Legal and regulatory foundations of information security in Ukraine under conditions of hybrid aggression

• Published in: Науковий вісник Ужгородського національного університету. Серія Право Vol. 3; no. 89; pp. 87 - 91
• Main Author: Riapolov, A. P.
• Format: Journal Article
• Language: English
• Published: 04.08.2025
• ISSN: 2307-3322; 2664-6153
• DOI: 10.24144/2307-3322.2025.89.3.12

The article examines the regulatory and legal foundations of information security in Ukraine in the context of the Russian Federation’s hybrid aggression. It is determined that information security, as a component of national security, has acquired special importance in the context of a modern armed conflict, within which tools of information influence, disinformation, propaganda, and cyberattacks are actively used. The author analyzed the current legislative and regulatory framework, in particular, the Constitution of Ukraine, the laws «On National Security of Ukraine», «On Information», «On the Basic Principles of Ensuring Cybersecurity of Ukraine», strategies, decrees of the President of Ukraine, decisions of the National Security and Defense Council of Ukraine, as well as other special acts, that form the system of regulatory regulation in the field of protection of the national information space. Special attention is paid to the impact of hybrid aggression on the content, structure, and dynamics of legal regulation. It is demonstrated that Russian aggression has become a catalyst for legislative changes, resulting in increased state control, the establishment of new institutions (notably, the Center for Countering Disinformation), the expansion of public authorities’ powers, and the introduction of special legal regimes. Key challenges related to the need to maintain a balance between ensuring information security and respecting constitutional rights and freedoms, in particular freedom of speech, the right to information, and privacy, are highlighted. Proposals have been formulated to improve legislation in this area, in particular by systematizing norms, clearly delimiting the powers of information security entities, improving judicial protection procedures, increasing the level of legal and media literacy of the population, as well as implementing international standards. Given the dynamics of information threats, the author emphasizes the need for a flexible, transparent, and strategically coordinated approach to the regulatory and legal support of information security in Ukraine, which should take into account rapidly changing technologies and global trends in the field of cybersecurity. It is emphasized that the effective implementation of state information policy requires not only improving legislation, but also proper resource provision, interdepartmental coordination, and active interaction with civil society.