Qian Hongdao,Jiang Bin

DOI: https://doi.org/10.3785/j.issn.1008-942X.2012.09.221

2013-01-01

Abstract:From a global perspective,although the protection of freedom of expression will still be a problem in many countries,the new challenge of freedom of expression in the age of Internet is that people with ability and freedom to communicate freely tend to communicate only with people they agree with.This kind of ineffective communication leads to not only some negative consequences as "debates and communication cannot help people get close to the truth," but also to some serious negative ramifications as political division and social contradiction.In 2004,Ronald Dworkin delivered his concern in his writings on political division in American democracy.He also put forward his theoretical solution —"return to the common background." However,Dworkin's solution is more like an ideal one lack of practical strategy and workable operation.This article proposes a principle of "New Public Forum" and expects to solve the problem on a systematic,strategic and operational level.The principle of traditional public forum considers its main goal as solving the dilemma between the valuable role of mass media and the right of individuals to express freely and effectively.Today we have to deal with another dilemma because whereas the internet improves people's capability of sending and receiving information and expressing their opinions,the effectiveness of communication itself is still being threatened.Cyberkans,a phenomenon of worldwide network Balkanization,is the linchpin in this dilemma.Cyberkans results from complex factors such as political and legal policies,business strategies of Internet product manufacturers and a more crucial one that ordinary people as consumers tend to choose the internet product to help them filter for favorable information and opinions.In the Internet era,people not only rely on information filtration,but also prefer and actively choose filtering tools.They are fond of "personalized" products,which inevitably lead to information "cocoon" and "Daily Me." That is why people with different values,different preferences and different interests are easily separated and divided into different groups.Furthermore,opinions and beliefs in divided groups tend to become extreme in the process of "Group Polarization," which intensifies social contradictions and affects social stability because of the lack of effective debate and communication.Malfunction of the marketplace of opinions,group polarization and tagging tendency all manifest certain kind of ineffective communication resulting from Cyberkans. There are at least two solutions for these problems.The first one is to remove all separation institutes and integrate all information into one platform.This proposal fundamentally denies the network users' choices and overthrows market mechanism in the Network Economy,that's why it can only be applied to some web sites of government and other public service departments.The second solution is to establish a new kind of "Public Forum" for effective communication meanwhile keeping commodity market of internet working by itself.This new Public Forum Doctrine includes the test of extensity,compatibility and,the most important,efficiency.Extensity Test requires the forum to reach as many opinion groups as possible.Compatibility Test requires the forum to contain as many different opinions as possible.Efficiency Test requires political debaters to follow certain kind of regulations to make sure debates are reasonable and yield reasonable results.Considering the actual situation in China,the traditional mainstream media has the responsibility and capability to become the platform of the new public forum.

Mary Ellen O’Connell,M. E. O'Connell

DOI: https://doi.org/10.1093/jcsl/krs017

2012-07-01

Journal of Conflict and Security Law

Abstract:Which government agency should have primary responsibility for the Internet? The USA seems to have decided this question in favour of the military—the US military today has the largest concentration of expertise and legal authority with respect to cyberspace. Those in the legal community who support this development are divided as to the appropriate legal rules to guide the military in its oversight of the Internet. Specialists on the international law on the use of force argue that with analogy and interpretation, current international law can be applied in a way that allows great freedom without sending the message that the USA is acting lawlessly when it comes to the Internet. Others reject this argument as unnecessary and potentially too restrictive. The USA need not observe international law rules, especially not with respect to the Internet. The way forward is to follow the Cold War strategy of threatening enemies with overwhelming force and preparing to act on these threats. This article also questions the application of international law on the use of force to the Internet. Rather than rejecting international law in general, however, the thesis here is that international law rules governing economic activity and communications are the relevant ones for activity on the Internet. Moving away from military analogy in general and Cold War deterrence in particular, will result in the identification and application of rules with a far better chance of keeping the Internet open and safer for all.

