April 09, 2018
Careful what you wish for—change and continuity in China’s cyber threat activities (part 2)
At a time when ‘cyber anarchy’ seems to prevail in the international system, the emergence in 2015 of US–China consensus against ‘cyber-enabled theft of intellectual property’ initially appeared to promise progress towards order. The nascent norm against commercial cyber espionage that emerged between Xi Jinping and Barack Obama was later reaffirmed by the G‑20. China subsequently recommitted to this proscription in a number of bilateral agreements, including reaching a parallel commitment with Australia in April 2017.
While frail, such a norm might be celebrated as a triumph for cyber diplomacy, yet its inherent ambiguities have also created a grey zone that makes non-compliance difficult to demonstrate. At the same time, Beijing’s pursuit of economic security means that priority targets will likely continue to face persistent intrusions from more capable threat actors.
In fact, based on the technicalities of its terms, there’s fairly limited evidence of Chinese cyber intrusions since 2015 that obviously or blatantly contravene the Xi–Obama agreement.
Arguably, US diplomacy has contributed to reshaping China’s cyber-espionage operations. However, despite the decline in activities, the results haven’t been entirely as intended. The pattern of activities undertaken by Chinese advanced persistent threat (APT) groups since the agreement reflects China’s exploitation of the leeway in its phrasing. For example, the condition that neither the US nor China will ‘knowingly’ support IP theft may have encouraged higher levels of plausible deniability in Chinese cyber espionage operations since.
Read the full article at ASPI
More from CNAS
-
Technology & National Security
CNAS Insights | Governing Jailbreak IncidentsIn June 2026, Anthropic publicly released Claude Fable 5, a restricted version of its highly cyber-capable Mythos model. Within days, reports reached U.S. officials that resea...
By Ben Hayum
-
Technology & National Security
Closing the Remote Access LoopThis article was originally published in Issues in Science and Technology. As Asad Ramzanali argues in “Why the Cloud Needs Competition” (Issues, Winter 2026), cloud computing...
By Michelle Nie
-
Technology & National Security
Losing the War of the FutureThis article was originally published in Foreign Affairs. In its recent campaign against Iran, the United States dominated the skies using its traditional airpower. The U.S. m...
By Paul Scharre
-
Technology & National Security
We Need AI Treaties. This Is How We Get ThemIn this episode, Tristan sits down with two experts in this field to discuss the kinds of verification technology we need for AI, the challenges of building it, and the world ...
By Janet Egan & Tim Fist
