David D. Clark and Susan Landau consider how cyberexploitations and cyberattacks might be traced by linking people to packets and conclude that such a linkage would be a mistake. They discuss how other technical contributions to cyber attribution can only be contemplated in the larger regulatory context of various legal jurisdictions.