Deterring SLCAs by Establishment of ACSC Based on Internet Peace Principles

Abstract

Currently, State-Led CyberAttacks (SLCAs), directly and indirectly supported by various states, have increased continuously and the damage has been significant. Events such as the WannaCry incident and the hacking of India's nuclear facilities can have devastating and fatal consequences. However, deterrence technology against cyberattacks remain insufficient, and cooperation among countries is also inadequate. Prevention of SLCAs requires not only technical methods but legal and policy solutions. Considering that Asian countries particularly are in the early stages of ICT applications in the manufacturing industry as part of the Fourth Industrial Revolution era, Asian industries overall and the digital economy are exposed to the possibility of sophisticated cyberattacks and exploitation of weak cybersecurity framework. The study proposes that Asian countries establish what is termed the Asia Cybersecurity Convention (ACSC) to deter SLCAs, which consists of government representatives and private technical, legal, institutional experts and organizations. The study also suggests the Internet Peace Principles (IPPs) as a cybersecurity norm for the ACSC, by which cyber capabilities should not be used to attack other countries or as a means by which to launch malicious detour attacks.