From Articulation to Implementation: Enabling Progress on Cybersecurity Norms

Resource type

Scott Charney, Erin English, Aaron Kleiner, Nemanja Malisevic, Angela McKay, Jan Neutze, Paul Nicholas

The paper, elaborated by Microsoft, proposes a three-part organising framework for the cybersecurity norms dialogue: offensive norms, which are applicable to nation-states and concern self-restraint in the conduct of cyber operations; defensive norms, which are relevant to both governmental and non-governmental actors and adress defensive measures against nation-state activities in cyberspace; and industry norms outlining industry’s role in mitigating the risks facing technology users from nation-state activity in cyberspace.