versatile dialogue, in order to foster communication and support joint actions to effectively tackle the global challenges (Box 1).

Box 1.

Challenge and policy recommendation 1.

The EU is invited to establish a common understanding of RS by leveraging the ERA governance structures and the European Centre of Expertise on Research Security to be established at the Union level and is expected to contribute to the creation of an EU-wide community of practice and a structural dialogue with stakeholder organisations (Council of the EU C/3510, 2024). HEIs and RPOs are also invited to establish a common understanding of RS and promote RS as a shared responsibility at the institutional level, through appropriate training material/programmes at the institutional level (see also Policy Recommendation 2).

Foster institutional autonomy by leveraging existing procedures

In order to tackle RS risks and at the same time avoid resource-intensive and excessive administrational burden, HEIs and RPOs should use procedures and practices already in place at the institutional level. As a first step, existing training programmes on research ethics and research integrity could be utilised and further enriched to include aspects of dual use, export control, misuse, cybersecurity, intellectual property, conflict of interest, and RS aspects, such as responsible internationalisation of research, foreign travel security, insider threat awareness and identification, and due diligence, as well as the importance of protecting academic freedom and values. This is particularly critical for institutions dealing with research in novel and disruptive technologies, where all researchers and staff should receive mandatory training not only on research ethics and integrity but also on RS considerations (Box 2). This approach will allow HEIs and RPOs to adopt context-specific training programmes, which are tailored to their research activities and embed RS considerations in the culture of ethical conduct of research and research integrity. Subsequently, HEIs and RPOs can gradually assess whether the establishment of new practices and/or structures, such as new institutional Committees, are deemed necessary to tackle RS risks.

Box 2.

Challenge and policy recommendation 2.

HEIs and RPOs are invited to adapt existing resources, such as training programmes on research ethics and integrity, in the short term. Additionally, national and European funding organisations are invited to support such educational programmes through funding in the medium term. Some HEIs and RPOs in the USA, Sweden and Norway, already provide courses on research ethics including topics of research integrity, conflict of interest, dual use research, misuse of research (OECD, 2022) but this should be extended particularly to RS considerations in more countries, more HEIs and RPOs. The identification of RS risks and their management should be integrated into the “research culture”, where elements of ethical conduct of research and integrity of researchers are complemented by RS aspects.

Cultivate professional expertise

Developing a robust base of professional expertise in RS is critical in ensuring that national authorities, HEI and RPOs have access to reliable, context-specific advice and guidance. The establishment of a dedicated cohort of RS experts will be instrumental in supporting the implementation of effective and proportionate RS mechanisms. Such expertise can be cultivated through targeted capacity building efforts to bridge current capacity gaps, and should include: (a) up-skilling of professionals currently working in adjacent domains. such as research ethics, research integrity, (cyber)security, critical knowledge in emerging and disrupting areas and legal compliance, and (b) re-skilling of existing members of the research ecosystem, such as research managers and compliance officers (Box 3).

Box 3.

Challenge and policy recommendation 3.

The EU is invited to promote training of experts in the short/medium term, for example through the European Centre of Expertise on Research Security (Council of the EU C/3510, 2024) which will be established and is expected to contribute to the creation of an EU-wide community of practice. This community of practice could be further strengthened by the inclusion of expert RS Advisors who have received appropriate training and have acquired the necessary competences to provide their insights and offer evidence-informed policies to countries, HEIs and RPOs.

Policy Recommendations 2 and 3 align with the Council Recommendation to support HEIs and RPOs to develop training programmes for practitioners and new staff members, as well as curricula aimed at training the next generation of security advisors and policy-makers (Council of the EU C/3510, 2024). We further support this by recommending that existing infrastructures for research ethics and integrity should be utilised to provide such training, and existing programmes should be adapted to include RS aspects and the value of safeguarding academic freedom and values.

