Search papers, labs, and topics across Lattice.
This paper critically examines how AI-mediated civilian cyber operations challenge the direct causation criteria set by international humanitarian law, particularly the ICRC's 2009 Interpretive Guidance. It argues that when civilians utilize autonomous multi-agent cyber systems, the traditional "one causal step" standard becomes inadequate due to the system's decision-making occurring after human disengagement, thus categorizing these actions as indirect participation. The authors propose a five-level spectrum for classifying AI-mediated operations and highlight the shortcomings of current AI governance frameworks in addressing this complexity.
AI-mediated cyber operations blur the lines of direct participation in hostilities, revealing critical gaps in humanitarian law's applicability to modern warfare.
International humanitarian law protects civilians from direct attack unless and for such time as they take direct part in hostilities, with the ICRC's 2009 Interpretive Guidance operationalising this rule through a three-criterion cumulative test. This paper argues that AI-mediated civilian cyber operations challenge the direct causation element of this test in a structurally specific way: when a civilian deploys an autonomous multi-agent cyber system of the kind recently demonstrated in offensive AI research, the "one causal step" standard fails because harm is produced by system-generated decisions made after human disengagement, and the integral-part requirement does not extend because it presupposes downstream human contributors whose conduct can be independently classified. The framework therefore defaults to treating such deployments as indirect participation, in tension with its purpose of capturing civilians who personally take part in hostilities. Beyond the doctrinal analysis, this paper identifies goal-specification granularity as the property on which the integral-part test's concreteness component implicitly turns, classifies AI-mediated operations along a five-level spectrum, and argues that existing technical AI governance instruments do not log or report this property.