What follows is a guest post from Nicholas Weaver, a computer security researcher at the International Computer Science Institute in Berkeley: Properly configured, an iOS device is perhaps the most sec...

Hacking the hackers. Companies are getting more aggressive in responding to attacks, but the law limits how far they can go.

It isn't every day you have an exchange with a journalist who just comes out and admits—twice, actually—that a story in his publication contains made up facts.

A few days ago, Ashley had an excellent post flagging an important shift in U.S.

The results are in. Lawfare's “Name that Database” contest is now closed. All we can say is that Lawfare readers are a remarkably creative—and scary—bunch of folks. Some of these ideas are really qui...

We expected our piece on liability standards with respect to encryption would provoke strong reactions. We did not expect ad hominim attacks, outright lies, or a near-total failure to engage our legal an...

In the first part of this series, we looked at the question of whether Apple could be held liable in a negligence tort for refusing to retain the ability to provide law enforcement with decrypted communi...

What the Aspen Security Summit brought this year were strong words by former Secretary of Homeland Security Michael Chertoff and former Director of the National Counterintelligence Center Michael Leiter ...

If you haven’t yet had a chance to mentally pause from digesting all the heavy news of the summer – ISIL’s expansion, domestic mass shootings, and extraordinary breaches of sensitive information, to name...

Here are several other unclassified government databases the PLA should target—and that our intelligence community might give some thought to protective.