Aude Géry is a post-doctoral fellow at GEODE, a research and training center on the geopolitics of the datasphere hosted at the University of Paris 8. Her research focuses on the international regulation of digital space and more particularly on the external legal policies of States, multilateralism in the field of ICTs in the context of international security and the normative issues flowing from the adoption of instruments on digital issues. Her thesis was awarded the thesis prize of the French branch of the International Law Association and the third thesis prize of the IHEDN and a special mention for the Léon Bourgeois Award. She is one of the co-chairs of the Committee on Digital Challenges for International Law for the 150 anniversary of the International Law Association.

‍

The development of information and communication technologies (ICTs) has brought tremendous social, political and economic opportunities for our societies, making ICTs an indispensable tool to achieve the U.N. Sustainable Development Goals.  At the same time, the number and sophistication of cyberattacks, whether conducted by States or non-state actors, keep increasing. As a consequence, cyber threats are putting all aspects of our societies at risk, preventing us from facing future crisis, and making it one of the most urgent issues for international peace and security.

Cyber threats have been addressed at the multilateral level for more than 20 years now, with Groups of governmental experts and an Open-ended working group adopting consensus reports defining a framework of responsible behavior. Since 2013 and the recognition that international law applies in cyberspace,  States have increasingly put international law at the center of their diplomatic efforts. International law is being given more and more attention and, so far, 22 States have published documents dedicated to the issue of the interpretation of international law to States’ conduct in cyberspace. However, the situation keeps deteriorating, mainly because the geopolitical context limits States’ willingness to act. Indeed, cyber threats are first and foremost seen as a geopolitical threat rather as a systemic one.  In this context, how can we explain the discrepancy between international efforts and the growing instability of the digital space? Is international law failing at dealing with this global threat? This article will look at how States talk about international law to show that, despite apparent discourses on international law and international regulation on ICTs in the context of international security, States are very reluctant to turn to international law, putting the security and stability of the digital space under pressure and thus threatening international peace and security.