Microsoft is urging countries to step up protection for civilians from state-sponsored cyber hacking, through the formation of international agreements similar to the Geneva Conventions and an independent group to investigate and share evidence on the attacks.
The company also is advocating bilateral accords, such as the possibility that “the US and Russia can hammer out a future agreement to ban the nation-state hacking of all the civilian aspects of our economic and political infrastructures”, Microsoft chief legal officer Brad Smith wrote on Tuesday in a blog post outlining the proposals.
Smith wants nations to back recommendations made in 2015 by experts from 20 countries, which included suggestions such as barring governments from damaging others’ critical infrastructure or using ICT for malicious activity. He likened this sort of agreement to the 1949 Geneva Conventions that established international standards for the treatment of civilians in wartime.
“The time has come for governments to adopt a Digital Geneva Convention to protect civilians on the Internet,” wrote Smith, who is speaking on Tuesday at the RSA Conference on Internet security in San Francisco.
Individual technology companies also need to do more to provide security for customers, he said. Microsoft, which is fighting the US justice department over customer data in two separate cases, and other technology companies must remain neutral — a “digital Switzerland” — and retain customer trust worldwide, Smith wrote.
“We will assist and protect customers everywhere,” he wrote. “We will not aid in attacking customers anywhere.”
The issue of nation-state hacking has heated up in the aftermath of the US election, with the intelligence community’s assessment that Russia sought to sway the election in favour of US President Donald Trump. In his blog, Smith referenced the cyberattack on Sony by North Korea in 2014 as bringing the issue to the fore.
“We suddenly find ourselves living in a world where nothing seems off limits to nation-state attacks,” he wrote. “Conflicts between nations are no longer confined to the ground, sea, and air, as cyberspace has become a potential new and global battleground.” — (c) 2017 Bloomberg LP