Public attribution in the US government: implications for diplomacy and norms in cyberspace

Heajune Lee

doi:10.1080/25741292.2023.2199964

Policy Design and Practice (Apr 2023)

Public attribution in the US government: implications for diplomacy and norms in cyberspace

Heajune Lee

Affiliations

Heajune Lee: Technology and International Affairs Program, Carnegie Endowment for International Peace, Washington, DC, USA

DOI: https://doi.org/10.1080/25741292.2023.2199964
Journal volume & issue: Vol. 6, no. 2
pp. 198 – 216

Abstract

Read online

AbstractIn recent years, states have publicly assigned responsibility for cyber incidents to state adversaries with increasing frequency. While emerging scholarship provides insight into the strategic rationale for public cyber attribution, the literature lacks a rigorous understanding of when and under what circumstances states publicly attribute cyber incidents in practice. This paper seeks to address this gap by providing an empirical study of public cyber attribution by the US government from 2010–2020. Based on an original dataset, I find that US government actors publicly attribute cyber incidents through four distinct “channels”–criminal, technical, official policy, and unofficial policy. The purpose, timing, and state subject of attribution appear to vary consistently by channel, while organizational interests and channel-specific factors shape the context in which public attribution takes place. The lack of a unified approach creates challenges for US diplomacy—as adversaries may misperceive attributions as reflecting a whole-of-government agenda—and informs the normative environment of cyber operations in ways potentially unanticipated by individual agencies.

Published in Policy Design and Practice

ISSN: 2574-1292 (Online)
Publisher: Taylor & Francis Group
Country of publisher: United Kingdom
LCC subjects: Political science; Social Sciences
Website: https://www.tandfonline.com/journals/rpdp

About the journal

Abstract

Keywords