Cyber attacks as use of force in international relations: ius ad bellum and ius in bello

Similar documents
Bridging the Security Divide

Cyber Strategy & Policy: International Law Dimensions. Written Testimony Before the Senate Armed Services Committee

Draft Rules for the Limitation of the Dangers incurred by the Civilian Population in Time of War. ICRC, 1956 PREAMBLE

Targeting War Sustaining Activities. International Humanitarian Law Workshop Yale Law School October 1, 2016

Commercial Space: Questions Regarding the Legal and Regulatory Environment

Dr. M. Lucy Stojak. Institute for International Law, KULeuven 19 February 2008

Applying Jus Ad Bellum in Cyberspace Barnett 0. Applying Jus Ad Bellum in Cyberspace: The Use of Force, Armed Attacks, and the Right of Self-Defence

HARVARD INTERNATIONAL LAW JOURNAL

ARTICLE SWINGING A FIST IN CYBERSPACE. Jessica Zhanna Malekos Smith

Does President Trump have the authority to totally destroy North Korea?

Commentary to the HPCR Manual on International Law Applicable to Air and Missile Warfare

WEAPONS TREATIES AND OTHER INTERNATIONAL ACTS SERIES Agreement Between the UNITED STATES OF AMERICA and ROMANIA

The Additional Protocols 40 Years Later: New Conflicts, New Actors, New Perspectives

Methods in Armed Conflict: The Legal Framework. I H L C O U R S E F A L L U i O

Legal Aspects of Cyberspace Operations Black hat Abu Dhabi 2012

CYBER SECURITY PROTECTION. Section III of the DOD Cyber Strategy

NEW ZEALAND DEFENCE FORCE Te Ope Kaatua o Aotearoa

MOOT COURT COMPETITION VIETNAM INTERNATIONAL COMMITTEE OF THE RED CROSS THE CASE CONCERNING PROSECUTOR MR. TONY GUSMAN

Over the past decade, the United. The Role of Space Norms in Protection and Defense. By Audrey M. Schaffer

Annex 1. Guidelines for international arms transfers in the context of General Assembly resolution 46/36 H of 6 December 1991

1. Introduction. CHAPTER 3 Cyber Law Development and the United States Law of War Manual. Sean Watts

Responding to Hamas Attacks from Gaza Issues of Proportionality Background Paper. Israel Ministry of Foreign Affairs December 2008

Estonian Defence Forces Organisation Act

Note verbale dated 3 November 2004 from the Permanent Mission of Kazakhstan to the United Nations addressed to the Chairman of the Committee

THE MILITARY STRATEGY OF THE REPUBLIC OF LITHUANIA

The French Space Operation Act

OPNAVINST G N514 8 Jan Subj: RELEASE OF INFORMATION ON NUCLEAR WEAPONS AND ON NUCLEAR CAPABILITIES OF U.S. NAVY FORCES

ALLIANCE MARITIME STRATEGY

HIGH CONTRACTING PARTY: Republic of Lithuania NATIONAL POINT(S) OF CONTACT:

1 Nuclear Weapons. Chapter 1 Issues in the International Community. Part I Security Environment Surrounding Japan

Security Council. United Nations S/RES/1718 (2006) Resolution 1718 (2006) Adopted by the Security Council at its 5551st meeting, on 14 October 2006

Action Plan for the Implementation of the UN Security Council Resolution ( )

Arms Control and Disarmament Policies: Political Debates in Switzerland

Destroying the Ring-Fence: Cyber Stability in Wider International Security Calculus

Cyber Warfare and International Humanitarian Law : A Study

CHAIRMAN OF THE JOINT CHIEFS OF STAFF INSTRUCTION

Cyber conflict and international humanitarian law

Arms and defence. Position statement Danske Bank

NOTE BY THE SECRETARY. to the NORTH ATLANTIC DEFENSE COMMITTEE THE STRATEGIC CONCEPT FOR THE DEFENCE OF THE NORTH ATLANTIC AREA

Department of Defense DIRECTIVE

Methods in Armed Conflict. International Humanitarian Law Fall 2011 Faculty of Law, University of Oslo

The present addendum brings up to date document A/C.1/56/INF/1/Add.1 and incorporates documents issued as at 29 October 2001.

When do cyber operations amount to use of force and armed attack, and what response will they justify?