English Else

Vladyslav Kuz

DOI: https://doi.org/10.20535/tacs.2664-29132023.2.280377

2023-11-06

Theoretical and Applied Cybersecurity

Abstract:Today, interaction between people and objects, including industrial ones, has become an integral part of our everyday life. Access to communications, finance, and all forms of information management and permission to use them can be obtained from almost anywhere using compact devices. For example, operators can remotely control individual sectors and control operations in several areas at the same time, surgeons can operate on patients thousands of miles away, and car manufacturers can detect when one of their vehicles has been in an accident within a few seconds after the accident. As a result of the spread of the Internet and wireless data networks, the interconnection of so much data, technology and network equipment and devices has quickly become the basis of modern society. At present, we have become a knowledge-based society that often relies on technology to execute or support almost all tasks and functions of human life. Undoubtedly, this has greatly expanded the range of tasks to be solved, but at the same time, the society became much more vulnerable to threats in information and communication systems. The vulnerability is explained by the fact that at some point most of the production of different directions and industries is supported by the introduction, storage and search of data/information in a interconnected network of hard disks and data servers, locally or remotely located. And at each of these stages there is an opportunity to steal data, bypass protection, manipulate or replace information. But the risks associated with unintentional accidents caused by human errors, system failures, incompatibility or other unexpected problems, as well as “natural disasters,” must also be taken into account. Therefore, the security of computer or cyber systems is a matter of national security. Actually, cyber-threats are so great that more and more security experts are pointing out that protection of cyber systems and data is more of a problem than terrorism. Given the scale of the threat (in terms of cyberattacks) and the actual damage it can be argued, certain systems and structures are at risk [1, 2]. It is proved that hackers can break into government and business websites, steal personal data, change the traffic light scheme, accelerate and slow down travel, and much more. As an example, the implementation of a specially created malware program - Stuxnet. The effects of its use were the self-destruction in 2010 of dozens of centrifuges, which supported Iranʼs nuclear program [3, 4]. Some experts think that Stuxnet was created not by independent attackers and possibly with the support of the government. Thus, as a conclusion, it can be confirmed that hackers operate from anywhere in the world, and the links and boundaries between cyberspace and physical systems are sufficiently leveled. Thus, as a conclusion, it can be confirmed that intruders operate from anywhere in the world, and the links and borders between cyberspace and physical systems are sufficiently leveled. Society is increasingly faced with the fact that a group or even a person armed with a complex computer virus or knowledge about the vulnerability of software or hardware can cause a lot of physical damage to people’s lives or physical destruction, impose significant social or economic damage, and so on. For example, there are facts published by the Financial times on May 8, 2012 (http://on.ft.com/1wviXHW) that an unknown group for many years is trying to penetrate into the systems of managing the networks of gas pipelines of the USA. At the end of 2014, the National Oceanic and Atmospheric Administration of the United States announced that hackers from China successfully broke and destroyed American satellite networks, causing loss of services related to the prediction of various natural cataclysms, air flight corridors, navigation and other industries within a few days (http://wapo.st/1u7N9dJ). As a rule, the critical infrastructure includes power and transport main networks, oil and gas pipelines, sea ports, high-speed and governmental communication channels, systems of life support (water and heat supply) of mega-cities, waste management, emergency services and emergency response services, high-tech enterprises and enterprises of military-industrial complex, as well as central authorities. The government critical information infrastructure is only one of many important systems and networks that create our modern society. Therefore, the state and society are fully dependent on the functioning of different objects and subjects of critical information infrastructure, and the loss of integrity of any of them can lead to various kinds of failures (termination of production and transfer of electricity, temporary and long-term interruptions, improper access to medical care, and much more). Each state is a separate critical information infrastructure, but cooperation between states takes place within the framework of global critical information infrastructure. At the same time, large investments in each sector of critical information infrastructure have led to an increase in economic development rates and improvement in the quality of life.

William Yurcik,David Doss

DOI: https://doi.org/10.48550/arXiv.cs/0109078

2001-09-24

Computers and Society

Abstract:Information technology is redefining national security and the use of force by state and nonstate actors. The use of force over the Internet warrants analysis given recent terrorist attacks. At the same time that information technology empowers states and their commercial enterprises, information technology makes infrastructures supported by computer systems increasingly accessible, interdependent, and more vulnerable to malicious attack. The Computer Security Institute and the FBI jointly estimate that financial losses attributed to malicious attack amounted to $378 million in 2000. International Law clearly permits a state to respond in self-defense when attacked by another state through the Internet, however, such attacks may not always rise to the scope, duration, and intensity threshold of an armed attack that may justify a use of force in self-defense. This paper presents a policy framework to analyze the rules of engagement for Internet attacks. We describe the state of Internet security, incentives for asymmetric warfare, and the development of international law for conflict management and armed conflict. We focus on options for future rules of engagement specific to Information Warfare. We conclude with four policy recommendations for Internet attack rules of engagement: (1) the U.S. should pursue international definitions of "force" and "armed attack" in the Information Warfare context; (2) the U.S. should pursue international cooperation for the joint investigation and prosecution of Internet attacks; (3) the U.S. must balance offensive opportunities against defensive vulnerabilities; and (4) the U.S. should prepare strategic plans now rather than making policy decisions in real-time during an Internet attack.