Support capacity building

Funding should be provided to explore innovative approaches that build capacities in researchers and their institutions, as well as to develop risk assessment tools for RS. As an example, we propose the novel concept of “research security-by-design,” which is based on the principle of “ethics-by-design” as implemented in the CHANGER project (CHANGER project, 2024). Research security-by-design is based on the idea that RS risks should be identified and mitigated already from the initial phase of the project design (Box 4). Researchers and RS experts should be engaged in reflection and dialogue during research design to effectively minimise RS threats in international, complex research projects. It can include certain “checkpoints” implemented into the project design, such as the research domain/technology involved, a plan of international collaborators and their institutional reputation, potential conflicts of interest and conflicts of commitment, plans of which research aspects should be “as open as possible and as closed as necessary,” potential cybersecurity risks etc. Such a procedure ultimately results in capacity building, because it aims particularly to support researchers who have limited prior exposure to RS aspects, to identify and minimise RS risks in their work. It creates situational awareness for researchers who are called to understand and effectively respond to potential RS risks in their research. It empowers freedom of scientific research and allows for informed choices that will be implemented in the project design. It recognises the need for adaptations to the severity of security risks for different types of research at different institutions and at different research projects, ensuring institutional autonomy. In order to explore “research security-by-design” or other innovative approaches, appropriate funding is necessary to develop RS risk assessment tools to be used by researchers but also by HEIs and RPOs, as well as to develop benchmarking tools for HEIs and RPOs to assess their capacities for risk identification and management (Box 4). This approach can be enhanced if researchers have received previous training on RS (policy recommendation 2), and if RS has been cultivated as a professional expertise for RS advisors who are able to provide their expert insights (policy recommendation 3).

Box 4.

Challenge and policy recommendation 4.

The EU and national funding agencies are invited to embrace this critical policy recommendation, that will support research in RS and provide novel tools to manage RS threats. Such initiatives can be covered by existing EU framework programmes and national funds.

Policy recommendation 4 aligns with the Council Recommendation on enhancing research security, encouraging Member States (MS) to: (a) strengthen the evidence base for research security policymaking, through conducting or commissioning policy-relevant research, among others and (b) proactively contribute to the EU’s one-stop-shop platform on tackling R&I foreign interference by sharing tools and resources developed through public funding with the aim to facilitate their cross-border uptake (Council of the EU C/3510, 2024). The proposed policy recommendation of research security-by-design approaches can be an inherent part of RS risk identification and management procedures, as described in various guidance documents including the Toolkit on Tackling R&I Foreign Interference (European Commission, 2022) the Council Recommendation (Council of the EU C/3510, 2024) and the OECD (OECD, 2022), while fully respecting academic freedom and institutional autonomy. As a starting point, such an approach can be first explored in research involving emerging and disruptive technologies in the three critical technology areas (AI, Quantum technologies and Biotechnologies), as recognised by the EC (European Commission C 6689, 2023).

Figure 2 provides an overview of the identified challenges, the corresponding policy recommendations, the research actor(s) invited to implement the policy actions and the anticipated outcomes (targets achieved).

Figure 2.

Overview of the challenges and policy recommendations for RS.

Why these policy recommendations?

First of all, the proposed policy recommendations are guided by insights from the experiential and empirical knowledge emerging from research ethics and integrity governance systems. Because these systems have been refined over many years of practical application in diverse research contexts, they provide an evidence-based foundation for anticipating risks and managing compliance.

Secondly, the proposed policy actions can be implemented in short and medium term, without encompassing the creation of new structures, such as new national or institutional RS Committees. The advantage of this approach is two-fold: (a) firstly and most importantly, it cultivates the integration of RS considerations in the existing culture of ethical conduct and integrity in research. This enables all members of the research ecosystem to have direct access to adapted training programmes designed to also raise awareness on RS, fostering a seamless integration of common principles and values; (b) it avoids the imposition of excessive procedural compliance compared to the application of uniform requirements horizontally for all HEIs and RPOS and all their research projects; horizontal measures would exacerbate compliance and could be perceived by researchers as an administrative burden, risking questioning and detraction from understanding the importance of safeguarding RS; (c) they require less resources than the development of new training programmes and (d) facilitate the early identification and mitigation of RS risks during project design, rather than addressing such risks only after they occur.

