The Deterrence and Prevention of Cyber Conflict

The Oxford Handbook of Cyber Security Pub Date : 2021-11-04 DOI:10.1093/oxfordhb/9780198800682.013.16

P. Cornish

{"title":"The Deterrence and Prevention of Cyber Conflict","authors":"P. Cornish","doi":"10.1093/oxfordhb/9780198800682.013.16","DOIUrl":null,"url":null,"abstract":"For all its apparent complexity, deterrence is built upon a relatively straightforward premise: that fear of adverse consequences can serve to prevent unacceptable behaviour. In traditional deterrence theory, particularly that which matured during the Cold War, prevention could be achieved both by fear of punishment and by fear of failure: by punitive measures that would be undertaken in response to a transgression and intended to inflict some pain, damage, or loss upon the transgressor; or by a denial posture intended to impress upon an adversary that the complexities of the defences will be technologically insurmountable and/or the costs of doing so unbearably high. Fresh thinking is required to make deterrence relevant to the cyber era. The challenges of cyber warfare are described here as the ‘four zeros’: ‘zero day’ vulnerability to novel malware; ‘zero source’ or non-attribution of an attack; ‘zero effect’ or covert, non-detectable attack; and ‘zero intent’ or lack of clarity as to an adversary’s intentions. These challenges can be met by allowing deterrence to function in different ways as circumstances allow or require: punitive, constructive, and protective deterrence.","PeriodicalId":336846,"journal":{"name":"The Oxford Handbook of Cyber Security","volume":"161 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2021-11-04","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"The Oxford Handbook of Cyber Security","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1093/oxfordhb/9780198800682.013.16","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

Abstract

For all its apparent complexity, deterrence is built upon a relatively straightforward premise: that fear of adverse consequences can serve to prevent unacceptable behaviour. In traditional deterrence theory, particularly that which matured during the Cold War, prevention could be achieved both by fear of punishment and by fear of failure: by punitive measures that would be undertaken in response to a transgression and intended to inflict some pain, damage, or loss upon the transgressor; or by a denial posture intended to impress upon an adversary that the complexities of the defences will be technologically insurmountable and/or the costs of doing so unbearably high. Fresh thinking is required to make deterrence relevant to the cyber era. The challenges of cyber warfare are described here as the ‘four zeros’: ‘zero day’ vulnerability to novel malware; ‘zero source’ or non-attribution of an attack; ‘zero effect’ or covert, non-detectable attack; and ‘zero intent’ or lack of clarity as to an adversary’s intentions. These challenges can be met by allowing deterrence to function in different ways as circumstances allow or require: punitive, constructive, and protective deterrence.

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

网络冲突的威慑和预防

尽管威慑看起来很复杂，但它建立在一个相对简单的前提之上:对不利后果的恐惧可以防止不可接受的行为。在传统的威慑理论中，特别是在冷战期间成熟的威慑理论中，预防可以通过害怕惩罚和害怕失败来实现:通过对违法行为作出反应而采取的惩罚性措施，旨在对违法者造成一些痛苦、损害或损失;或者采取一种拒绝的姿态，目的是让对手意识到，防御的复杂性在技术上是无法克服的，或者这样做的成本高得令人难以忍受。网络时代的威慑力需要新的思维。网络战的挑战在这里被描述为“四个零”:“零日”漏洞对新型恶意软件;“零源”或不归因攻击;“零效应”或隐蔽的、无法察觉的攻击;“零意图”或对对手的意图缺乏明确。这些挑战可以通过允许威慑在环境允许或需要的情况下以不同的方式发挥作用来应对:惩罚性威慑、建设性威慑和保护性威慑。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文去求助