{"id":6625,"date":"2017-02-14T10:30:19","date_gmt":"2017-02-14T18:30:19","guid":{"rendered":"http:\/\/www.palada.net\/index.php\/2017\/02\/14\/news-444\/"},"modified":"2017-02-14T10:30:19","modified_gmt":"2017-02-14T18:30:19","slug":"news-444","status":"publish","type":"post","link":"http:\/\/www.palada.net\/index.php\/2017\/02\/14\/news-444\/","title":{"rendered":"Microsoft&#039;s president wants a Geneva Convention for cyberwar"},"content":{"rendered":"<p><img decoding=\"async\" src=\"http:\/\/zapt3.staticworld.net\/images\/article\/2017\/02\/brad_smith_2014-1134x1200-100708888-large.3x2.jpg\"\/><\/p>\n<p><strong>Credit to Author: Blair Hanley Frank| Date: Tue, 14 Feb 2017 08:52:00 -0800<\/strong><\/p>\n<p> Microsoft is calling for a Digital Geneva Convention, as global tensions over digital attacks continue to rise. The tech giant wants to see civilian use of the internet protected as part of an international set of accords, Brad Smith, the company\u2019s president and chief legal officer, said <a href=\"https:\/\/blogs.microsoft.com\/on-the-issues\/2017\/02\/14\/need-digital-geneva-convention\/\" target=\"_blank\">in a blog post<\/a>. <\/p>\n<p> The manifesto, published alongside his keynote address at the RSA conference in San Francisco on Tuesday, argued for codifying recent international norms around cyberwarfare\u00a0and for establishing an independent agency to respond to and analyze\u00a0cyberattacks. <\/p>\n<p> What\u2019s more, he called on the tech industry to band together to protect users. <\/p>\n<p> Such an agreement is necessary, in his opinion, because warfare in cyberspace involves infrastructure that\u2019s controlled and operated by private companies like Microsoft. Furthermore, some attacks, like the 2014 <a href=\"http:\/\/www.computerworld.com\/article\/2865330\/fbi-director-again-points-to-north-korea-for-sony-attack.html\">Sony hack<\/a> widely attributed to North Korea, have targeted civilians. <\/p>\n<p> \u201cThere\u2019s an additional consequence that results from all this,\u201d Smith wrote. \u201cThe tech sector today operates as the first responders to nation-state attacks on the internet. A cyberattack by one nation-state is met initially not by a response from another nation-state, but by private citizens.\u201d <\/p>\n<p> Smith cited an attack that Microsoft handled last year\u00a0when it discovered a nation-state actor using domains aping trademarks it holds. Microsoft then got a court order allowing it to redirect the traffic going to those domains, blocking the attack. <\/p>\n<p> \u201cSince last summer, in response to one extended such nation-state attack, we have taken down 60 domains in 49 countries spread over six continents,\u201d he wrote. <\/p>\n<p> Smith called for tech companies to unite on cybersecurity issues to protect users. Furthermore, he called for the industry to promise not to assist\u00a0with offensive attacks. <\/p>\n<p> \u201cEven in a world of growing nationalism, when it comes to cybersecurity the global tech sector needs to operate as a neutral Digital Switzerland,\u201d Smith wrote. \u201cWe will assist and protect customers everywhere. We will not aid in attacking customers anywhere. We need to retain the world\u2019s trust. And every government, regardless of its policies or politics, needs a national and global IT infrastructure that it can trust.\u201d <\/p>\n<p> He also wants those tech companies to contribute to an agency that would play a role similar to the International Atomic Energy Agency. Such an agency would, in his vision, include participants from governments, private industry, academia and civil society. That new group would be empowered to investigate attacks and attribute particular actions to certain nations. <\/p>\n<p> All of this is complicated by the current geopolitical climate. In one of his first actions as president, Donald Trump withdrew U.S. support from the Trans-Pacific Partnership, a sweeping free trade agreement negotiated under the watch of his predecessor that included the participation of Australia, Canada, Japan and other nations. <\/p>\n<p> It\u2019s unclear if Trump would be inclined to take part in a multilateral diplomatic exercise, such as the one Smith is suggesting. Such a convention on cybersecurity norms is made doubly difficult by reports that <a href=\"http:\/\/www.pcworld.com\/article\/3155433\/election-hacking\/us-putin-ordered-cyber-meddling-to-favor-trump.html\">Russian President Vladimir Putin ordered attacks<\/a> on the Democratic National Committee in an attempt to get Trump elected. <\/p>\n<p><a href=\"http:\/\/www.computerworld.com\/article\/3169682\/security\/microsofts-president-wants-a-geneva-convention-for-cyberwar.html#tk.rss_security\" target=\"bwo\" >http:\/\/www.computerworld.com\/category\/security\/index.rss<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p><img decoding=\"async\" src=\"http:\/\/zapt3.staticworld.net\/images\/article\/2017\/02\/brad_smith_2014-1134x1200-100708888-large.3x2.jpg\"\/><\/p>\n<p><strong>Credit to Author: Blair Hanley Frank| Date: Tue, 14 Feb 2017 08:52:00 -0800<\/strong><\/p>\n<article>\n<section class=\"page\">\n<p>   Microsoft is calling for a Digital Geneva Convention, as global tensions over digital attacks continue to rise. The tech giant wants to see civilian use of the internet protected as part of an international set of accords, Brad Smith, the company\u2019s president and chief legal officer, said <a href=\"https:\/\/blogs.microsoft.com\/on-the-issues\/2017\/02\/14\/need-digital-geneva-convention\/\" target=\"_blank\">in a blog post<\/a>.<\/p>\n<p> The manifesto, published alongside his keynote address at the RSA conference in San Francisco on Tuesday, argued for codifying recent international norms around cyberwarfare\u00a0and for establishing an independent agency to respond to and analyze\u00a0cyberattacks.<\/p>\n<p class=\"jumpTag\"><a href=\"\/article\/3169682\/security\/microsofts-president-wants-a-geneva-convention-for-cyberwar.html#jump\">To read this article in full or to leave a comment, please click here<\/a><\/p>\n<\/section>\n<\/article>\n","protected":false},"author":4,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"colormag_page_container_layout":"default_layout","colormag_page_sidebar_layout":"default_layout","footnotes":""},"categories":[11062,10643],"tags":[11076,714],"class_list":["post-6625","post","type-post","status-publish","format-standard","hentry","category-computerworld","category-independent","tag-it-industry","tag-security"],"_links":{"self":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/6625","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/comments?post=6625"}],"version-history":[{"count":0,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/6625\/revisions"}],"wp:attachment":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/media?parent=6625"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/categories?post=6625"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/tags?post=6625"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}