Additionally, these policy recommendations support grassroots initiatives on RS, encouraging dialogue and reflection among researchers. This approach fosters awareness, shared responsibility and a proactive responsiveness to the risks associated with international collaboration, while maintaining freedom of research. Even more importantly, these policy recommendations are instrumental in building capacity for researchers, HEIs and RPOs to address RS challenges effectively. Finally, policy recommendation 4 facilitates context-specific adaptations at the project design phase, enhances researchers’ situational awareness, and strengthens both capacity building and sustainability in building resilience to RS risks. By respecting institutional autonomy, it allows researchers and institutions to implement measures proportionate to the specific risks associated with individual research projects, ensuring a balanced and effective approach to address RS risks.

Concluding remarks

Leveraging experience and insights from existing research ethics and integrity infrastructure offers valuable opportunities to raise awareness and establish procedures for safeguarding RS in the long term. Besides, the Council of the EU definition of RS inherently includes ethical and research integrity considerations. The proposed policy recommendations should be considered as complementary to existing guidance and policy recommendations, particularly in relation to the Council of the EU recommendation supporting that EU MS should continue to promote academic freedom, institutional autonomy and international collaboration while ensuring ensure proportionality of measures (Council of the EU C/3510, 2024). In alignment with this recommendation, the proposed policy actions in this manuscript can be readily integrated into national RS policies, because they provide sufficient flexibility to accommodate the specific research needs of each HEI and RPO, and are proportionate to the related risks rising from each research project, respecting the autonomy of HEIs and RPOs and protecting freedom of research, while reaping the benefits of joint collaborations. We propose that by fostering capacity-building for researchers and cultivating a culture of awareness (as in the case of ethics reviews in the changing research environment), shared responsibility, and proactive responsiveness, the responsible internationalisation of research can be effectively realised. In this effort, funding agencies, HEIs and RPOs need to act as stewards of secure research, demonstrating commitment to support the research community. This way, RS policies can be recognised as an opportunity to research and development, to protect research outcomes and ensure that they are being used for the benefit of society.

Supplemental Material

sj-docx-1-rea-10.1177_17470161251404962 – Supplemental material for Challenges and recommendations for research security: Learning from research ethics and integrity

Supplemental material, sj-docx-1-rea-10.1177_17470161251404962 for Challenges and recommendations for research security: Learning from research ethics and integrity by Vasiliki Mollaki, Xenia Ziouvelou, Konstantina Giouvanopoulou and Vangelis Karkaletsis; and the CHANGER Consortium in Research Ethics

Footnotes

CHANGER Consortium

Alexander Bagattini, Karlsruhe Institute of Technology, Germany

Alexandra Zorila, University of Bucharest, Romania

Alfonso Alfonsi, K&I Knowledge and Innovation, Italy

Ana Gaudêncio, University of Coimbra, Portugal

Ana Marušić, School of Medicine Split, Croatia

André G. Dias Pereira, University of Coimbra, Portugal

Anna Huber, Ludwig Maximilian University of Munich, Germany

Antonija Mijatović, School of Medicine Split, Croatia

Carla Barbosa, University of Coimbra, Portugal

Constantin Vică, University of Bucharest, Romania

Ellen-Marie Forsberg, Norwegian Institute for Sustainability Research, Norway

Eva Van Steijvoort, Department of Public Health and Primary Care, KU Leuven, Belgium

Georgia Rina, University of Macedonia, Greece

Hella von Unger, Ludwig Maximilian University of Munich, Germany

Ioannis Manos, University of Macedonia, Greece

Jeanne Mifsud Bonnici, University of Groningen, Netherlands

Joana Günther, University of Bonn, Germany

Jonas Pfister, Vienna University of Technology, Austria

Kamiel Verbeke, Department of Public Health and Primary Care, KU Leuven, Belgium. Disclaimer: KV contributed in his personal capacity and his contribution should not be seen as representing the perspective of the ERC or the European Commission.

