Stuxnet, Schmitt Analysis, and The Cyber Use of Force Debate

Abstract

One of the many vexing issues surrounding cyberspace involves whether peacetime cyber operations can constitute a prohibited use of force under Article 2(4) of the U.N. Charter. Among the analytic frameworks developed to address this issue, one of the most enduring is the so-called Schmitt Analysis. It is also the only model that purports to adhere to preexisting legal norms, including Article 2(4). The framework consists of seven factors that states are likely to consider when characterizing cyber attacksseverity, immediacy, directness, invasiveness, measurability, presumptive legitimacy, and responsibility. When the framework first debuted in 1999, however, there were few clear examples of state cyber coercion and the prospect of cyber-induced physical damage was largely theoretical. In light of several recent instances of suspected state cyber coercionculminating in damage to Iranian nuclear facilities by the Stuxnet wormit is now worth evaluating the frameworks continued utility.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Feb 15, 2012
Accession Number
AD1018135

Entities

People

  • Andrew C. Foltz

Organizations

  • Air War College

Tags

Communities of Interest

  • Cyber

DTIC Thesaurus Topics

  • Air Force
  • Computer Networks
  • Cyber Threats
  • Cyber Warfare
  • Cyberattacks
  • Cyberspace
  • Cyberspace Operations
  • Department Of Defense
  • Information Operations
  • International Law
  • International Relations
  • Military Aircraft
  • National Security
  • United States
  • United States Government
  • War Colleges
  • Warfare

Readers

  • Strategic Security Studies
  • Theoretical Analysis.

Technology Areas

  • Cyber
  • Cyber - Legality in Cyberspace