Home > Debate Club > Should There Be an International Treaty on Cyberwarfare? > An International Cyberwar Treaty Is the Only Way to Stem the Threat

Debate Club

Should There Be an International Treaty on Cyberwarfare? >

An International Cyberwar Treaty Is the Only Way to Stem the Threat

A treaty wouldn't completely stop cyberattacks, but it is a step in the right direction

24
19

By Bruce Schneier

, Security Technologist and Author

June 8, 2012

About Bruce Schneier:

Bruce Schneier is an internationally renowned security technologist and author. His latest book is Liars and Outliers: Enabling the Trust that Society Needs to Thrive.

We're in the early years of a cyberwar arms race. It's expensive, it's destabilizing, and it threatens the very fabric of the Internet we use every day. Cyberwar treaties, as imperfect as they might be, are the only way to contain the threat.

If you read the press and listen to government leaders, we're already in the middle of a cyberwar. By any normal definition of the word "war," this is ridiculous. But the definition of cyberwar has been expanded to include government-sponsored espionage, potential terrorist attacks in cyberspace, large-scale criminal fraud, and even hacker kids attacking government networks and critical infrastructure. This definition is being pushed both by the military and by government contractors, who are gaining power and making money on cyberwar fear.

[Check out our collection of political cartoons on defense spending.]

The danger is that military problems beg for military solutions. We're starting to see a power grab in cyberspace by the world's militaries: large-scale monitoring of networks, military control of Internet standards, even military takeover of cyberspace. Last year's debate over an "Internet kill switch" is an example of this; it's the sort of measure that might be deployed in wartime but makes no sense in peacetime. At the same time, countries are engaging in offensive actions in cyberspace, with tools like Stuxnet and Flame.

Arms races stem from ignorance and fear: ignorance of the other side's capabilities, and fear that their capabilities are greater than yours. Once cyberweapons exist, there will be an impetus to use them. Both Stuxnet and Flame damaged networks other than their intended targets. Any military-inserted back doors in Internet systems make us more vulnerable to criminals and hackers. And it is only a matter of time before something big happens, perhaps by the rash actions of a low-level military officer, perhaps by a non-state actor, perhaps by accident. And if the target nation retaliates, we could find ourselves in a real cyberwar.

The cyberwar arms race is destabilizing.

[Read: NSA Built Stuxnet, But Real Trick Is Building Crew of Hackers]

International cooperation and treaties are the only way to reverse this. Banning cyberweapons entirely is a good goal, but almost certainly unachievable. More likely are treaties that stipulate a no-first-use policy, outlaw unaimed or broadly targeted weapons, and mandate weapons that self-destruct at the end of hostilities. Treaties that restrict tactics and limit stockpiles could be a next step. We could prohibit cyberattacks against civilian infrastructure; international banking, for example, could be declared off-limits.

Yes, enforcement will be difficult. Remember how easy it was to hide a chemical weapons facility? Hiding a cyberweapons facility will be even easier. But we've learned a lot from our Cold War experience in negotiating nuclear, chemical, and biological treaties. The very act of negotiating limits the arms race and paves the way to peace. And even if they're breached, the world is safer because the treaties exist.

There's a common belief within the U.S. military that cyberweapons treaties are not in our best interest: that we currently have a military advantage in cyberspace that we should not squander. That's not true. We might have an offensive advantage—although that's debatable—but we certainly don't have a defensive advantage. More importantly, as a heavily networked country, we are inherently vulnerable in cyberspace.

[Read the U.S. News debate: Should the Congress Pass CISPA?]

Cyberspace threats are real. Military threats might get the publicity, but the criminal threats are both more dangerous and more damaging. Militarizing cyberspace will do more harm than good. The value of a free and open Internet is enormous.

Stop cyberwar fear mongering. Ratchet down cyberspace saber rattling. Start negotiations on limiting the militarization of cyberspace and increasing international police cooperation. This won't magically make us safe, but it will make us safer.

Tags:
international treaties,
cybersecurity
Other Arguments
#1
52
13

No — A treaty would prevent countries from using this nonviolent weapon, leading to more human casualties

LAWRENCE L. MUIR JR., Computer Crime Prosecutor

#2
22
9

No — Even the most damaging cyberattack to date--Stuxnet--may not have been cyberwarfare

SEAN LAWSON, Assistant Professor at the University of Utah

#3
20
8

No — Cyberespionage capabilities are evolving too fast for an unenforceable piece of paper to control them

JON LINDSAY, Research Fellow at the University of California Institute on Global Conflict and Cooperation at UC-San Diego.

#4
11
6

No — World must first find common ground on how and when to seek what regulation of cyberwar is possible

HERBERT LIN, Chief Scientist of the Computer Science and Telecommunications Board of the National Research Council.

#4
12
7

No — Restrictions on cyberweapons uneforceable, and could even harm cybersecurity

MARTIN LIBICKI, Author of 'Cyberdeterrence and Cyberwar'

#7
10
6

No — A cybersecurity treaty would be unworkable

JAMES LEWIS, Director of the Technology and Public Policy Program at the Center for Strategic and International Studies

About Debate Club

A meeting of the sharpest minds on the day's most important topics, Debate Club brings in the best arguments and lets readers decide which is the most persuasive. Read the arguments, then vote. And be sure to check back often to see who has gotten the most support—and also to see what's being discussed now in the Debate Club.

Have ideas about what the Club should be debating? E-mail it to dclub@usnews.com.

You can also join the debate on Facebook or follow Debate Club on Twitter.

Advertisement
Cartoons

See a collection of editorial cartoons on the NSA.

Check out cartoons on Barack Obama.

See cartoons on Congress.

Thomas Jefferson Street Blog
Obamacare Opponents Have to Keep Pushing Repeal

The way to repeal Obamacare is to hasten its ugly results.

Can Obama's Berlin Speech Match John F. Kennedy's and Ronald Reagan's?

The two famous Berlin speeches almost never were.

Reform Conservatives Need to Tackle Unemployment and Jobs

"Reform conservatives" are doing good work, but need to think about the ills of long-term unemployment.

If Background Checks are Good Enough for Guns, They're Good Enough for Jobs

Employers need to be able to consider all factors before making a hire.

NSA Leaker Edward Snowden Is Neither a Whistle-Blower Nor a Civil Disobeyer

Resisters who break a law must accept that they may be arrested and have a duty to submit to punishment.

Obama Should Bring Small Business Owners on His Trip to Africa

This country needs a national reality show.

Russian President Vladimir Putin’s Divorce and Robert Kraft’s Super Bowl Ring

What took Lyudmila Putina so long?

Syria, Israel and the Obama Administration's Absentee Foreign Policy

Creating a mess you are going to leave for someone else to clean up is not a good way to manage U.S. foreign policy.

Advertisement

Photos »
Photo of the Day
The White House »
See the latest editorial cartoons on President Obama.
Congress »
11 Things Wrong With Congress
Best Diets »
Best Diets Ranked
Terrorism »
History of U.S. Bombings
Political Cartoons »
Gallery: Daily Images From Illustrators
Margaret Thatcher »
The Life of Margaret Thatcher
Gun Debate »
Should 3-D Printed Guns Be Legal?
Subscribe »
Subscribe to U.S. News Weekly
The Home Front »
Consumers' Faith Slumps