This paper proposes a new consequentialist standard based on an "Effects Test" to define when cyberattacks constitute an armed attack that can be responded to in self-defense. This paper will also address the use of anticipatory self-defense in the cyber context by proposing a modification of the traditional Caroline doctrine using a court system as a check on abuse of the anticipatory self-defense doctrine.
This book presents a novel framework to reconceptualize Internet governance and better manage cyber attacks. Specifically, it makes an original contribution by examining the potential of polycentric regulation to increase accountability through bottom-up action. It also provides a synthesis of the current state of cybersecurity research, bringing features of the cloak and dagger world of cyber attacks to light and comparing and contrasting the cyber threat to all relevant stakeholders. Throughout the book, cybersecurity is treated holistically, covering outstanding issues in law, science, economics, and politics. This interdisciplinary approach is an exemplar of how strategies from different disciplines as well as the private and public sectors may cross-pollinate to enhance cybersecurity. Case studies and examples illustrate what is at stake and identify best practices. The book discusses technical issues of Internet governance and cybersecurity while presenting the material in an informal, straightforward manner. The book is designed to inform readers about the interplay of Internet governance and cybersecurity and the potential of polycentric regulation to help foster cyber peace.
We depend on information and information technology (IT) to make many of our day-to-day tasks easier and more convenient. Computers play key roles in transportation, health care, banking, and energy. Businesses use IT for payroll and accounting, inventory and sales, and research and development. Modern military forces use weapons that are increasingly coordinated through computer-based networks. Cybersecurity is vital to protecting all of these functions. Cyberspace is vulnerable to a broad spectrum of hackers, criminals, terrorists, and state actors. Working in cyberspace, these malevolent actors can steal money, intellectual property, or classified information; impersonate law-abiding parties for their own purposes; damage important data; or deny the availability of normally accessible services. Cybersecurity issues arise because of three factors taken together - the presence of malevolent actors in cyberspace, societal reliance on IT for many important functions, and the presence of vulnerabilities in IT systems. What steps can policy makers take to protect our government, businesses, and the public from those would take advantage of system vulnerabilities? At the Nexus of Cybersecurity and Public Policy offers a wealth of information on practical measures, technical and nontechnical challenges, and potential policy responses. According to this report, cybersecurity is a never-ending battle; threats will evolve as adversaries adopt new tools and techniques to compromise security. Cybersecurity is therefore an ongoing process that needs to evolve as new threats are identified. At the Nexus of Cybersecurity and Public Policy is a call for action to make cybersecurity a public safety priority. For a number of years, the cybersecurity issue has received increasing public attention; however, most policy focus has been on the short-term costs of improving systems. In its explanation of the fundamentals of cybersecurity and the discussion of potential policy responses, this book will be a resource for policy makers, cybersecurity and IT professionals, and anyone who wants to understand threats to cyberspace.
Brantly investigates how states decide to employ cyber in military and intelligence operations against other states and how rational those decisions are. He contextualizes broader cyber decision-making processes into a systematic expected utility-rational choice approach to provide a mathematical understanding of the use of cyber weapons.
Cybersecurity has become a topic of concern over the past decade as private industry, public administration, commerce, and communication have gained a greater online presence. As many individual and organizational activities continue to evolve in the digital sphere, new vulnerabilities arise. Cybersecurity Policies and Strategies for Cyberwarfare Prevention serves as an integral publication on the latest legal and defensive measures being implemented to protect individuals, as well as organizations, from cyber threats. Examining online criminal networks and threats in both the public and private spheres, this book is a necessary addition to the reference collections of IT specialists, administrators, business managers, researchers, and students interested in uncovering new ways to thwart cyber breaches and protect sensitive digital information.
The Journal of Law & Cyber Warfare provides a public peer-reviewed professional forum for the open discussion and education of technology, business, legal, and military professionals concerning the legal issues businesses and governments arising out of cyber attacks or acts of cyber war. The Journal of Law and Cyber Warfare is published twice per year by top legal professionals and scholars from the law, technology, security, and business industries. The views expressed in the Journal of Law and Cyber Warfare are those of the authors and not necessarily of the Journal of Law and Cyber Warfare.