Young Yung Shin,Jae Kyu Lee,Myungchul Kim

DOI: https://doi.org/10.17705/1jais.00488

2018-01-01

Journal of the Association for Information Systems

Abstract:The Internet has engendered serious cybersecurity problems due to its anonymity, transnationality, and technical shortcomings. This paper addresses state-led cyberattacks (SLCAs) as a particular source of threats. Recently, the concept of the Bright Internet was proposed as a means of shifting the cybersecurity paradigm from self-defensive protection to the preventive identification of malevolent origins through adopting five cohesive principles. To design a preventive solution against SLCAs, we distinguish the nature of SLCAs from that of private-led cyberattacks (PLCAs). We then analyze what can and cannot be prevented according to the principles of the Bright Internet. For this research, we collected seven typical SLCA cases and selected three illustrative PLCA cases with eleven factors. Our analysis demonstrated that Bright Internet principles alone are insufficient for preventing threats from the cyberterror of noncompliant countries. Thus, we propose a complementary measure referred to here as the Internet Peace Principles, which define that the Internet should be used only for peaceful purposes in accordance with international laws and norms. We derive these principles using an approach that combines the extension of physical conventions to cyberspace, the expansion of international cybersecurity conventions to global member countries, and analogical international norms. Based on this framework, we adopt the Charter of the United Nations, the Responsibility of States for Internationally Wrongful Acts, Recommendations by the United Nations Group of Governmental Experts, the Tallinn Manual, and Treaty of the Non-Proliferation of Nuclear Weapons, and others as reference norms that we use to derive the consistent international order embodied by the Internet Peace Principles.

Nick Merrill

DOI: https://doi.org/10.25350/B5201J

2021-12-10

Abstract:The internet's key points of global control lie in the hands of a few people, primarily private organizations based in the United States. These control points, as they exist today, raise structural risks to the global internet's long-term stability. I argue: the problem isn't that these control points exist, it's that there is no popular governance over them. I advocate for a localist approach to internet governance: small internets deployed on municipal scales, interoperating selectively, carefully, with this internet and one another.

Networking and Internet Architecture

Samantha Bradshaw,Laura DeNardis

DOI: https://doi.org/10.1177/1461444816662932

2016-08-08

Abstract:One of the most contentious and longstanding debates in Internet governance involves the question of oversight of the Domain Name System (DNS). DNS administration is sometimes described as a “clerical” or “merely technical” task, but it also implicates a number of public policy concerns such as trademark disputes, infrastructure stability and security, resource allocation, and freedom of speech. A parallel phenomenon involves governmental and private forces increasingly altering or co-opting the DNS for political and economic purposes distinct from its core function of resolving Internet names into numbers. This article examines both the intrinsic politics of the DNS in its operation and specific examples and techniques of co-opting or altering DNS’ technical infrastructure as a new tool of global power. The article concludes with an analysis of the implications of this infrastructure-mediated governance on network security, architectural stability, and the efficacy of the Internet governance ecosystem.

communication

N.E. AVANESOVA,Y.I. SERHIIENKO,R.A. LYUBUSHIN

DOI: https://doi.org/10.31520/ei.2022.24.1(82).25-40

2022-03-20

Economic innovations

Abstract:Topicality. In the last decade, cyberspace has become the fifth separate, specific and important area of armed struggle, along with four traditional ones - "Earth", "Sea", "Air" and "Space". The use of cyber troops and cyber weapons, cyber defense, cyber operations and cyber-attacks is now considered commonplace. Since 2014, Ukraine has been forced to repel hybrid Russian armed aggression, including in cyberspace. But the recognition of cyber defense as a new important component of its defense took place only in March 2016 in the Cyber Security Strategy of Ukraine [1] (hereinafter - the Strategy). At the same time, it states, in particular, that "The basis of the national cybersecurity system will be the Ministry of Defense of Ukraine, the State Service for Special Communications and Information Protection of Ukraine, the Security Service of Ukraine, the National Police of Ukraine, the National Bank of Ukraine." The Strategy also for the first time for the Ministry of Defense of Ukraine (Ministry of Defense) and the General Staff of the Armed Forces of Ukraine (General Staff of the Armed Forces) identified additional new main tasks, namely: measures to prepare the state to repel military aggression in cyberspace; military cooperation with NATO related to cyber security and joint protection against cyber threats; Ensuring in cooperation with the State Service for Special Communications and Information Protection of Ukraine and the Security Service of Ukraine cyber protection of its own information infrastructure. Cyber defense - a set of political, economic, social, military, scientific, scientific and technical, informational, legal, organizational and other measures carried out in cyberspace and aimed at protecting the sovereignty and defense capabilities of the state, preventing armed conflict and repelling armed aggression. Aim and tasks. The purpose of the article is to determine the scientific basis for strengthening the state's cyber defense and creating cyber troops. The organization of effective cyber defense of the state requires the solution of a number of important tasks and, first of all, the elimination of gaps in the regulatory framework. It is unfortunate to recognize that so far, the legislation of Ukraine does not define the basics of cyber defense, especially the purpose, goals, principles and objectives of cyber defense, its subjects and objects, construction, preparation and conduct of such defense, as well as the relevant powers of public authorities. functions and tasks of military administration bodies, other state bodies, responsibilities of officials, rights and responsibilities of citizens of Ukraine, etc. And this, in our opinion, makes it impossible to adequately define the tasks of cyber troops, which should play a leading role in the implementation of cyber defense tasks and should be created to implement the aforementioned decision of the President of Ukraine. Research results. Modern challenges and integrated threats to peace and stability have given rise to new approaches to practice cooperation in the field of cyber defense. The community has arrived agreement that only by joint efforts and on the basis of international law can security be resolved problems of the global information environment in the context of countering the latest information threats. Therefore, the need for policy research is obvious cyber defense of organizations introduced recently, practical consideration of new documents and decisions on their institutional support and implementation in the activities of member states. Conclusion. The transformation of the information paradigm of global development, which is a reflection of new patterns of formation of the modern system of international relations, testifies to the innovations of international cooperation in the field of information and communication and accordingly needs to improve policies for international peace and stability. Modernization of international information security policies is determined by their ability to ensure a multilateral dialogue of international actors, take into account the different positions of global actors in combating the latest information threats and act in accordance with their statutory powers as universal international platforms for consensus on current security issues.

