Home The Technical Characteristics of Attribution: How Do You Know Who Did It? 

    The Technical Characteristics of Attribution: How Do You Know Who Did It? 

    On November 17th, 2022, the Washington Foreign Law Society and The Stimson Center jointly hosted a webinar on The Technical Characteristics of Attribution: How Do You Know Who Did It? The panel, moderated by Dr. Christopher Ford (Director of MITRE Corporation’s Center for Strategic Competition and Visiting Fellow at Stanford University’s Hoover Institution), featured Emma Raffray (Chief Research and Analysis Officer at the CyberPeace Institute), John Herring (Senior Government Affairs Manager of the Digital Diplomacy Team at Microsoft), and Rick Harris (Principal Cyber Security Policy Engineer at the MITRE Corporation and Advisory Board Member for the Global Forum on Cyber Expertise). Additionally, Michael Teodori (WFLS President) offered introductory and closing remarks.

    Summary of the event: Following the COVID-19 Pandemic and the Russian invasion of Ukraine, Cyberattacks have continued to pose a grave threat now more than ever, making the development of cyber norms and the need for standardization of attribution procedures imperative. This need for advancement has prompted questions regarding how governments, the private sector, and even international organizations should handle these attacks, cumulatively shaping a considerable demand for improved approaches to managing cyber risks.

    During this roundtable, the panelists discussed several questions surrounding attribution, each giving their distinct perspectives on the issue. Firstly, Senior Government Affairs Manager John Herring helped to clarify the characterization and analysis of cyberattacks, Principal Policy Engineer Rick Harris described the benefits and drawbacks of the Miter Attack Framework, and acting Chief Research Officer Emma Raffray detailed the CyberPeace Institute’s role in protecting victims from cyberattacks. The group then shared their thoughts on various questions from the moderator and the audience. They discussed the types of cyberattacks, the technical aspects and the frameworks necessary to identify said attacks, and even the potential of misattribution, all while framing the real-world consequences and potential responses. The group also discussed the role international institutions could play in streamlining attribution, keeping in mind how publicity and multilateral alliances would play in forging agreements around public attribution statements.

    The Washington Foreign Law Society wishes to thank the panelists for their time and contributions.

    Webinar recording and additional resources area available at: https://wfls.org/event/the-technical-characteristics-of-attribution-how-do-you-know-who-did-it/


    Please enter your comment!
    Please enter your name here