Current and Emerging Trends in Cyber Operations

Transcription

1 Current and Emerging Trends in Cyber Operations

2 Palgrave Macmillan s Studies in Cybercrime and Cybersecurity This book series addresses the urgent need to advance knowledge in the fields of cybercrime and cybersecurity. Because the exponential expansion of computer technologies and use of the Internet have greatly increased the access by criminals to people, institutions, and businesses around the globe, the series will be international in scope. It provides a home for cutting-edge long-form research. Further, the series seeks to spur conversation about how traditional criminological theories apply to the online environment. The series welcomes contributions from early career researchers as well as established scholars on a range of topics in the cybercrime and cybersecurity fields. Series Editors: MARIE-HELEN MARAS is Associate Professor and Deputy Chair for Security at the Department of Security, Fire, and Emergency Management at John Jay College of Criminal Justice, USA. THOMAS J. HOLT is Associate Professor in the School of Criminal Justice at Michigan State University, USA. Titles include: Amitai Etzioni PRIVACY IN CYBER AGE Policy and Practice Frederic Lemiux (editor) CURRENT AND EMERGING TRENDS IN CYBER OPERATIONS Policy, Strategy and Practice

3 Current and Emerging Trends in Cyber Operations Policy, Strategy, and Practice Edited by Frederic Lemieux George Washington University, USA

4 Introduction, selection and editorial matter Frederic Lemieux 2015 Individual chapters Respective authors 2015 Softcover reprint of the hardcover 1st edition All rights reserved. No reproduction, copy or transmission of this publication may be made without written permission. No portion of this publication may be reproduced, copied or transmitted save with written permission or in accordance with the provisions of the Copyright, Designs and Patents Act 1988, or under the terms of any licence permitting limited copying issued by the Copyright Licensing Agency, Saffron House, 6-10 Kirby Street, London EC1N 8TS. Any person who does any unauthorized act in relation to this publication may be liable to criminal prosecution and civil claims for damages. The authors have asserted their rights to be identified as the authors of this work in accordance with the Copyright, Designs and Patents Act First published 2015 by PALGRAVE MACMILLAN Palgrave Macmillan in the UK is an imprint of Macmillan Publishers Limited, registered in England, company number , of Houndmills, Basingstoke, Hampshire RG21 6XS. Palgrave Macmillan in the US is a division of St Martin s Press LLC, 175 Fifth Avenue, New York, NY Palgrave is the global academic imprint of the above companies and has companies and representatives throughout the world. Palgrave and Macmillan are registered trademarks in the United States, the United Kingdom, Europe and other countries. ISBN DOI / This book is printed on paper suitable for recycling and made from fully managed and sustained forest sources. Logging, pulping and manufacturing processes are expected to conform to the environmental regulations of the country of origin. A catalogue record for this book is available from the British Library. A catalog record for this book is available from the Library of Congress. Library of Congress Cataloging-in-Publication Data ISBN (ebook) Current and emerging trends in cyber operations : policy, strategy and practice / [edited by] Frederic Lemieux, George Washington University, USA. pages cm Includes bibliographical references and index. 1. Cyberterrorism. 2. National security. I. Lemieux, Frédéric. HV C97C dc

5 The Chinese use two brush strokes to write the word crisis. One brush stroke stands for danger; the other for opportunity. In a crisis, be aware of the danger but recognize the opportunity. John F. Kennedy, Speech in Indianapolis, Indiana, 12 April 1959

6

7 Contents Acknowledgments Notes on Contributors ix x 1 Trends in Cyber Operations: An Introduction 1 Frederic Lemieux Section I Conflicts in Cyberspace 17 2 Cyber Conflict: Disruption and Exploitation in the Digital Age 19 Scott Applegate 3 Establishing Cyber Warfare Doctrine 37 Andrew Colarik and Lech Janczewski 4 How Cyber Changes the Laws of War 51 Jack Goldsmith Section II Geopolitics of Conflicts in Cyberspace 63 5 Russia s Information Warfare Capabilities 65 Roland Heickero 6 The Sino-US Digital Relationship and International Cyber Security 84 Jyh-An Lee 7 Cyber Operations in the Middle East 97 Jeffrey Bardin Section III Defense Strategies and Practices A National Strategy for the United States Cyberspace 113 Harold Punch Moulton, James Stavridis, and Constance Uthoff 9 Defending Critical Infrastructures Against Cyber Attacks: Cooperation through Data-Exchange Infrastructure and Advanced Data Analytics 130 Frederic Lemieux

