The main aim of this course is to explain and demonstrate the structure and functioning of national, European and international legal regulatory framework of cybersecurity and cyber-defence.
At the end of the course students should be able to:
understand the difference between cybersecurity and cyber-defence
understand the sources of EU cybersecurity law (the NIS Directive respectively)
analyse current international initiatives in cybersecurity and cyber-defense
understand and apply reporting and responding obligations regarding cybersecurity incidents
understand and analyse functioning of general and sectoral CSIRT teams
critically analyse legal consequences of active countermeasures
practically apply the cyber-rules of engagement
Relation between the cyber security and cyber defence
Mechanisms of cyber governance and information sovereignty
National, European international cyber security law - an overview
NIS Directive, national implementations and functioning of CSIRTs
National and international cyber-defence law - an overview
Use of force and rules of engagement
Role and regulation of ISPs in cybersecurity and cyber-defence
State of peace and state of war in cyberspace
Protection of critical information infrastructures
Security vs. privacy
Summary of the course
KOSSEFF, Jeff. Cybersecurity law. Hoboken, NJ: John Wiley, 2017.
SCHMITT, Michael N., ed. Tallinn manual on the international law applicable to cyber warfare: prepared by the International Group of Experts at the invitation of the NATO Cooperative Cyber Defence Centre of Excellence. Cambridge: Cambridge University Pre
The course consists of in-class interactive seminars and course materials available through the on-line platform.
Credits are awarded upon successful completion of at least 3 assignments (short research essays submitted through the on-line platform).