Cyber Attribution: Challenges and Opportunities for Multi-Disciplinary Analysis

Research output: Contribution to journalArticlepeer-review


This article explores how cyber attribution is performed in the UK
and addresses current barriers to identifying deceptive actors. Through
interviews with UK-based experts in cyber attribution, this article explores
how false flag operations can be identified, in an arena where the technical
evidence may be deliberately falsified to implicate third parties. Four
methods of implementing non-technical evidence were identified through
the interviews: interdisciplinary teams; training technical colleagues on
political context; information-sharing platforms; and outsourcing.
Interdisciplinary conversations are required to combine the visions of
professionals within cyber intelligence and attribution, and to work towards
a best-practice approach to false flag attribution.
Original languageEnglish
Article number2
Pages (from-to)13-27
JournalStrife Journal
Issue number14
Publication statusPublished - 14 Dec 2020


  • cyber attribution
  • Cyberwarfare
  • cyberattacks
  • advanced persistent threats
  • deception
  • false flag attacks
  • national security

Cite this