CYBERSECURITY LAW

This course will consider legal and policy challenges arising from rapidly evolving threats in cyberspace. It will define an array of cyber threats, and consider the ways in which they impact a range of governmental and non-governmental actors and entities. It will identify the domestic and international legal frameworks that regulate conduct in cyberspace--including laws related to cybercrime, cyberespionage, and cyberwar--and examine substantive and institutional questions such as: What existing principles limit cyber threats? What are the norms emerging through state practice? How should we fill in the gaps? Who should make these decisions? How should they be enforced? The course will explore these questions within the context of broader policy debates about Internet governance and the role of governmental and non-governmental actors in defending against cyber threats; state restrictions on civil rights and liberties in defending against cyber threats; allocation of decision-making among (and within) the branches for U.S. cybersecurity; and issues of secrecy and accountability. The objective of this course is to deepen our understanding of the existing threats and protections in cyberspace, the regulatory challenges that exist, and the institutions that should address them. No technical knowledge is required. Familiarity with public international law, administrative law and criminal procedure is helpful, but not necessary. International law concepts will be introduced as necessary.