US policy on active cyber defense

Angelyn Flowers, Sherali Zeadally

Research output: Contribution to journalArticlepeer-review

14 Scopus citations

Abstract

Today cyberspace is playing a pivotal role in many sectors of society and has become an integral part in the lives of individuals. Much of the critical infrastructure responsible for basic facilities such as water, energy, food, gas and electricity has become heavily integrated with cyberspace. As a result, securing cyberspace has become an issue of high national priority for many governments around the world and the US is no exception. For quite some time, this has been achieved through passive cyber defense strategies. Unfortunately, in recent years, these strategies have proved ineffective in accomplishing this goal, requiring a shift in strategy from passive to active cyber defense strategies. We examine the US policy on active cyber defense and the circumstances under which active cyber defense may be utilized by the US Government or those acting on its behalf. It can be difficult in some circumstances to distinguish active cyber defense from cyber offense. As may therefore be expected, the utilization of active cyber defense has the potential for creation of political, ethical as well as legal, and operational risks. In a brief comparison of US policy on active cyber defense with a few selected cybersecurity policies of other states the US policy is on the aggressive end of the spectrum, at least among the democratic states.

Original languageEnglish
Pages (from-to)289-308
Number of pages20
JournalJournal of Homeland Security and Emergency Management
Volume11
Issue number2
DOIs
StatePublished - Apr 1 2014

Bibliographical note

Publisher Copyright:
© 2014 by Walter de Gruyter Berlin/Boston 2014.

Keywords

  • cyber attacks
  • cyber defense
  • law
  • policy
  • risk

ASJC Scopus subject areas

  • Business, Management and Accounting (miscellaneous)
  • Safety, Risk, Reliability and Quality
  • Safety Research

Fingerprint

Dive into the research topics of 'US policy on active cyber defense'. Together they form a unique fingerprint.

Cite this