Follow us on social

Risks are higher than ever for US- China cyber war

Risks are higher than ever for US- China cyber war

As Beijing's capabilities grow, both sides need to establish trust and a dialogue for real crisis management

Analysis | Asia-Pacific

Last month the Justice Department published a press release announcing that seven Chinese nationals have been charged with “conspiracy to commit computer intrusions and conspiracy to commit wire fraud.”

This announcement came on the heels of warnings from Cybersecurity and Infrastructure Security Agency (CISA) Director Jen Easterly and National Cyber Director Harry Coker that Chinese hackers are making a strategic shift to target critical infrastructure, are likely able to launch cyberattacks that could cripple that infrastructure, and are increasingly exploiting Americans’ private information.

It’s apparent then that a conflict between China and the United States would include disruptive, dangerous cyberwarfare. Indeed, as U.S.-China military-to-military communications restart, cyber needs to become a key part of these conversations to develop bilateral crisis management mechanisms.

Unfortunately, cyber crisis management is still in its infancy. The United States and China have engaged in multiple bilateral and multilateral dialogues on cyber-related issues in the past. For example, the 2015 summit between President Obama and Xi Jinping created a series of agreements — tacit and explicit — on cyber espionage, the joint investigation of cybercrimes, and a process that eventually produced the U.S.-China High-Level Joint Dialogue on Cybercrime and Related Issues.

However, direct U.S.-China official dialogues have not led to substantial cooperation. President Biden warned Xi during a recent call against China using cyberattacks to target sensitive infrastructure, but no solutions nor potential dialogues appear to have been brought up.

There is no dearth of unofficial dialogues, and some have proposed discrete steps that would enhance U.S.-China cyber relations and crisis management mechanisms, such as coming to mutual definitions of cyber terms, strengthening bilateral communications, and promoting restraint in cyber usage. Unfortunately, despite the many attempts at facilitating U.S.-China cyber dialogues and improved relations, no concrete standards or guidelines on cyber usage in a potential conflict have been adopted, nor have U.S.-China cyber relations appeared to improve.

Both Washington and Beijing are familiar with the potential harm cyber can do when expertly implemented. Stuxnet, a malicious computer worm known to be created and implemented by the United States and Israel, damaged the centrifuges Iran used for its nuclear-enrichment program. China’s cyberespionage campaigns to steal sensitive technologies and designs from American businesses have led to strategic vulnerabilities — like with the theft of designs for the F-35 Joint Strike Fighter’s self-diagnostic system in 2009.

Concerns about cyber espionage have been a defining feature of U.S.-China technology and business relations since the early 2000s, extending into the rhetoric to ban TikTok. Cyber exploits could cut off power grids, like in Ukraine in 2015 and 2016, cripple wastewater treatment facilities, or render sources of vital information useless — as witnessed in the ongoing Russian invasion of Ukraine.

If a conflict were to break out between the United States and China, wherever and however it might, the reality is that cyber will be a key weapon in a well-rounded arsenal of traditional and emerging weaponry. Fortunately, there may be some space for negotiation. A RAND study — built upon “insights from interviews with leading Chinese and American cyberspace policy experts across [their] governments, militaries, think tanks, and academic communities” — found that China may be more likely to come to a bilateral agreement wherein both the United States and China agree not to cyberattack each other and limit the targeting of critical infrastructure.

There is also some precedent which would suggest that the Chinese government thinks that cyberattacking critical infrastructure should be off-the-table. In 2015, China participated in the drafting of and signed a note by the Secretary General as a member of a United Nations group of governmental experts, in which the participants recommended that states not target critical infrastructure with cyber. Further emblematic of this willingness to find common ground on cyberthreats is China’s 2015 agreement with Russia to not cyberattack one another. However, the RAND study also found that trust was one of the main impediments to creating such an agreement with the U.S. Neither the U.S. nor Chinese interviewees knew if they could fully trust the other side to adhere to any agreements against this kind of cyberespionage and exploitation.