Sergey Vasilkovsky,Aleksandr Ignatov,,

DOI: https://doi.org/10.17323/1996-7845-2020-04-01

2020-12-01

International Organisations Research Journal

Abstract:The spread of digital technologies has led to the global digitalization of all types of public activities. The digital economy emerging during this process has become a leading factor in world economic growth and one of the criteria of national development. The digital economy is based on the Internet, which ensures the functioning of new business models, forms of social interaction and public diplomacy. The Internet governance system differs from other modern international systems of public and political relations in that the leading role in it is played by non-governmental organizations, in particular, the Internet Corporation for Assigned Names and Numbers (ICANN) and the Internet Society (ISOC). The activities of states are significantly limited by the basic properties of the system, which complicates the implementation of the state’s digital sovereignty. The aim of this article is to determine ways to resolve this discrepancy.Analyzing the current state of Internet governance, the authors outline the key characteristics that lead to potential conflict. These include decentralization, an insufficient evaluative level of accountability and lack of legitimacy. The authors analyze ICANN and ISOC toolkits and identify the key instruments that actually make organizations central to the Internet governance system. In conclusion, the authors provide recommendations for action by the international community to mitigate the identified imbalances.

Gian Piero Siroli

DOI: https://doi.org/10.1080/03932729.2018.1453583

2018-04-03

The International Spectator

Abstract:The convergence of telecommunication and computer technologies that has evolved in the field of information and communication technologies (ICT) in the last two decades has had very important effects on new war technologies and the ongoing process of battlefield digitisation. The Stuxnet worm, uncovered in 2010 and responsible for the sabotaging of a uranium enrichment infrastructure in Iran, is a clear example of a digital weapon. The incident shows what is meant by cyber war and what the particular features of this new warfare dimension are compared to the conventional domains of land, sea, air and space, with relevance both at the operational and strategic levels. But cyberspace also extends to the semantic level, within the complimentary field of information warfare involving the content of messages flowing through the Internet for the purposes of propaganda, information, disinformation, consensus building, etc. The overall cyber warfare domain needs to be put into perspective internationally as many countries are developing strong cyber capabilities and an ‘arms race’ is already taking place, showing that these technologies can potentially be used to undermine international stability and security. What is needed is a public debate on the topic and its impact on global stability, and some kind of regulation or international agreement on this new warfare domain, including an approach involving confidence building measures (CBMs).

Hui Li,Xin Yang

DOI: https://doi.org/10.1007/978-981-16-2670-8_2

2021-01-01

Abstract:AbstractIn recent years, with the integration of the Internet and various economic and social fields, the security situation in cyberspace has been changing rapidly. There are more and more network games at the national level and the network attack and defense have become more intense. Network sovereignty has become one of sovereignty that all states are striving for. Cyber war against national targets has emerged and will not abate. Major countries have successively set up cyberspace forces. These facts have demonstrated the existence of a new frontier for humanity, national interests, and digital sovereignty in cyberspace, and demonstrated the absence of international rules or laws that effectively coordinate the management of this space. The chaos in the online media during the US presidential election in 2020, in which the incumbent US president has been banned from several public accounts by major online social media, shows that there is still a long way to go in terms of citizens’ digital human rights and the reasonable and orderly legislative and judicial administration of domestic cyberspace management. All of these topics are discussed in detail in this chapter.