Department of Defense DIRECTIVE. SUBJECT: Electronic Warfare (EW) and Command and Control Warfare (C2W) Countermeasures

UN/CCW Protocol V Norway 2009

Question of non-proliferation of nuclear weapons and of weapons of mass destruction MUNISH 11

San Remo Manual on International Law Applicable to Armed Conflicts at Sea, 12 June 1994 PART I : GENERAL PROVISIONS

Department of Defense DIRECTIVE

COUNCIL DECISION 2014/913/CFSP

ESTONIA. National annual report

NATO RULES OF ENGAGEMENT AND USE OF FORCE. Lt Col Brian Bengs, USAF Legal Advisor NATO School

FREEDOM WAR ~ THEUNITED STATES PROGRAM FOR GENERAL AND COMPLETE DISARMAMENT IN APEACEFUL WORLD FROM ~ DEPARTMENT OF STATE

Banning Ballistic Missiles? Missile Control for a Nuclear-Weapon-Free World

TEACHING OLD LAW NEW TRICKS: APPLYING AND ADAPTING STATE RESPONSIBILITY TO CYBER OPERATIONS

Operation Unified Protector: Targeting Densely Populated Areas in Libya

Cyber Attacks and the Legal Justification for an Armed Response

Department of Defense DIRECTIVE. SUBJECT: Mental Health Evaluations of Members of the Armed Forces

CHINA S WHITE PAPER ON MILITARY STRATEGY

M.Khaliq Division of Nuclear Security

SECNAVINST B OJAG (Code 10) 27 Dec Subj: LAW OF ARMED CONFLICT (LAW OF WAR) PROGRAM TO ENSURE COMPLIANCE BY THE NAVAL ESTABLISHMENT

H. R IN THE HOUSE OF REPRESENTATIVES

A/CONF.229/2017/NGO/WP.2

NATO UNCLASSIFIED. 6 January 2016 MC 0472/1 (Final)

Preamble. The Czech Republic and the United States of America (hereafter referred to as the Parties ):

CYBER ATTACKS: GOVERNANCE, CHALLENGES AND FUTURE

Military Radar Applications

Force 2025 Maneuvers White Paper. 23 January DISTRIBUTION RESTRICTION: Approved for public release.

NATO MEASURES ON ISSUES RELATING TO THE LINKAGE BETWEEN THE FIGHT AGAINST TERRORISM AND THE PROLIFERATION OF WEAPONS OF MASS DESTRUCTION

Welcoming the restoration to Kuwait of its sovereignty, independence and territorial integrity and the return of its legitimate Government.

SANREMO HANDBOOK ON RULES OF ENGAGEMENT

PROTECTION OF CIVILIANS IN ARMED CONFLICT

DOD INSTRUCTION MANAGEMENT OF DOD IRREGULAR WARFARE (IW) AND SECURITY FORCE ASSISTANCE (SFA) CAPABILITIES

Previously in This Series

Prohibiting Interference with Space- Based Position, Navigation, and Timing

Chapter 6. Noncombatant Considerations in Urban Operations

Adopted by the Security Council at its 6733rd meeting, on 12 March 2012

ARMY TRANSFORMATION AND INFORMATION OPERATIONS: THE INTERNATIONAL LEGAL IMPLICATIONS

FSC.EMI/174/17 30 May ENGLISH only

Adopted by the Security Council at its 4987th meeting, on 8 June 2004

Department of Defense DIRECTIVE

COE-DAT Course Catalog. Introduction

A/55/116. General Assembly. United Nations. General and complete disarmament: Missiles. Contents. Report of the Secretary-General

The War in Iraq and International Humanitarian Law Frequently Asked Questions (FAQ) Last Updated April 7, 2003

COALITION PROVISIONAL AUTHORITY ORDER NUMBER 91 REGULATION OF ARMED FORCES AND MILITIAS WITHIN IRAQ

Explosive Remnants of War (ERW) A Quick Look Threat Analysis

Satellite Sentinel Project escalation: evidence of saf and spla combat operations

United States General Accounting Office. DISTRIBUTION STATEMENT A Approved for Public Release Distribution Unlimited GAP

UNCLASSIFIED. Unclassified

AMERICAN BAR ASSOCIATION CENTER FOR HUMAN RIGHTS WASHINGTON, DC. March 18, 2014

Frameworks for Responses to Armed Attack Situations

Joint Space Mission Areas

Wales Summit Declaration

HARVARD NATIONAL SECURITY JOURNAL

- PROTOCOL V - (As adopted by the First Conference at its second plenary meeting on 5 November 2007)

Battlefield Status & Protected Persons Lieutenant Colonel Chris Jenks 4 January 2010

Utah County Law Enforcement Officer Involved Incident Protocol

*Note: An update of the English text of this Act is being prepared. Text in Bulgarian: Закон за отбраната и въоръжените сили на Република България

