43 Pages Posted: 28 Feb 2013 Last revised: 11 Apr 2015
Date Written: August 4, 2013
Cybercrime is a growing problem in the United States and worldwide. Many questions remain unanswered as to the proper role and scope of criminal law in addressing socially-undesirable actions affecting and conducted through the use of computers and modern information technologies. This Article tackles perhaps the most exigent question in U.S. cybercrime law, the scope of activities that should be subject to criminal sanction under the Computer Fraud and Abuse Act (CFAA), the federal "anti-hacking" statute.
This Article examines the tension between these two positions, both from the standpoint of current U.S. jurisprudence and scholarship, and from the standpoint of the respective purposes of criminal and tort law in deterring and punishing socially-undesirable behavior. The Article concludes by proposing a legislative revision to the CFAA that substantially mitigates the risk of overbroad criminalization, while leaving intact the ability of the law to deter and punish the most serious acts affecting and utilizing computers.
Keywords: Cybercrime, Computer Crime, Computer Fraud and Abuse Act, CFAA, Deterrence
Suggested Citation: Suggested Citation
Thaw, David, Criminalizing Hacking, Not Dating: Reconstructing the CFAA Intent Requirement (August 4, 2013). Journal of Criminal Law and Criminology, Vol. 103, No. 3, 2013. Available at SSRN: https://ssrn.com/abstract=2226176