The Rutgers Computer & Technology Law Journal now offers its issues in convenient and modern ebook formats for e-reader devices, apps, pads, smartphones, and computers. This second issue of Volume 40, 2014, features new articles and student contributions on topics related to: using tech to enhance pro bono work, using tech in the law classroom, BitTorrent copyright trolling, taxation of e-commerce and internet sales, and cyber insurance and tangible property. The issue also includes the annual, extensive Bibliography -- in grouped order with a useful, linked Index -- of articles and essays in all the academic journals related to technology, computers, the internet, and the law. In the new ebook edition, quality presentation includes active TOC, linked notes and Index, active URLs in notes, proper digital and Bluebook formatting, and inclusion of images and tables from the original print edition.
The second half of the 20th century featured a strategic competition between the United States and the Soviet Union. That competition avoided World War III in part because during the 1950s, scholars like Henry Kissinger, Thomas Schelling, Herman Kahn, and Albert Wohlstetter analyzed the fundamental nature of nuclear deterrence. Decades of arms control negotiations reinforced these early notions of stability and created a mutual understanding that allowed U.S.-Soviet competition to proceed without armed conflict. The first half of the 21st century will be dominated by the relationship between the United States and China. That relationship is likely to contain elements of both cooperation and competition. Territorial disputes such as those over Taiwan and the South China Sea will be an important feature of this competition, but both are traditional disputes, and traditional solutions suggest themselves. A more difficult set of issues relates to U.S.-Chinese competition and cooperation in three domains in which real strategic harm can be inflicted in the current era: nuclear, space, and cyber. Just as a clearer understanding of the fundamental principles of nuclear deterrence maintained adequate stability during the Cold War, a clearer understanding of the characteristics of these three domains can provide the underpinnings of strategic stability between the United States and China in the decades ahead. That is what this book is about.
In a world of increasing dependence on information technology, the prevention of cyberattacks on a nation's important computer and communications systems and networks is a problem that looms large. Given the demonstrated limitations of passive cybersecurity defense measures, it is natural to consider the possibility that deterrence might play a useful role in preventing cyberattacks against the United States and its vital interests. At the request of the Office of the Director of National Intelligence, the National Research Council undertook a two-phase project aimed to foster a broad, multidisciplinary examination of strategies for deterring cyberattacks on the United States and of the possible utility of these strategies for the U.S. government. The first phase produced a letter report providing basic information needed to understand the nature of the problem and to articulate important questions that can drive research regarding ways of more effectively preventing, discouraging, and inhibiting hostile activity against important U.S. information systems and networks. The second phase of the project entailed selecting appropriate experts to write papers on questions raised in the letter report. A number of experts, identified by the committee, were commissioned to write these papers under contract with the National Academy of Sciences. Commissioned papers were discussed at a public workshop held June 10-11, 2010, in Washington, D.C., and authors revised their papers after the workshop. Although the authors were selected and the papers reviewed and discussed by the committee, the individually authored papers do not reflect consensus views of the committee, and the reader should view these papers as offering points of departure that can stimulate further work on the topics discussed. The papers presented in this volume are published essentially as received from the authors, with some proofreading corrections made as limited time allowed.
The nations that drafted the UN Charter in 1945 clearly were more concerned about peace than about justice. As a result, the Charter prohibits all use of force by states except in the event of an armed attack or when authorised by the Security Council. This arrangement has only very imperfectly withstood the test of time and changing world conditions. In requiring states not to use force in self-defence until after they had become the object of an actual armed attack, the Charter failed to address a growing phenomenon of clandestine subversion and of instantaneous nuclear threats. Fortunately although the Charter is very hard to amend, the drafters did agree that it should be interpreted flexibly by the United Nations' principal political institutions. In this way the norms governing use of force in international affairs have been adapted to meet changing circumstances and new challenges. The book also relates these changes in law and practice to changing public values pertaining to the balance between maintaining peace and promoting justice.