May 8, 2018 NATIONAL SECURITY PRESIDENTIAL MEMORANDUM/NSPM-11

Forty-first Annual Conference of the Center for Oceans Law & Policy. Yogyakarta, Indonesia May 16-19, 2017

THE TREATY ON THE PROHIBITION OF NUCLEAR WEAPONS AND ITS COMPATIBILITY WITH SWEDEN S SECURITY ARRANGEMENTS

Transcription:

Cyber attacks as use of force in international relations: ius ad bellum and ius in bello Prof. Marco Pedrazzi Department of International, Legal, Historical and Political Studies Milan University 1

Cyber war and outer space Satellites = critical infrastructure Tallin Manual 2.0: cyber operations could be directed against, or utilise, space-related cyber infrastructure (in particular satellites) for such purposes as retrieving or altering data, disrupting space-tospace communications, interfering with uplink or downlink communication signals, partially or completely destroying the software or hardware on a space system, and manipulating satellite controls 2

International Law UNGA (2011) Group of Governmental Experts on Developments in the Field of Information and Telecommunications in the Context of International Security GGE Report (2013): International law, and in particular the Charter of the United Nations, is applicable and is essential to maintaining peace and stability and promoting an open, secure, peaceful and accessible ICT environment

International Law Problem: hardly no specific international law norms (treaty rules) dealing with cyber space and cyber operations Applicability of general international law and treaties inasmuch as they are applicable Applicability of ius ad bellum and ius in bello

Tallinn processr Law / Space Law in Air Law / Space NATO Cooperative Cyber Defence Centre of Excellence (Tallinn) Law International Group of Experts Tallinn Manual on the International Law applicable to Cyber Warfare (2013) new International Group of Experts Tallinn Manual 2.0 on the International Law applicable to Cyber Operations (2017), incorporating and integrating Tallinn Manual 1.0 The value of the Tallinn Manual

Attack A «cyber attack» is not necessarily an armed attack (ius ad bellum) or an attack under ius in bello However, nothing is certain in this field (hardly no available State practice or opinio iuris) A cyber operation that does not constitute an armed attack may be nonetheless illegal (violation of sovereignty, violation of the principle of non intervention)

Attack US DoD Law of War Manual (2016): The term attack often has been used in a colloquial sense in discussing cyber operations to refer to many different types of hostile or malicious cyber activities, such as the defacement of websites, network intrusions, the theft of private information, or the disruption of the provision of internet services Operations described as cyber attacks or computer network attacks, therefore, are not necessarily attacks for the purposes of applying rules on conducting attacks during the conduct of hostilities. Similarly, operations described as cyber attacks or computer network attacks are not necessarily armed attacks for the purposes of triggering a State s inherent right of selfdefense under jus ad bellum

Ius ad bellum UN Charter, Art. 2.4: All Members shall refrain in their international relations from the threat or use of force against the territorial integrity or political independence of any state, or in any other manner inconsistent with the Purposes of the United Nations

Ius ad bellum Two exceptions to the ban on the use of force: A) use of force (authorised) by the Security Council of the UN (UN collective security system) B) use of force in individual or collective self-defence

Ius ad bellum UN Charter, Art. 51: Nothing in the present Charter shall impair the inherent right of individual or collective self-defence if an armed attack occurs against a Member of the United Nations, until the Security Council has taken measures necessary to maintain international peace and security

Ius ad bellum International Court of Justice (ICJ), Nicaragua v. US judgment (1986): Not all uses of force are so serious to constitute an armed attack, triggering the right of individual or collective self-defence

Ius ad bellum Different US view (DoD Manual): The United States has long taken the position that the inherent right of self-defense potentially applies against any illegal use of force. Thus, any cyber operation that constitutes an illegal use of force against a State potentially gives rise to a right to take necessary and proportionate action in selfdefense

Use of force Tallinn Manual: Acts that injure or kill persons or physically damage or destroy objects are uses of force Other cases are less clear

Armed attack Tallinn Manual The scale and effects required for an act to be characterised as an armed attack necessarily exceed those qualifying the act as a use of force The parameters of the scale and effects criteria remain unsettled beyond the indication that they need to be grave

Armed attack Tallinn Manual: A cyber operation that seriously injures or kills a number of persons or that causes significant damage to, or destruction of, property would satisfy the scale and effects requirement But the precise threshold is unclear

