Editing Scenario 08: Certificate authority hack

Jump to navigation Jump to search

Warning: You are not logged in. Your IP address will be publicly visible if you make any edits. If you log in or create an account, your edits will be attributed to your username, along with other benefits.

The edit can be undone. Please check the comparison below to verify that this is what you want to do, and then save the changes below to finish undoing the edit.

Latest revision Your text
Line 72: Line 72:
 
'''[L18]''' To sum up the three steps of the test, it cannot be concluded that the interception of emails by itself amounts to a violation of international human rights law. Although such conduct would most certainly interfere with several human rights of the affected individuals, its compatibility with IHRL would fall to be determined by the justification proffered by the acting State.
 
'''[L18]''' To sum up the three steps of the test, it cannot be concluded that the interception of emails by itself amounts to a violation of international human rights law. Although such conduct would most certainly interfere with several human rights of the affected individuals, its compatibility with IHRL would fall to be determined by the justification proffered by the acting State.
   
'''[L19]''' The positive obligation of State A (to take all reasonable measures to protect the human rights of persons in its territory who have been targeted by State B's operation) encompasses protecting the persons from further abuse of their rights, taking appropriate measures against the perpetrators of the abuse, but also measures to prevent an abuse if there are grounds to believe that such abuse will occur. In the situation at hand, the obligation would likely include the duty of State A to rapidly investigate incident 1 and to prevent or reduce the impact of incident 2 by immediately informing the international cyber security community about the fraudulent certificates.
+
'''[L19]''' The positive obligation of State A (to take all reasonable measures to protect the human rights of persons in its territory who have been targeted by State B's operation) encompasses protecting the persons from further abuse of their rights, taking appropriate measures against the perpetrators of the abuse, but also measures to prevent an abuse if there are grounds to believe that such abuse will occur. In the situation at hand, the obligation would likely include the duty of State A to rapidly investigate incident 1 and to prevent or reduce the impact of incident 2 by informing the international cyber security community about the fraudulent certificates.<!-- Add a paragraph dealing with the positive obligation of State A - failure to take all reasonable measures to protect the human rights of persons within its territory. -->
   
 
== Checklist ==
 
== Checklist ==

Please note that all contributions to International cyber law: interactive toolkit are considered to be released under the Creative Commons Attribution-ShareAlike 4.0 International (CC BY-SA 4.0) (see International cyber law: interactive toolkit:Copyrights for details). If you do not want your writing to be edited mercilessly and redistributed at will, then do not submit it here.
You are also promising us that you wrote this yourself, or copied it from a public domain or similar free resource. Do not submit copyrighted work without permission!

Cancel Editing help (opens in new window)