A. Yeremyan,L. Yeremyan

DOI: https://doi.org/10.24833/0869-0049-2022-2-85-100

2022-07-06

Moscow Journal of International Law

Abstract:INTRODUCTION. The world has many times faced cardinal changes triggered by technological development. Creation of the Internet and the emergence of the artificial intelligence have become the major trend of the ongoing changes with the signifi-cant potential to affect all spheres of live, including the military affairs and the geopolitical phenomena in general. In this paper, in particular, we discuss the opportunities and challenges of the rapid technological development in the defense sector in the context of globalization. The pace and the nature of changes in defense dictate the necessity to analyze the current and future challenges of our digitized age in search of adequate and timely legal and strategic practical solutions. Cyber means of warfare are the weapons of the present. Over the past decades, cyber means of warfare have been frequently used against states in the context of international and non-international armed conflicts, as well as outside of such context. Thus, the fundamental scientific questions that arise are the following: a) are the current legal regulations at international and national levels sufficient to address all the challenges caused by the spillover of armed conflicts into the virtual domain and by the future advancement of cyber weapons, and b) are the current cyber weapons or those of the future capable of changing the nature of “war” described by General Carl von Clausewitz yet in the 19th century as a violent method of forcing its political will by one party of the conflict to the other. We have analyzed the above-mentioned questions in the light of the cyber weapons, which already exist and are being used for military purposes, in the light of possible advancement of cyber weapons and integration of AI into them, as well as in the light of the Big Data management. We have reflected on the dangers, which the smart and entirely data driven world would face, from legal and geopolitical perspectives, through the several possible scenarios of development, emphasizing, in particular, the probable military (defense) aspect of data management. While most frequently the specific problems of application of International Law to the traditional cyber warfare situations become subject for academic debates and discussions, we stress the necessity to also analyze the legal and practical implications of further advancement of cyber weapons, as well as the necessity to consider the role of Big Data management in changing the nature of war and, consequently, also the applicable legal solutions. MATERIALS AND METHODS. The works of academics and international scholars in the field of international law and, specifically, international humanitarian law, and military theorists, as well as international treaties, commentaries to international treaties, and national cyber defense and cyber security strategies comprise the theoretical basis for the current paper. The research has been conducted via general and specific scientific methods of cognition, in particular the dialectical method, comparative legal method, method of interpretation, as well as methods of deduction, induction, analysis, synthesis, and others. RESEARCH RESULTS . The ongoing changes taking place in the world have resulted in a situation, when cyber domain is considered one of the traditional war domains. In this context the international community is now debating more flexible interpretations of international legal regulations in order to most efficiently address the new reality. It is also important that states at national level undertake measures to timely and adequately address the challenges already created and those that potentially may take place as a result of the globalization along with the rapid evolution of the cyber technologies and their military use. In the current article we conclude that the categories of the present generation of cyber weapons are lawful. However, the future developments in cyber weapon technologies, as well as the possible quasi-military implications of Big Data management raise many theoretical and practical questions deserving attention. The efforts of the international community and individual states in the field of legal regulation of cyber technologies should be directed toward creating guarantees that the products of the technological development are used for the benefit of humankind. As one of such measures The Authors indicate national cyber security and cyber defense strategies, which according to the Authors, should be elaborated giving due consideration to the possible future developments. DISCUSSION AND CONCLUSIONS. In this paper we analyze the peculiar features of evolution of the world in the 21st century and argue that wars are not static and autonomous phenomena isolated from the global context and all the changes taking place in the world. In particular, we address one of the most popular debates among the scholars in the field of military affairs concerning the issue whether the nature of war has changed or will change overtime, referring to Carl von Clausewitz’s thoughts. With regard to the current generation of cyber weapons, we conclude that even if they might prima facie seem to be inherently indiscriminate (such as, for example, nuclear weapons) in reality cyber weapons are not per se indiscriminate, but rather are weapons with a very high potential of being used indiscriminately or in violation of the principle of discrimination. However, the high potential of indiscriminate use of cyber weapons does not outlaw the cyber weapons as such. We also agree with the widely accepted opinion that the cyber weapons, which are currently used, are sufficiently regulated by the International Law. At the same time, the future tendencies for advancement and improvement of military cyber technologies, inter alia, via integration of artificial intelligence, may seriously call into question the possibility of their application in compliance with the international legal regulations. Finally, the possible scenarios of advancement of Big Data management have led us to the conclusion that big data management per se has the potential of being used as a weapon with less lethal or even non-lethal consequences, however equally effective in enforcing one’s policy as the traditional weapons or potentially kinetic cyber-weapons. If big data analysis at its current stage of development does not produce very accurate predictions, the well-distributed and structured informational flow in the cyber domain is capable of influencing and manipulating behaviours. In such case if Big data monopoly (including both: hardware and sostware) vests in one of several actor, it could drastically change the nature of war by making the element of violence redundant and consequently alter the geopolitical balance. One of the measures for early response to future challenges, in our opinion, could be through reflecting on lex ferenda in cyber security and cyber defence national strategies. From the analysis of the content of different strategies we could conclude that most states acknowledge cyberspace as a military domain like land, air or maritime, analyse the main specific characteristics of current generation of cyber weapons, and set state objectives and action plan for cyber offense, cyber defense and cyber deterrence respectively. While the future advancement of cyber means of warfare and the quasi-military dimension of the big data management seem to be overlooked by states in general.