Armed attack Operation Stuxnet (2010) damage to Iranian nuclear centrifuges An armed attack? Opinions divided among experts (although all agree it was a use of force) A cyber incident directed against a major international stock exchange that causes the market to crash? Opinions divided But an «armed attack», although it may be effected by means of non traditional weapons, implies at least, if not physical damage, the impairment of functions of specific infrastructures

Attribution With respect to cyber operations (and attacks) attribution to a State (or non-state actor) is the big problem Inter alia, it may be particularly difficult to verify whether the acts of a non-state actor are attributable to a State (see Nicaragua case and ILC Articles on State responsibility) Art. VI, Outer Space Treaty (OST): States are responsible for national space activities: would this imply attribution to the State of any cyber attack conducted by means of national private satellites? Doubtful

Self-defence Armed attack by ( self-defence against) non-state actors? Anticipatory self-defence (relevant in the case of cyber attack)?

Ius in bello Additional Protocol I (AP I) Principle of distinction Art. 48 In order to ensure respect for and protection of the civilian population and civilian objects, the Parties to the conflict shall at all times distinguish between the civilian population and combatants and between civilian objects and military objectives and accordingly shall direct their operations only against military objectives

Ius in bello Protection of the civilian population Art. 51, AP I 1. The civilian population and individual civilians shall enjoy general protection against dangers arising from military operations 2. The civilian population as such, as well as individual civilians, shall not be the object of attack

Ius in bello Art. 51, AP I Prohibition of indiscriminate attacks 4. Indiscriminate attacks are prohibited. Indiscriminate attacks are those which are of a nature to strike military objectives and civilians or civilian objects without distinction 5. Among others, the following types of attacks are to be considered as indiscriminate: (b) an attack which may be expected to cause incidental loss of civilian life, injury to civilians, damage to civilian objects, or a combination thereof, which would be excessive in relation to the concrete and direct military advantage anticipated [principle of proportionality]

Ius in bello When does a cyber operation pass the threshold of an attack? Art. 49, AP I "Attacks" means acts of violence against the adversary, whether in offence or in defence Tallinn Manual: A cyber attack is a cyber operation that is reasonably expected to cause injury or death to persons or damage or destruction to objects

Ius in bello violence = violent consequences, not limited to violent (kinetic) acts (see e.g. spread of chemical or biologocal agents) psychological cyber operations or cyber espionage are not attacks According to Tallinn Manual (majority opinion) damage includes interference with functionality «if restoration of functionality requires replacement of physical components» According to some experts any loss of functionality would qualify as damage A cyber operation merely causing loss or impairment of data would not qualify as an attack contrasting opinions, with regard to data essential to the wellbeing of the civilian population (ICRC position)

Ius in bello Cyber infrastructures are often dual-use Dual-use infrastructures are military objectives and can be targeted [Art. 52.2, AP I: Attacks shall be limited strictly to military objectives. In so far as objects are concerned, military objectives are limited to those objects which by their nature, location, purpose or use make an effective contribution to military action and whose total or partial destruction, capture or neutralization, in the circumstances ruling at the time, offers a definite military advantage] The principle of proportionality applies

Outer space The same rules apply in outer space, whether, e.g., a space object (such as a satellite) is used to conduct a cyber attack or is targeted by a cyber attack OST, Preamble Recognizing the common interest of all mankind in the progress of the exploration and use of outer space for peaceful purposes (recall UNCLOS, Art. 88: «The high seas shall be reserved for peaceful purposes»)

Outer space OST, Art. I The exploration and use of outer space, including the Moon and other celestial bodies, shall be carried out for the benefit and in the interests of all countries, irrespective of their degree of economic or scientific development, and shall be the province of all mankind Art. III States Parties to the Treaty shall carry on activities in the exploration and use of outer space, including the Moon and other celestial bodies, in accordance with international law, including the Charter of the United Nations, in the interest of maintaining international peace and security and promoting international cooperation and understanding no general ban on military activities in outer space

Outer space OST, Art. IV States Parties to the Treaty undertake not to place in orbit around the Earth any objects carrying nuclear weapons or any other kinds of weapons of mass destruction, install such weapons on celestial bodies, or station such weapons in outer space in any other manner The Moon and other celestial bodies shall be used by all States Parties to the Treaty exclusively for peaceful purposes. The establishment of military bases, installations and fortifications, the testing of any type of weapons and the conduct of military manoeuvres on celestial bodies shall be forbidden. The use of military personnel for scientific research or for any other peaceful purposes shall not be prohibited. The use of any equipment or facility necessary for peaceful exploration of the Moon and other celestial bodies shall also not be prohibited

2024 © careersdocbox.com Privacy Policy | Terms of Service | Feedback