Cybersecurity Treaties: A Skeptical View

Jack Goldsmith
Wednesday, March 9, 2011, 9:05 AM
That is the title of an informal essay of mine, just posted as part of a collection of essays on future challenges in national security by the members of the Hoover Institution Task Force on National Security and Law. Here is the introduction:
Prospects for a cybersecurity treaty seem to have improved in the last year.  The Russians have long proposed a cyberwarfare “arms-limitation” treaty.

Published by The Lawfare Institute
in Cooperation With
Brookings

That is the title of an informal essay of mine, just posted as part of a collection of essays on future challenges in national security by the members of the Hoover Institution Task Force on National Security and Law. Here is the introduction:
Prospects for a cybersecurity treaty seem to have improved in the last year.  The Russians have long proposed a cyberwarfare “arms-limitation” treaty.  Until recently, the United States has balked at the proposal. But the U.S. government is in the process of reconsidering its position.  Last June, National Security Agency (NSA) Director Keith Alexander said of the Russian proposal: “I do think that we have to establish the rules, and I think what Russia has put forward is, perhaps, the starting point for international debate.”  Former NSA and Central Intelligence Agency Director General Michael Hayden made a similar proposal in late July.  The United Nations recently reported progress on cybersecurity treaty talks, and the North Atlantic Treaty Organization and the International Telecommunications Union are also exploring possible cybersecurity agreements.  Many commentators think that such agreements are necessary and inevitable. This essay sounds a skeptical note.  Part I explains why international cooperation is thought to be a central solution to the cybersecurity problem.  Part II sketches the cautionary lessons to be gleaned from our experiences with the Cybercrime Convention.   Parts III-V examine three major hurdles to a global cybersecurity treaty: the lack of mutual interest; the problems the United States faces in making concessions adequate to gain reciprocal benefits; and the problem of verification.  Part VI briefly considers the feasibility of narrower and softer forms of cooperation

Jack Goldsmith is the Learned Hand Professor at Harvard Law School, co-founder of Lawfare, and a Non-Resident Senior Fellow at the American Enterprise Institute. Before coming to Harvard, Professor Goldsmith served as Assistant Attorney General, Office of Legal Counsel from 2003-2004, and Special Counsel to the Department of Defense from 2002-2003.

Subscribe to Lawfare