Cyber Warfare Is Growing. We Need Rules to Protect Ourselves.
"The next war will begin with a massive cyber attack."
An Urgent Call
Cyber warfare is as real as it gets; the flurry of cyber attacks that made headlines and disrupted industries in 2017 alone attests to that. If it was up to United Nations (U.N.) Secretary-General Antonio Guterres, the globe would already have international rules to minimize damage to civilians from cyber attacks, or to prevent them altogether.
These attacks can range from accessing otherwise confidential files to hijacking entire network systems. There are also so-called ransomware attacks, where hackers use malware to gain access to a computer and lock the user out until they pay for access.
A rather silly version of these attacks was recently featured in the TV series Homeland, but the reality could be far worse — like in the case of the WannaCry security hack in May last year, which crippled over 200,000 businesses, governments, and even hospitals. The United States alone has lost some $1.3 billion due to cyber crime in 2016, a recent report by the Federal Bureau of Investigation (FBI) finds.
“What is worse is that there is no regulatory scheme for that type of warfare, it is not clear how the Geneva Convention or international humanitarian law applies to it,” Guterres said.
Indeed, cybersecurity is increasingly becoming a complex issue, with hackers able to commit cyber crimes seemingly without consequence.
What Rules Can(t) Do
Existing cybersecurity regulations, particularly those in the U.S., simply mandate that institutions protect themselves from cyber attacks. These rules are obviously defensive in nature, and as recent incidents have proven, are not quite sufficient enough to bar hackers from accessing computer systems.
It’s difficult to say what kind of rules Guterres has in mind in place of current regulations. He did suggest the role the U.N. could have in all of it: serving as a platform for experts to work with governments “to guarantee a more humane character” to these rules, and to keep the internet as “an instrument in the service of good.”
Experts have suggested that, with internet access considered a basic human right — although not without controversy — cybersecurity should also be a guaranteed right. At the very minimum, they say, the right to privacy should extend online just as it does offline. To the average folk, this perhaps is the most important point to consider: that their access to the internet is assured while, at the same time, they are kept safe and secure.
The difficulty comes in ensuring that these rights are upheld by governments everywhere. Perhaps the best hope for this future is that technology becomes more robust in the face of cyber threats. That, however, can also be quite tricky. In the same way that many see quantum encryption to be a buffer for hackers, it could just as well become a tool for hacking. Cyber warfare could simply end up becoming a race for a better technology.
Guterres’ plea becomes all the more urgent when viewed with an eye for the future: “I am absolutely convinced that, differently from the great battles of the past, which opened with a barrage of artillery or aerial bombardment, the next war will begin with a massive cyber attack to destroy military capacity… and paralyze basic infrastructure,” the U.N. Secretary-General warned.