By: Kate Fazzini

The disclosure that sophisticated intruders had lived inside major telecommunications networks — reaching call records and, in some cases, lawful-intercept systems — has forced regulators to confront how little binding security telecom carriers actually owe.

Lawfare contributors argued that the incident exposed a structural gap: the same interfaces built to enable lawful surveillance became a high-value target, and the carriers holding the nation's communications faced few enforceable security obligations proportionate to that risk. Proposals now on the table would convert long-standing "best practice" guidance into affirmative, auditable duties.

JLCW readers will find the roots of this debate in the Journal's compelled-disclosure and surveillance scholarship, which has repeatedly warned that systems designed for government access create durable security liabilities. "Don't Kill the Messenger" (Volume 8, Issue 1) and the Journal's work on warrantless electronic surveillance frame exactly this trade-off between access and security.

For the full discussion, read the Journal of Law and Cyber Warfare, Volume 8, Issue 1. – Kate Fazzini