To retaliate or not: a matter of cyber risk perception
<p>This thesis investigates variation in state responses to hostile cyber operations. The central argument is that states’ strategic cultures and historical experiences shape their risk attitudes in cyber attack scenarios, with important consequences for their willingness (or not) to carry out...
Main Author: | |
---|---|
Other Authors: | |
Format: | Thesis |
Language: | English |
Published: |
2021
|
Subjects: |
_version_ | 1797108439439114240 |
---|---|
author | Kaminska, M |
author2 | Kello, L |
author_facet | Kello, L Kaminska, M |
author_sort | Kaminska, M |
collection | OXFORD |
description | <p>This thesis investigates variation in state responses to hostile cyber operations. The central argument is that states’ strategic cultures and historical experiences shape their risk attitudes in cyber attack scenarios, with important consequences for their willingness (or not) to carry out meaningful punishment. To guide the empirical investigation, the thesis develops a conceptual framework drawing from and adapting the “risk society” theory in Sociology – an approach that has not yet been applied in cyber studies. The thesis explains weak state responses as a result of cultural and historical forces that produce sensitivities to the inherent risks and uncertainties of the operational environment of cyberspace. It explains strong state responses as the result of a different sensitivity: preoccupation with an existential threat, which produces a willingness to accept operational risks.</p>
<p>Conceptually, the thesis contributes to domestic-level constructivism in International Relations by elaborating upon the historical and cultural roots of national risk profiles in cyber conflict scenarios. Empirically, it applies the risk framework to three case studies. It argues that as a risk society, the United States failed to punish cyber attacks meaningfully due to concerns about risks arising from the operational environment – particularly the risk of conflict escalation. By contrast, Israel – a threat society – carried out strong punishment because of its preoccupation with the existential threat posed by Iran, which prompted Israel to tolerate operational risks. Although Estonia was also a threat society, it moderated its response to cyber attacks because of its membership within NATO, a risk community whose sensitivities Estonian officials decided to appease because of their desire to retain alliance support in face of the perceived existential threat posed by Russia.</p> |
first_indexed | 2024-03-07T07:29:15Z |
format | Thesis |
id | oxford-uuid:a86c74f3-de25-400c-bf93-d5d8eb45dd49 |
institution | University of Oxford |
language | English |
last_indexed | 2024-03-07T07:29:15Z |
publishDate | 2021 |
record_format | dspace |
spelling | oxford-uuid:a86c74f3-de25-400c-bf93-d5d8eb45dd492022-12-08T21:15:51ZTo retaliate or not: a matter of cyber risk perceptionThesishttp://purl.org/coar/resource_type/c_db06uuid:a86c74f3-de25-400c-bf93-d5d8eb45dd49Technology and international relationsInternational relations and cultureDeterrence (Strategy)Computer securityEnglishHyrax Deposit2021Kaminska, MKello, L<p>This thesis investigates variation in state responses to hostile cyber operations. The central argument is that states’ strategic cultures and historical experiences shape their risk attitudes in cyber attack scenarios, with important consequences for their willingness (or not) to carry out meaningful punishment. To guide the empirical investigation, the thesis develops a conceptual framework drawing from and adapting the “risk society” theory in Sociology – an approach that has not yet been applied in cyber studies. The thesis explains weak state responses as a result of cultural and historical forces that produce sensitivities to the inherent risks and uncertainties of the operational environment of cyberspace. It explains strong state responses as the result of a different sensitivity: preoccupation with an existential threat, which produces a willingness to accept operational risks.</p> <p>Conceptually, the thesis contributes to domestic-level constructivism in International Relations by elaborating upon the historical and cultural roots of national risk profiles in cyber conflict scenarios. Empirically, it applies the risk framework to three case studies. It argues that as a risk society, the United States failed to punish cyber attacks meaningfully due to concerns about risks arising from the operational environment – particularly the risk of conflict escalation. By contrast, Israel – a threat society – carried out strong punishment because of its preoccupation with the existential threat posed by Iran, which prompted Israel to tolerate operational risks. Although Estonia was also a threat society, it moderated its response to cyber attacks because of its membership within NATO, a risk community whose sensitivities Estonian officials decided to appease because of their desire to retain alliance support in face of the perceived existential threat posed by Russia.</p> |
spellingShingle | Technology and international relations International relations and culture Deterrence (Strategy) Computer security Kaminska, M To retaliate or not: a matter of cyber risk perception |
title | To retaliate or not: a matter of cyber risk perception |
title_full | To retaliate or not: a matter of cyber risk perception |
title_fullStr | To retaliate or not: a matter of cyber risk perception |
title_full_unstemmed | To retaliate or not: a matter of cyber risk perception |
title_short | To retaliate or not: a matter of cyber risk perception |
title_sort | to retaliate or not a matter of cyber risk perception |
topic | Technology and international relations International relations and culture Deterrence (Strategy) Computer security |
work_keys_str_mv | AT kaminskam toretaliateornotamatterofcyberriskperception |