At the start of October 2023 the International Committee of the Red Cross published eight cyber warfare guidelines intended for hackers and their communities. These guidelines aim to shift attention away from civilian disruption and toward minimizing harm to civilians as digital conflicts unfold. They frame cyber activity within the broader obligations of international humanitarian law and urge actors to consider the civilian impact of their actions during armed confrontations.
The eight guidelines are these:
– Refrain from attacking civilian objects.
– Do not deploy malware that spreads automatically and targets both military and civilian infrastructure indiscriminately.
– When planning cyber operations against a military site, take every possible step to reduce civilian harm.
– Avoid cyber actions against medical and humanitarian organizations.
– Do not strike facilities essential to civilian survival or that could trigger dangerous repercussions.
– Do not advocate violence or spread fear among civilians.
– Do not promote violations of international humanitarian law.
– Adhere to these rules even if an adversary does not.
The ICRC noted that these guidelines are not technical manuals. They are an accessible distillation of the broader IHL obligations that govern peaceful and hostile actions in cyberspace. Their purpose is to remind hackers and hacktivists of their responsibilities and the human consequences of cyber operations.
According to the ICRC, the objective is to raise awareness of the minimum standards that hackers should know and uphold to protect people’s security and dignity amid cyber activities. The organization also cited a rise in cyber operations targeting civilian infrastructure and critical services such as hospitals, schools, transportation, energy facilities, and other essential systems. The trend spans conflicts beyond the Russia United States context, reflecting a wider international pattern.
Analysts highlight examples from various regions where cyber operations have affected civilian life, including incidents linked to armed conflicts in multiple countries. They point to the prevalence of large scale DDoS campaigns and targeted intrusions that disrupted schools, banks, media outlets, and utilities. Beyond technical intrusions, some experts describe information and psychological operations designed to intimidate or mislead the public during cyber campaigns.
From opposition to acceptance
Initial reactions from some hacker groups questioned the practicality and fairness of the guidelines. For instance, certain collectives viewed compliance as creating unequal leverage. Over time some groups softened their stance and committed to honoring the guidelines in the future, while others remained skeptical about their enforceability.
Industry commentators have argued that while the ICRC rules represent an important blueprint, enforcement is unclear because there is no centralized authority over hacktivist conduct. They noted that there is a gap between ethical rhetoric and real world practice, given the decentralized and often anonymous nature of cyber operations. Critics also argued that large institutions may disregard norms when pursuing national security objectives or strategic objectives that override humanitarian considerations.
Experts emphasize that the guidelines are most effective when paired with broader political and legal frameworks. They suggest practical steps such as clarifying accountability for cyber misuses and developing international norms that can be recognized across diverse legal systems. The central question remains who should oversee compliance and how to address violations when the actors operate outside traditional state structures.
Some voices in the security community warn that the cyber landscape demands realistic expectations. The non centralized nature of cyber activism means that even strong ethical commitments among groups may not consistently translate into lawful, humane behavior. Nevertheless, the ICRC view remains that intent matters and that clearer norms can reduce harm to civilians in digital conflicts.
Ongoing efforts and future direction
The ICRC has not abandoned its aim to influence hacker behavior toward civilian protection and respect for humanitarian law. It is exploring new ideas such as digital emblems that could signal protections for civilian infrastructure online, a concept inspired by the physical Red Cross emblem that marks hospitals and aid centers in armed conflicts. While the current legal framework protects medical and humanitarian facilities in the physical world, the cyberspace domain presents unique challenges that require collaboration with international partners to develop credible protections for digital critical infrastructure.
As part of this effort, a dedicated cyberspace delegation will be formed in Luxembourg. This team of cybersecurity experts will engage with hacking communities to align cyber norms with humanitarian goals and to gather practical insights on how protections can be extended into digital environments. The overarching aim is to foster broad international support for responsible cyber conduct that safeguards civilian needs and dignity in conflict scenarios.
Related posts:
ICRC Eight Rules for Cyber Warfare: Protecting Civilians in Digital Conflicts Ethical norms in cyber warfare: can rules protect civilians? ICRC President Plans Putin Meeting and Mediation Efforts in Ukraine Conflict ICRC explores digital emblem to shield civilian assets in cyberspace H2: Humanitarian Crisis in Gaza: ICRC Warning on Escalating Needs and Health System Strain Cyber Conflict in the Middle East: Trends, Groups, and Impacts ICRC Policy on Public Commentary and Neutral Mediation in Ukraine Russia Emphasizes Ukraine and US Roles in Cyber Attacks, with Global Implications 10 Essential Digital Photography Exercises Captain Flint24 and the State Cyber Debate Expanded View on Russia’s Cyber Insurance Trends and Forecasts Cyber Threats and the Ukraine Conflict: A North American Security Perspective