8 viii Contents 10 Cyber Resilience: A Review of Critical National Infrastructure and Cyber-Security Protection Measures Applied in the UK and USA 149 Wayne Harrop and Ashley Matteson Section IV Cyber Intelligence and Information Security Typologies of Attacks and Vulnerabilities Related to the National Critical Infrastructure 169 Charles Pak 12 Opportunities and Security Challenges of Big Data 181 Zal Azmi 13 Strategic Cyber Intelligence: An Examination of Practices across Industry, Government, and Military 198 Constance Uthoff References 221 Index 243

9 Acknowledgments First of all, I would like to express my deepest gratitude to all contributors who made this project possible. I want to thank all of the authors for the originality and the high quality of the work they produced. This book represents a major contribution to the field of international police cooperation, and achieving this objective in a short period of time was a heavy demand. Also, I was delighted to work with the publishing team at Palgrave Macmillan. The confidence they had in the project and their judicious advice was instrumental to the realization of the book. I am deeply indebted to my special assistant, Melinda Hull, who worked hard on the revision and editing of the chapters. Thank you, Melinda, for having been flexible and reliable and for offering excellent suggestions throughout the editing process. Finally, I am grateful to my wife, Alterra Hetzel, who is always supportive of my work, for her dedication to our family. ix

10 Notes on Contributors Editor Frederic Lemieux is a full professor and program director of the Master s Degree in Homeland Security and the Master s Degree in Cybersecurity Strategy and Information Management, and he is co-director of the Bachelor s Degree in Cybersecurity at the George Washington University. He also co-founded the George Washington University Cyber Academy. Frederic Lemieux has published several books, book chapters, and journal articles in the field of homeland security, international police cooperation, and cyber security. Contributors Lieutenant Colonel Scott D. Applegate is a career military officer with more than 22 years of experience. He is the operations chief of Defensive Cyberspace Operations at the US Army Cyber Command. He is a published author and a past speaker at a number of conferences, including Hacker Halted and the International Conference on Cyber Conflict. His research interests include information assurance, cyber conflict, cyber militias, security metrics, and mobile device security. Zal Azmi is the chief executive officer for Nexus Solutions LLC. He offers more than 30 years of leadership experience and demonstrated success in the development, nurturing, program management, performance management, organizational maturity, and operational integration of advanced technology systems and solutions to meet a variety of enterprise modernization needs. In his last ten years in the government, he served as the chief information officer (CIO) for United States Attorneys ( ) and the FBI ( ), where he established the CIO organization s information assurance and cybersecurity programs. Jeffrey Bardin is the chief intelligence strategist at Treadstone 71. He has more than 25 years of experience in the fields of IT and information security, risk management and assurance, cyber intelligence and counterintelligence. Since 1982, Jeffrey Bardin has worked in leadership x

11 Notes on Contributors xi positions in organizations such as General Electric, Lockheed Martin, and Marriott International. He also served as the security manager for the Centers for Medicare and Medicaid (LMIT), chief security officer for Hanover Insurance, the chief information security officer for Investors Bank & Trust, and the director of the Office of Risk Management for EMC. Andrew Colarik is an independent consultant, author, researcher, and inventor of information security technologies. He serves as a senior lecturer in the Department of Computer Science at Auckland University, New Zealand. He has published multiple security books and publications in the areas of cyber terrorism, information warfare, and cyber security. His primary research areas are the security impact of the global information infrastructure on businesses, governments, and individuals; the technology impact on social, political, legal, and economic structures in society; and the design and implementation of secure communication systems. Jack Goldsmith is the Henry L. Shattuck Professor at Harvard Law School, where he teaches and writes about national security law, presidential power, cyber security, international law, Internet law, foreign relations law, and conflict of laws. Before coming to Harvard, Professor Goldsmith served as assistant attorney general at the Office of Legal Counsel from , and as special counsel to the Department of Defense from Wayne Harrop is the director of the Centre for Disaster Management at the University of Coventry in the UK. He has developed a hybrid career as an academic and practitioner, winning three international industry accolades and contributing to funded research projects worldwide. Mr. Harrop is part of a national cyber-security advisory cell led by the Bank of England. Mr. Harrop co-directs the International Risk, Resilience and Response Centre (a UK US transatlantic partnership), which has successfully delivered prime ministers funded projects on international dimensions of urban crisis (providing international briefings on homeland security, disaster impacts, national infrastructure, and cyber security). Roland Heickerö is an adjunct professor at KTH Royal Institute of Technology in Sweden. He was previously working at the Swedish National Defense College (SNDC). His research examines different aspects of