H. B. Acharya,Sambuddho Chakravarty,Devashish Gosain

DOI: https://doi.org/10.48550/arXiv.1806.07038

2018-06-19

Networking and Internet Architecture

Abstract:The original design of the Internet was a resilient, distributed system, that maybe able to route around (and therefore recover from) massive disruption --- up to and including nuclear war. However, network routing effects and business decisions cause traffic to often be routed through a relatively small set of Autonomous Systems (ASes). This is not merely an academic issue; it has practical implications --- some of these frequently appearing ASes are hosted in censorious nations. Other than censoring their own citizens' network access, such ASes may inadvertently filter traffic for other foreign customer ASes. In this paper, we examine the extent of routing centralization in the Internet; identify the major players who control the "Internet backbone"; and point out how many of these are, in fact, under the jurisdiction of censorious countries (specifically, Russia, China, and India). Further, we show that China and India are not only the two largest nations by number of Internet users, but that many users in free and democratic countries are affected by collateral damage caused due to censorship by such countries.

liu han

2016-01-01

Abstract:The institutional framework of global Internet governance depends upon the conception of the Internet,the cardinal question of which is whether traditional conception of sovereignty applies in cyberspace.Since the Internet’s birth,two conceptions have been colliding:one holds that the Internet creates an independent space separate from sovereign states;the other holds that Internet governance still follows the logic of state sovereignty.While the former conception is popular,the history of DNS governance suggests otherwise.A single state as the de facto sovereign controls the root of DNS by privatizing the power of managing domain names and addresses.As this model has been criticized heavily in recent years,the struggle for ruling the root has entered the domain of traditional international law and politics.Global Internet governance,then,needs to reconcile the two conceptions of the Internet and balance information freedom and public order.

Vladyslav Kubalskiy

DOI: https://doi.org/10.33663/1563-3349-2023-34-496-507

2023-08-01

Yearly journal of scientific articles “Pravova derzhava”

Abstract:Introduction. In the context of the ongoing armed aggression of the russian federation against Ukraine and globalization processes in the information sphere, special attention of legal scholars is drawn to solving the problems of criminal legal protection of Ukraine’s state sovereignty in the information sphere. Against Ukraine, the russian federation uses the latest information technologies to influence the minds of citizens aimed at inciting national and religious hatred, propaganda of an aggressive war, changing the constitutional order by force or violating the sovereignty and territorial integrity of Ukraine. Failure to ensure the sovereignty of the state in thein formation sphere can lead to the loss of sovereignty in general. Therefore, the state needs to ensure proper protection of state sovereignty in the information sphere by means of criminal law. The aim of the article. This research is aimed at defining the system of norms that provide for criminal liability for encroachment on the state sovereignty of Ukraine in the information sphere. Results. State sovereignty in the information sphere should be understood as the supremacy and independence of the state in the information sphere, its ability to:1) to control and regulate information flows from outside and within the state;2) to independently and independently determine the state internal and external information policy and implement it; 3) to form and freely dispose of its own information resources, to form the infrastructure of the national information space; 4) to ensure information security in accordance with the Constitution and legislation of Ukraine and international law, while maintaining the balance of interests of thein dividual, society and the state; 5) to ensure the implementation of the state policyaimed at: a) protection of the national idea, national values and realization of thenational interests of Ukraine through the implementation of the information function of the state and information policy, b) ensuring the security of the individual, society and the state from external and internal threats in the information sphere, c) formation of modern effective mechanisms for ensuring information security that meet the nature and scale of the current challenges. According to the analysis of the provisions of the Special part of the Criminal code,these acts may in certain cases include the following criminal offenses: public calls for violent change or over throw of the constitutional order or seizure of state power (part 2of Art. 109); public calls for actions committed with the aim of changing the boundaries of the territory or state border of Ukraine in violation of the procedure established bythe Constitution of Ukraine (part 1 of Art. 110), high treason (Art. 111), public calls to support decisions and/or actions of the aggressor state, armed formations and/or the occupation administration of the aggressor state; public calls to cooperate with the aggressor state, armed formations and/or the occupation administration of the aggressor state; public calls to non-recognition of the extension of state sovereignty of Ukraine to the temporarily occupied territories of Ukraine (part. 1 of Art. 1111), propaganda by a citizen of Ukraine in educational institutions regardless of type and form of ownership to facilitate the armed aggression against Ukraine, the establishment and consolidation of the temporary occupation of part of the territory of Ukraine, avoidance of responsibility for the armed aggression against Ukraine by the aggressor state, as well as actions of citizens of Ukraine aimed at implementing the education standards of the aggressor state in educational institutions (part 3 of Art. 1111), publiccalls for illegal elections and/or referendums in the temporarily occupied territory of Ukraine (part 3 of Art. 1111), organizing and conducting political events, carrying out information activities in cooperation with the aggressor state and/or its occupation administration aimed at supporting the aggressor state, its occupation administration or armed formations and/or avoiding responsibility for armed aggression against Ukraine, in the absence of signs of treason, active participation in such events (part 6of Art. 1111), espionage (Art. 114), unauthorized dissemination of information on the sending, movement of weapons, armaments and ammunition to Ukraine, movement,movement or deployment of the Armed Forces of Ukraine or other military formations formed in accordance with the laws of Ukraine, committed under martial law or a stateof emergency (Art. 1142), terrorist act (Art. 258), disclosure of state secrets (Art. 328),loss of documents containing state secrets (Art. 329), transfer or collection of data constituting official information collected in the course of operational and investigative, counter intelligence activities, in the field of defense of the country (Art. 330),unauthorized interference with the operation of information (automated), electronic communication, information and communication systems, electronic communication networks (Art. 361), public calls for aggressive war or for the outbreak of a military conflict (Art. 436), production, distribution of communist and Nazi symbols and propaganda of communist and national socialist (Nazi) totalitarian regimes (Article 4361), justification, recognition as lawful, denial of the armed aggression of the Russian Federation against Ukraine, glorification of its participants (Art. 4362) andothers. Conclusions. The criminal law protection of state sovereignty in the information sphere requires qualitatively new approaches of the legislator to the construction of relevant criminal law provisions, taking into account the increased danger and prevalence of such encroachments in the context of the armed aggression of the russian federation against Ukraine. Key words: state sovereignty in the information sphere (information sovereignty),armed aggression of the russian federation, criminal law protection, information security.

