Many commentators take a binary approach to active cyber defense (“hacking back”)—that it’s either OK or illegal. Instead, active defense should be viewed as a diverse set of techniques along a spectrum of varying risk and legality. This session will clarify the grey areas with a robust discussion of where techniques fall on the spectrum and how law and policy should develop internationally.