12 xii Notes on Contributors information warfare and cyber threats and their effects at the security policy level as well as on social and technical systems levels. Between 2003 and 2012, he was deputy research director at the Swedish Defense Research Agency (FOI) in charge of cyber defense research. Lech Janczewski is Associate Professor of Information Systems and Operations Management (Business School) at the University of Auckland, New Zealand. He has over 35 years of experience in information technology. He was the managing director of the largest IBM installation in Poland and the project manager of the first computing center in the Niger State of Nigeria. His area of research includes management of IS resources with a special emphasis on data security and information systems investments. He contributes to a project aimed at developing a tool handling distributed denial of service attacks. Jyh-An Lee is an assistant professor in the Faculty of Law at the Chinese University of Hong Kong. His research interests include intellectual property, information law, and Internet law. Dr. Lee holds a JSD from Stanford Law School and an LLM from Harvard Law School. He is the author of two books: Coding a Free Society: Open Source Strategies for Policymakers (VDM Verlag Müller Press, 2007) and Nonprofit Organizations and the Intellectual Commons (Edward Elgar, 2012). Before starting his academic career, Jyh-An Lee was a practicing lawyer in Taiwan specializing in technology and business transactions. Ashley Matteson serves as a steering group member and cybersecurity advisor to the International Risk, Resilience and Response Centre, chaired jointly by Coventry University in the UK and Texas A&M University Engineering Extension in the US. Mr. Matteson has completed and become certified in all foundation and capability-based Information Technology Infrastructure Library courses. Maj. Gen. Harold W. Punch Moulton II (ret.) is the former director of operations, US European Command, Patch Barracks, Stuttgart, Germany. The USEUCOM mission is to maintain ready forces to conduct the full range of operations: enhance transatlantic security through support of NATO, promote regional stability, counter terrorism, and advance US interests in the European area of responsibility. Moulton works as Senior Director of Cyberspace Strategies, Integration, and Consulting at Stellar Solutions.

13 Notes on Contributors xiii Charles Pak has taught information systems (IS) courses for over 25 years as an IS practitioner and professor. He has managed US federal government data centers for over 20 years, including personnel. He has designed, tested, implemented, and maintained many of these enterprise network sites. These sites are some of the largest in the world and encompass distributed sites across the US as well as international sites. He has managed state-of-the art systems for military and federal government missions for which he was deployed. James Stavridis has been the dean of The Fletcher School since its founding in A retired admiral in the US Navy, he led the NATO Alliance in global operations from 2009 to 2013 as Supreme Allied Commander. He also served as Commander of US Southern Command, with responsibility for all military operations in Latin America from Stavridis has published five books and over a hundred articles on innovation, strategic communication and planning, and creating security through international, interagency, and public/private partnerships in this turbulent 21 st century. Constance P. Uthoff is an assistant professor and assistant director of the Master s Degree in Strategic Cyber Operations and Information Management at the George Washington University. She cumulates over ten years of physical and business security experience and has taught courses and seminars on cyber warfare, CND fundamentals, and cyber law and policy. Recently, she co-authored Project Cyber Dawn, a cyber analysis of Libya, and she is working on a cyber-intelligence analysis project for the Cyber Security Forum Initiative.