Vladyslav Horulko

DOI: https://doi.org/10.26565/2075-1834-2024-37-17

2024-05-28

Abstract:Introduction. In the vast majority of countries, there is a constant trend towards a significant increase in the number and expansion of the spectrum of cyber-attacks with the aim of violating the confidentiality, integrity and availability of state information resources, in particular those distributed on the Internet and objects of critical information infrastructure. Summary of main results. The large-scale deployment of a hybrid war against our state seriously affects all aspects of social life. To a large extent, the strategic success of countering the challenges of hybrid warfare depends on the effective and quality of the legal response. Ensuring an adequate level of cyber security is difficult to imagine without clearly planned joint actions and measures developed by responsible entities, which must be synchronized and implemented according to a single strategic plan and development vector of the national cyber security system of a declarative nature. That is why cyber security in most countries of the world is recognized as an important component of national security, the provision of which is impossible without the formation and functioning of a national system in the field of cyber security, which is based on such principles as respect for the principles and norms of international law, protection of fundamental values defined by current legislation, protection national interests in cyberspace. It is emphasized that the state's national security largely depends on the state of cyber security. It has been proven that hybrid war significantly increases the impact of cyber threats on Ukrainian society and actualizes the danger of targeted cyber attacks as a tool of aggression against our state in the context of global trends regarding threats in cyberspace. Conclusions. In the process of conducting the research, we formulated conclusions in which special attention was paid to the peculiarities of the current state of functioning of the legislation on cyber security and considered promising directions for its improvement in the future, which, in turn, will become the basis for improving the administrative and legal regulation of cyber security in Ukraine.

Tianxiang Dai,Philipp Jeitner,Haya Shulman,Michael Waidner

DOI: https://doi.org/10.48550/arXiv.2205.05473

2022-05-11

Cryptography and Security

Abstract:Internet resources form the basic fabric of the digital society. They provide the fundamental platform for digital services and assets, e.g., for critical infrastructures, financial services, government. Whoever controls that fabric effectively controls the digital society. In this work we demonstrate that the current practices of Internet resources management, of IP addresses, domains, certificates and virtual platforms are insecure. Over long periods of time adversaries can maintain control over Internet resources which they do not own and perform stealthy manipulations, leading to devastating attacks. We show that network adversaries can take over and manipulate at least 68% of the assigned IPv4 address space as well as 31% of the top Alexa domains. We demonstrate such attacks by hijacking the accounts associated with the digital resources. For hijacking the accounts we launch off-path DNS cache poisoning attacks, to redirect the password recovery link to the adversarial hosts. We then demonstrate that the adversaries can manipulate the resources associated with these accounts. We find all the tested providers vulnerable to our attacks. We recommend mitigations for blocking the attacks that we present in this work. Nevertheless, the countermeasures cannot solve the fundamental problem - the management of the Internet resources should be revised to ensure that applying transactions cannot be done so easily and stealthily as is currently possible.

С.Г. Вдовенко,Є.О. Живило,О.О. Черноног,В.М. Докіль,S.G. Vdovenko,,E.A. Zhivilo,A.A. Chernonog,V.N. Dokil,,,

DOI: https://doi.org/10.17721/2519-481x/2022/74-06

2022-01-01

Collection of scientific works of the Military Institute of Kyiv National Taras Shevchenko University