Lana Barać, School of Medicine Split, Croatia

Ljupco Risteski, Cyril and Methodius University in Skopje, North Macedonia

Luciano d’Andrea, K&I Knowledge and Innovation, Italy

M. Teresa Berliri, K&I Knowledge and Innovation, Italy

Margaux Reckelbus, Department of Public Health and Primary Care, KU Leuven, Belgium

Marina Markellou, University of Groningen, Netherlands

Marjo Rauhal, Vienna University of Technology, Austria

Matthias Kaiser, Norwegian Institute for Sustainability Research, Norway

Michael W. Schmidt, Karlsruhe Institute of Technology, Germany

Nevien Kerk, Ludwig Maximilian University of Munich, Germany

Pascal Borry, Department of Public Health and Primary Care, KU Leuven, Belgium

Phaedra Locquet, Department of Public Health and Primary Care, KU Leuven, Belgium

Rafaela Hillerbrand, Karlsruhe Institute of Technology, Germany

Tade Spranger, University of Bonn, Germany

Tina Garani-Papadatos, University of West Attica, Greece

ORCID iD

Vasiliki Mollaki

Ethical considerations

Ethical approval was not required for this type of research.

Funding

The authors disclosed receipt of the following financial support for the research, authorship, and/or publication of this article: This work has received funding from the European Union’s Horizon WIDERA under Grant Agreement No 101131683. Views and opinions expressed are those of the author(s) only and do not necessarily reflect those of the European Union or the European Commission. Neither the European Union nor the granting authority can be held responsible for them.

Declaration of conflicting interests

The authors declared no potential conflicts of interest with respect to the research, authorship, and/or publication of this article.

Supplemental material

Supplemental material for this article is available online.

References

All European Academies (ALLEA) (2023) The European Code of Conduct for research integrity. Available at: https://ec.europa.eu/info/funding-tenders/opportunities/docs/2021-2027/horizon/guidance/european-code-of-conduct-for-research-integrity_horizon_en.pdf (accessed 10 January 2025).

Australian Research Council (2025) Research security. Available at: https://www.arc.gov.au/funding-research/research-security (accessed 3 October 2025).

CHANGER D2.2 (2025) Report on case study findings (Focus groups and interviews). Available at: https://changer-project.eu/wp-content/uploads/2025/11/CHANGER-D2.2-Report-on-case-study-findings-Focus-groups-and-interviews_website.pdf (accessed 5 June 2025).

CHANGER Project (2024) CHAllenges and innovative chaNGes in research Ethics Reviews is a project funded by the European Union, aiming to promote changes in research ethics reviews. Available at: https://changer-project.eu/ (accessed 10 January 2025).

Council of the EU C/3510 (2024) Council Recommendation on enhancing research security. Brussels, 23.05.2024. Available at: https://eur-lex.europa.eu/legal-content/EN/TXT/PDF/?uri=OJ:C_202403510 (accessed 28 May 2025).

European Commission (2007) Taking European knowledge society seriously. Available at: https://op.europa.eu/en/publication-detail/-/publication/5d0e77c7-2948-4ef5-aec7-bd18efe3c442 (accessed 10 January 2025).

European Commission (2022) Tackling Foreign Interference. Staff Working Document. Available at: https://european-research-area.ec.europa.eu/sites/default/files/documents/2024-04/tackling%20r%26i%20foreign%20interference-KI0922004ENN.pdf (accessed 10 January 2025).

European Commission (2023) Ethics Advisors and Ethics Advisory Boards: Roles and function in EU-funded projects. Available at: https://ec.europa.eu/info/funding-tenders/opportunities/docs/2021-2027/horizon/guidance/roles-and-functions-of-ethics-advisory-ethics-advisory-boards-in-ec-funded-projects_he_en.pdf (accessed 5 June 2025).

European Commission C 6689 (2023) Commission Recommendation on critical technology areas for the EU’s economic security for further risk assessment with Member States. Strasbourg, 3 October. Available at: https://defence-industry-space.ec.europa.eu/document/download/31c246f2-f0ab-4cdf-a338-b00dc16abd36_en?filename=C_2023_6689_1_EN_ACT_part1_v8.pdf (accessed 10 January 2025).

10.

