Exploring the Grey Zone of Cyber Defense

Operational, Technical, Legal

Exploring the Grey Zone of Cyber Defense

Roundtable | Free | English

Wednesday, June 26th, 2019


Tel Aviv University - Administration Building(Room 308)


In this discussion we would like to explore whether concepts of legitimate private action can be developed for cyber defense activities taken outside the organizational network. While such activity is accepted to be the sole responsibility of the State, and is legally prohibited in general, the dilemma arises because there are cases which arguably could be socially “net positive”, where such activity by a victim could help mitigate attacks or damage, assist in attribution, and be carried out without creating social risk.


In order to enable a more nuanced discussion, drawing on insights by government and private sector experts, we will elaborate the different aspects of the issue including:
• What technical activities would be useful for a legitimate cybersecurity purpose (i.e mitigation or disruption and not punishment) outside the organizational network?
• What are the risks of such activities?
• Are there procedures that could help mitigate the risk?
• How does this discussion effect innovation of new cybersecurity techniques and tools?


This event is organized in cooperation with the Israel National Cyber Directorate.





Moderator - Amit Ashkenazi , Legal Advisor , Israel National Cyber Directorate

Yves Verhoeven , Head of the Strategy Department , National Agency for Cybersecurity (ANSSI)

Ron Bushar , Vice President & CTO, Government Solutions , Fireeye

Matthias Fischer , Liaison Officer , German Federal Ministry of the Interior

Chris Inglis , Former Deputy Director , NSA ; Managing Director , Paladin ; Professor of Cyber Security Studies , U.S. Naval Academy