For the complete documentation index, see llms.txt.
Skip to main content
Research//DISEC (GA1)

Cyber norms in armed conflict — DISEC (GA1) Background Guide (2025)

Explore key cyber norms in armed conflict for DISEC GA1 2025 with this comprehensive MUN background guide to enhance your debate and resolution drafting.

Updated

Model UN Background Guide

Committee: Disarmament and International Security Committee (DISEC/GA1)
Topic: Cyber Norms in Armed Conflict
Conference Year: 2025

1. Topic Background

The rapid advancement and integration of digital technologies into military operations have transformed the character of armed conflict. Cyber operations—ranging from espionage and sabotage to direct attacks on critical infrastructure—now play a significant role in warfare. Unlike traditional kinetic warfare, cyber operations are often covert, borderless, and difficult to attribute, creating challenges for existing international legal frameworks, including the laws of armed conflict (LOAC).

The issue of establishing cyber norms in armed conflict has gained urgency due to increasing incidents of state-sponsored cyberattacks targeting military and civilian infrastructure. Notable examples include cyber operations allegedly conducted during conflicts in Ukraine and the Middle East, which have demonstrated the potential for cyber tools to cause real-world harm, disrupt civilian life, and escalate tensions. The COVID-19 pandemic further exposed vulnerabilities in critical infrastructure, amplifying concerns about cyber warfare’s humanitarian impact.

This topic is on DISEC’s agenda in 2025 because the international community remains divided on how to regulate cyber operations in armed conflict effectively. While there is growing consensus on the need for norms to prevent escalation and protect civilians, states differ on definitions, attribution, and enforcement mechanisms. The evolving cyber threat landscape necessitates renewed multilateral dialogue to clarify acceptable state behavior, ensure compliance with international law, and prevent destabilizing cyber conflicts.

2. Key Actors

States:

  • United States: A leading proponent of developing clear cyber norms, emphasizing responsible state behavior, and advocating for the applicability of existing international law to cyberspace. It supports transparency and confidence-building measures but remains cautious about binding treaties that could limit its cyber capabilities.
  • Russia: Focuses on state sovereignty and non-interference in cyberspace, often resisting Western-led initiatives perceived as attempts to impose restrictive norms. Russia promotes the idea of a “digital sovereignty” framework and advocates for binding international agreements that include state control over the internet.
  • China: Prioritizes cybersecurity and information control, emphasizing the importance of state sovereignty and stability in cyberspace. China supports multilateral governance but favors frameworks that allow states significant control over their national cyber environments.
  • European Union: The EU champions the development of voluntary norms and confidence-building measures, emphasizing the protection of civilian infrastructure and compliance with international humanitarian law. It promotes cooperation among states and encourages capacity-building in cyber defense.
  • Israel: As a state with advanced cyber capabilities and experience in cyber conflicts, Israel advocates for norms that recognize the realities of cyber warfare while emphasizing the protection of civilian populations and infrastructure.

International Organizations:

  • United Nations Group of Governmental Experts (UNGGE): A key forum where states discuss the application of international law to cyberspace and develop consensus on voluntary norms of responsible state behavior.
  • International Committee of the Red Cross (ICRC): Provides expertise on the application of international humanitarian law to cyber operations and advocates for the protection of civilians and critical infrastructure during cyber conflicts.
  • NATO: Increasingly integrates cyber defense into collective security and promotes cyber norms among its member states and partners, focusing on deterrence and resilience.

3. Bloc Positions

Western Bloc (United States, European Union, Canada, Australia, Japan):
This bloc generally supports the development of voluntary, non-binding cyber norms based on existing international law, including the UN Charter and LOAC. It emphasizes transparency, confidence-building measures, and the protection of civilian infrastructure. While open to future legally binding instruments, this bloc prioritizes flexibility and adaptability given the rapid evolution of cyber threats.

Russia-China Bloc:
Russia, China, and some allied states advocate for greater state sovereignty and control over cyberspace. They emphasize the need for binding international agreements that regulate state behavior in cyberspace, including restrictions on cyber interference in domestic affairs. This bloc is skeptical of Western-led initiatives, viewing them as attempts to impose unilateral norms.

Non-Aligned and Developing States:
Many states in Africa, Latin America, and parts of Asia seek capacity-building, technical assistance, and inclusive dialogue on cyber norms. They often emphasize the protection of critical infrastructure and civilian populations, while expressing concerns about the militarization of cyberspace and the potential for cyber operations to exacerbate inequalities. This bloc tends to support transparency and confidence-building but remains cautious about binding commitments that could limit their national development priorities.

Middle East and Israel:
States in the Middle East have diverse positions but generally prioritize national security and resilience against cyber threats. Israel advocates for norms acknowledging the realities of cyber warfare and stresses the importance of protecting civilian infrastructure. Other regional states may emphasize sovereignty and non-interference, reflecting broader geopolitical tensions.

4. Past UN Action

  • UNGGE Reports (2010, 2013, 2015, 2021): These reports represent consensus documents where states have recognized that international law, including the UN Charter, applies to cyberspace and have outlined voluntary norms for responsible state behavior.
  • General Assembly Resolution 70/237 (2015): Calls for enhanced cooperation to address threats in the field of information and telecommunications in the context of international security.
  • General Assembly Resolution 75/240 (2020): Recognizes the importance of developing norms, rules, and principles of responsible state behavior in cyberspace to maintain international peace and security.
  • ICRC Guidelines on Cyber Warfare (2019): While not a UN resolution, the ICRC has published authoritative guidance on how international humanitarian law applies to cyber operations during armed conflict.

5. Questions a Resolution Should Answer

  1. How can the UN define and promote universally accepted norms of responsible state behavior in cyberspace during armed conflict?
  2. What measures should be established to protect critical civilian infrastructure and services from cyberattacks in armed conflict?
  3. How can attribution challenges in cyber operations be addressed to ensure accountability and prevent escalation?
  4. What role should existing international law, including the laws of armed conflict, play in regulating cyber operations?
  5. How can confidence-building measures and transparency be enhanced among states to reduce the risk of misunderstanding and conflict escalation?
  6. What mechanisms can be created or strengthened for capacity-building and technical assistance to developing states in cyber defense and resilience?
  7. Should the UN pursue legally binding treaties on cyber norms in armed conflict, or focus on voluntary guidelines and best practices?

6. Further Reading

  • UN Documents: Official reports and resolutions from the UN General Assembly and Security Council on cybersecurity and international peace and security, including UNGGE reports and GA resolutions on information security. These documents provide insight into the evolving consensus and disagreements among states.

  • Think-Tank Reports: Analyses and policy papers from institutions such as the Carnegie Endowment for International Peace, the Center for Strategic and International Studies (CSIS), and the Stockholm International Peace Research Institute (SIPRI). These sources offer expert assessments of cyber norms, state behavior, and the implications for international security.

  • News Outlets and Journals: Reputable international news sources (e.g., The Economist, Foreign Affairs) and specialized cybersecurity journals provide current updates on cyber incidents, state responses, and diplomatic developments related to cyber warfare and norm-building efforts. These help contextualize the issue within ongoing global events.

End of Background Guide

Want deeper research?

Get AI-powered research with live sources, follow-up questions, and export to position papers.

Sign up freeAsk a follow-up question