At a time when the UN is starting two new diplomatic processes to develop further norms of responsible state behaviour in cyberspace, ICT4Peace is disturbed to learn of alleged actions incompatible with a central norm previously agreed to at the UN.
Installing malware in civilian power grids is contrary to the norm that figures in the consensus recommendations of the 2015 UN Group of Governmental Experts that were subsequently approved by the UN General Assembly.
Civilian power grids are not legitimate military targets and ICT4Peace urges all parties possessing offensive cyber capabilities to refrain from actions which aim to damage or disrupt this critical infrastructure. States should apply their energies to pursuing cooperative security measures with respect to their cyber operations, rather than threatening cyber-peace by investing in digital weaponry specifically directed at critical public infrastructure. Cyber interference with critical infrastructure is also not in keeping with the cooperative cyber confidence-building measures, Member States have pledged to implement in the context of the Organization for Cooperation and Security in Europe.
