Recent years have witnessed a dramatic increase in digital information and connected devices, but constant revelations about hacks make painfully clear that security has not kept pace. Societies today network first, and ask questions later.

This Essay argues that while digitization and networking will continue to accelerate, cybersecurity concerns will also prompt some strategic retreats from digital dependence. Individuals, businesses, and governments will “give up” on cybersecurity by either (1) adopting low-tech redundancies for high-tech capabilities or digital information, or (2) engaging in technological regression or arrest, foregoing capabilities that technology could provide because of concerns about cybersecurity risks. After cataloguing scattered examples of low-tech redundancy and technological regression or arrest that have occurred to date, the Essay critically evaluates how laws and regulations have fostered situations where giving up on cybersecurity is necessary. The Essay concludes by proposing ways that law can help to guide consideration of when to engage in low-tech redundancy or technological regression moving forward.

Kristen Eichensehr, Giving Up on Cybersecurity, 64 UCLA Law Review Discourse, 320–339 (2016).
UVA Law Faculty Affiliations