Thus, any agreement like the China-Russia cyber “non-aggression pact” would need to foster transparency and trust between the relevant Chinese and U.S. parties. The agreement would need to be paired with bilateral channels designed to communicate information on cyber events, both mundane and arising from a crisis. Transparent forums between the U.S. and Chinese military, with a focus on cyber elements, is an absolutely vital step to navigate crises effectively and promote a restraint-based foreign policy and defense strategy, especially given the pervasive nature of cyber threats.

Luckily, in recent months, Washington and Beijing have re-established military-to-military communications, expressed continued interest in establishing dialogues on the use of artificial intelligence (AI), and have otherwise collaborated in the United Nations on a resolution establishing principles for AI development. While it is not cyber-specific, AI and cyber are conjoined issues. It shows that there may be space for U.S.-China collaboration on emerging technologies, which could lead to more robust dialogues and crisis management mechanisms. These could be vital trust-building exercises that lead to further cooperation on issues related to cybersecurity.

Ultimately, there is a path forward for the United States and China to come to an understanding on cyberwarfare in at least some domains. To this end, both sides need to create new bilateral forums to discuss and advance crisis management coordination on these issues of common concern about cyberwarfare.

shutterstock/Lightspring

Analysis | Asia-Pacific
Trump Musk
Top image credit: Nov 16, 2024; New York, NY, USA; President-elect Donald Trump talks with Elon Musk (right) during UFC 309 at Madison Square Garden. Mandatory Credit: Brad Penner-Imagn Images TPX IMAGES OF THE DAY via REUTERS

Can Trump seal a deal with Iran?

Middle East

Maybe Donald Trump really will be an anti-war president in his second term.

Trump donor and adviser Elon Musk reportedly meeting Iranian officials with the aim of defusing tensions could be a sign that the once and future president may truly buck the neocons and interventionists who have dogged Republican and Democratic efforts to engage Iran and kept the U.S. bogged down in conflicts in the Middle East for a generation. However, the efforts to stop such diplomacy from happening will be fierce.

keep readingShow less
Kenya
Top image credit: A Kenyan man reads newspapers at a shop in Nakuru following the U.S. presidential election results, where Donald Trump won against Democrat Kamala Harris in a remarkable political comeback. James Wakibia / SOPA Images via Reuters Connect

Like Biden, don't expect Trump to pay much attention to Africa

Africa

As commentators assess the implications of Donald Trump’s election victory for the United States and the world, various publications have asked what Trump’s return will mean for their continent. In one well-informed analysis, the BBC’s Wedaeli Chibelushi highlights “trade, aid, and security” as key sectors. We can also ask what might change in terms of Washington’s political relationships with various African countries, and how such changes would affect the overall balance of U.S. primacy versus restraint.

An initial caveat is necessary – of all the world’s regions, Trump and his team will likely not be thinking much about Africa. When Professor Stephen Walt recently assessed “The 10 Foreign-Policy Implications of the 2024 U.S. Election,” for example, he did not mention Africa – and that’s because the Middle East, Ukraine, NATO, and China, among other issues, will likely consume much more of Trump’s attention than the African continent will.

keep readingShow less
Trump Modi
Top image credit: YashSD / Shutterstock.com

How Trump can navigate the new multi-polar world

Global Crises

As President-elect Trump prepares to take office for a second time, he faces a world that has changed profoundly since 2020. While Russia’s invasion of Ukraine may be the most visible shift, two deeper changes in the international order demand America’s attention: the rise of multipolarity and the trend toward “multi-alignment.”

These realities provide an opportunity for the United States to rethink its approach to global affairs, adopting a grand strategy of “restraint.” This isn’t a call to retreat from the world. Instead, it’s an approach that prioritizes prudent balancing and selective blunting — moving beyond the ideal of maintaining U.S. hegemony by enforcing a so-called “rules-based order” and focusing instead on adapting to today’s geopolitical complexity.

keep readingShow less

Election 2024

Latest

Newsletter

Subscribe now to our weekly round-up and don't miss a beat with your favorite RS contributors and reporters, as well as staff analysis, opinion, and news promoting a positive, non-partisan vision of U.S. foreign policy.