Abstract:The urgency of this work is due to one of the priorities of the national security system of Ukraine to perform the functions and tasks of the defense forces of Ukraine in conditions of destructive activity on the cybersecurity environment of the state. Modern development of information and cyber technologies and global informatization in the world have led to the fact that the information and cybersphere have become the object of various destructive influences on all spheres of society through cyberspace, which complemented existing ones, namely land, sea, air, space and became a sphere conflicts and possible hostilities. States, depending on the degree of their development, build different systems (models) of protection of their information, telecommunications infrastructures, determine the use of technological processes circulating in these systems and protect critical infrastructure from cyber threats, determine the functions, directions and ways of action in cyberspace. Today, more than 60 countries in the world are openly and / or covertly working to improve the functionality of national cybersecurity and cyber defense systems. National and coalition cyber forces are being created, their functions and tasks are being determined, the content and procedure of activity, composition, algorithms for training units, military and civilian specialists are being formed, strategies are being developed, regulatory framework, hardware and software complexes, and special cyber defense software are being improved. and tactics of their application. In general, the development and widespread implementation of communication systems and systems using innovative information and telecommunications technologies in military systems is in accordance with international rules for cyberwarfare, such as the Geneva Convention. At the same time, the main principles of formation of cybersecurity and cyber defense systems of the leading countries of the world are scientifically substantiated legislative, normative-legal, definition-terminological support. Under these conditions, the transformation of the regulatory framework takes into account the constant militarization of national segments of cyberspace, taking into account the criteria (indicators) of threats in cybersecurity and cyber defense of leading countries, the level of system readiness and acquisition of capabilities, etc. To address the issues of regulation and implementation of norms and rules of international organizations in the field of cybersecurity and cyber defense, it is proposed to analyze the current provisions (axiomatics) of the existing legislative, state and departmental regulatory framework, as well as the regulatory framework of international organizations. ITU) on cybersecurity.

English Else

O. Chuvakov

DOI: https://doi.org/10.33098/2078-6670.2024.17.29.311-317

2024-06-12

Scientific and informational bulletin of Ivano-Frankivsk University of Law named after King Danylo Halytskyi

Abstract:Purpose. Taking into account the existing threats to the foundations of the national and military security of Ukraine and in the conditions of rapidly changing geopolitical realities, there is a need to improve the existing criminal policy of the state, as well as some provisions of criminal legislation in the field of proper protection of such objects of criminal law protection against cyber attacks. Methodology. The methodological basis of the research is a set of general scientific principles and approaches, philosophical-worldview and special-scientific methods of learning socio-legal processes and phenomena, including: historical, dogmatic, comparative-legal, formal-logical, systemic-structural, modeling method. Results. In the process of research, it was established the need to improve a number of provisions of the Special Part of the Criminal Code of Ukraine, which will allow strengthening measures of criminal repression in relation to anti-state offenses carried out through cyber attacks, and, accordingly, to reorient the methodological foundations of the existing criminal policy of our state with regard to the severity of criminal repression measures in order to localize such anti-state criminal manifestations in modern conditions. This provision allows to some extent to improve the current criminal legislation on countering cyber attacks on the bases of national and military security of Ukraine, and therefore to significantly increase the effectiveness of combating them at the current stage of such protection of the objects under consideration. Originality. In the process of research, a scientifically based concept of criminal law protection of the foundations of national and military security of Ukraine was developed, which defines new directions of the existing criminal policy of the state in this area, and also contains a number of proposals for improving some provisions of the current criminal legislation in the field of cyber security protection of Ukraine. Practical significance. The results of the research can be used in law-making and law-enforcement activities during the investigation of crimes related to the use of modern means of electronic communications, information and communication technologies, software, hardware and other technical and technological means and equipment against the foundations of national and military security of Ukraine.

А.П. Максименко,Andrii Maksymenko,

DOI: https://doi.org/10.32782/2224-6282/188-7

2023-01-01

Economic scope

Abstract:The constant progress of science and technology, as well as the means of processing and transmitting information and the Internet in particular, has led to the massive spread of digital tools in all aspects of social activity. This leads to a major transformation of the economic and industrial infrastructure, has a significant positive effect on business development, but also has a corresponding effect on the development of crime. Thus, real and potential threats require special attention, particularly in the context of the global security crisis, the spread of wars and armed hybrid conflicts, and the increasing use of digital infrastructure for military purposes. The methods used in the paper include statistical, general mathematical, comparative, dialectical, systematic approach, and system analysis. The graphical method was used to build graphs, and presentation of the study uses the historical method. This article chronologically reveals the consistently contradictory role of economic digitalization in the state’s economic security in times of war. Based on the experience of the digital sector of six countries in four cyber conflicts, the advantages and disadvantages of digital infrastructure in wartime are summarized. The reserve capacity created by the digitalization of the economy to ensure the economic security of the state in the context of hostilities and post-war recovery was assessed. The specificity and possibilities of striking digital infrastructure together with the use of digital technologies in modern conventional wars are analyzed. The dual impact of digital technologies on the security of the state and the sustainability of the national economy is highlighted. The dynamics and effects of Russian cyberattacks against Estonia, Georgia, and Ukraine in the short and long term are analyzed. The effectiveness of counteracting threats to Ukrainian economic security in the digital sphere during the war is proven. The article substantiates further steps to ensure the security of Ukraine's digital economy proactively. The article has practical implications for the development of state policy on measures to ensure economic security in the digital aspect. It can also be used for further systematic study of cyber warfare and threats to the digitalization of the national economy.