European Commission JOIN 20 (2023) Joint Communication to the European Parliament, the European Council and the Council on “European Economic Security Strategy”. Brussels, 20 June. Available at: https://eur-lex.europa.eu/legal-content/EN/TXT/PDF/?uri=CELEX:52023JC0020 (accessed 10 January 2025).

11.

European Network of Research Integrity Offices (ENRIO) (2025) Statement on research integrity as a safeguard for the freedom of scientific research in responsible international collaborations. Available at: https://www.enrio.eu/wp-content/uploads/2025/05/ENRIO_Statement_ScientificFreedom_May2025.pdf (accessed 5 June 2025).

12.

Government of the Netherlands (2025) What is knowledge security? Available at: https://english.loketkennisveiligheid.nl/knowledge-security (accessed 3 October 2025).

13.

Kolstoe

Pugh

(2024) The trinity of good research: Distinguishing between research integrity, ethics, and governance. Accountability in Research 31(8): 1222–1241.

14.

Lewis

(2020) Australia’s plan to end foreign interference in science: Did it work? Nature 178(584): 178–179.

15.

National Protective Security Authority (2023) Trusted Research Guidance for Academics. National Cyber Security Centre (NCSC). Available at: https://www.npsa.gov.uk/system/files/NPSA%20TR%20Guidance%20for%20Academics_2025.pdf (accessed 3 October 2025).

16.

National Science and Technology Council (2022) Guidance for Implementing National Security Presidential Memorandum 33 (NSPM-33) on National Security Strategy for US Government-Supported Research and Development. National Science and Technology Council.

17.

Hanlon

Yimer

, et al. (2015) Ethics in global health research: The need for balance. Lancet Global Health 3(9): e516–e517.

18.

OECD (2022) Integrity and research in the global research ecosystem. OECD Science, Technology and Industry Policy Papers No. 130. Available at https://www.oecd.org/en/publications/integrity-and-security-in-the-global-research-ecosystem_1c416f43-en.html (accessed 10 January 2025).

19.

Pinna

(2025) Navigating Knowledge and research security in EU-China relations: The Case of Hungary, Italy and the Netherlands. Journal of Studies in International Education 29(2): 319–343.

20.

Shih

(2024) The role of research funders in providing directions for managing responsible internationalization and research security. Technological Forecasting and Social Change 201: 123253.

21.

Smith

Walsh

(2023) Security sensitive research: Balancing research integrity, academic freedom and national interest. Journal of Higher Education Policy and Management 45(5): 495–510.

22.

Snetselaar

(2023) Dreams Lab: assembling knowledge security in Sino-Dutch research collaborations. European Security 32(2): 233–251.

23.

Snetselaar

Frerks

Gould

, et al. (2022) Knowledge security: insights for NATO. NATO Review 2022. Available at: https://www.nato.int/docu/review/articles/2022/09/30/knowledge-security-insights-for-nato/index.html (accessed 3 October 2025).

24.

Snyder

(2019) Literature review as a research methodology: An overview and guidelines. Journal of Business Research 104: 333–339.

25.

Third International Conference on Grey Literature (1997) ICGL Luxembourg definition, 1997 - Expanded in New York, 2004.

26.

Torraco

(2005) Writing Integrative Literature Reviews: Guidelines and Examples. Human Resource Development Review 4(3): 356–367.

27.

UNESCO (2005) Universal Declaration on Bioethics and Human Rights. Available at: https://unesdoc.unesco.org/ark:/48223/pf0000142825.page=80 (accessed 10 January 2025).

28.

Walker-Munro

(2024) Risks of Espionage in Our Universities? Lessons on Research Security from Li v Canada. Adelaide Law Review 45(3): 635–661.

Supplementary Material

Please find the following supplemental material available below.

For Open Access articles published under a Creative Commons License, all supplemental material carries the same license as the article it is associated with.

For non-Open Access articles published, all supplemental material carries a non-exclusive license, and permission requests for re-use of supplemental material or any part of supplemental material shall be sent directly to the copyright owner as specified in the copyright notice associated with the article.

0.00 MB

0.05 MB