Presentation is loading. Please wait.

Presentation is loading. Please wait.

1 Information Warfare: The Warriors Casey J. Dunlevy CERT Survivable Enterprise Management.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "1 Information Warfare: The Warriors Casey J. Dunlevy CERT Survivable Enterprise Management."— Presentation transcript:

1 1 Information Warfare: The Warriors Casey J. Dunlevy CERT Survivable Enterprise Management

2 2 Overview Information Warriors  Who Are They  What Do They Do Types of Threat PsyOps Civil Affairs Electronic Warfare Hackers/Crackers Cyber Terror Defenders

3 3 References http://www.cert.org InfoWar: http://www.iwar.org.uk/index.htm http://infowar.freeservers.com/index.html http://www.nmrc.org/links/ Culture: http://www.eff.org/pub/Net_culture/ Terrorism: http://www.terrorism.com/terrorism/links.shtml Books : Sterling - The Hacker Crackdown Stoll - The Cuckoo’s Egg Honeynet Project – Know Your Enemy Schneier – Beyond Fear

4 4 Information Warriors Information Warfare much more than Computer Network Operations (CNO)  Psychological Operations  Civil Affairs  Electronic Warfare Ops  Computer Warriors  Counter-IW Specialists (Defenders)

5 5 Threats National Security Critical National Infrastructure Cyber-Warfare/Computer Network Operations Cyber Crime Organized Crime Identity Theft Extortion Fraud Non-State Actors Terrorists Political Activists

6 6 Threats Nation States  Information Warfare is recognized as a part of military strategy and doctrine around the world  The study and practice of military usage of Information Warfare is taught in military academies and educational facilities

7 7 Example - Chinese Activities What We Have Observed: A series of activities over 3 years from similar network locations A series of attack tools in last 1.5 years QAZ, Red Lyon, Code Red Political timing What We Surmise: Diverse team with resources Using hackers/loose ISP for cover Keeping attacks below threshold Studying reaction/defense

8 8 Threats Organized Crime  Utilized Information Warfare in various forms for centuries Extortion is a form of Information Warfare New technologies breed new criminals  Technology creates trans- national criminal organizations  In certain nations, the lines between state actions and organized crime can be blurred

9 9 Transnational Organized Crime Organized crime Hacktivism Insider crime Hackers/ Crackers Cyber-crime

10 10 Example -Transnational Organized Crime Individual crime may be difficult to differentiate from organized crime:  Distribution and Coordination tools  Mass exploitation methods Organized crime exploits Information technologies  Enhanced efficiencies – on-line management of illegal gambling schemes  Intelligence tool for risk management – Cali organization in 1995 had state of the art equipment  Force multiplier – GPS for sea drops New channels and new targets for crime

11 11 Threats Non-State Actors  Terrorists  Hacktivists Sometimes different sides of the same page As with organized crime, sometimes the lines between state and non- state actors is blurred

12 12 Example - Hacker to Terrorism? Defaced Health-care web site in India  "This site has been hacked by ISI (Kashmir is ours), we want a hospital in Kashmir" and signed by Mujahideen-ul-dawat  Linked to G-Force Pakistan Global Hactivism linked to Mid- East conflict Information Warfare successfully utilized in Chiapas conflict with Mexican gov’t

13 13 Examples - Cyber-Intifada Prolonged campaign  Palestinian hackers/web defacers  Targeting Israeli and Israel-supporting organizations  Low innovation level Counter-campaigns  Publicity  Counter-hacking: 2xS.co.il

14 14 The Warriors Sociology of warriors Morale Vigilance vs. assumed invulnerability Organization Motivation of warriors Accountability vs. anarchy Delayed vs. immediate gratification Internal vs. external gratification Preparation of warriors Training Tool selection Intelligence Strategy

15 15 The Warriors Psychological Operations Warriors  Specialize in using information warfare to change an enemy’s state of mind Propaganda (Not limited to PsyOps)  Non-threatening  Threatening Computer Network Operations  Goal is to eliminate confidence  Impacts decision-making and C2

16 16 The Warriors Civil Affairs  Winning the Hearts and Minds! Essential to military operations Utilizes Information Warfare strategies to calm and utilize populations  Specialists must understand subtleties of language and culture Research begins long before the battle Operations last long after the battle is won

17 17 The Warriors Electronic Warfare Ops  Goal is to utilize electronic information infrastructure against your enemy Information lost or modified Make the enemy blind, deaf, and dumb  Restrict or control electronic information sources

18 18 The Warriors Computer Warriors  Computer Network Operations Offensive attacks against enemy information/computer networks Utilization of sophisticated attack tools and malware  Newest form of Information Warfare Principles are the same

19 19 Attack Sophistication vs. Intruder Technical Knowledge High Low password guessing self-replicating code password cracking exploiting known vulnerabilities disabling audits back doors hijacking sessions sweepers sniffers packet spoofing GUI automated probes/scans denial of service www attacks Tools Attackers Intruder Knowledge Attack Sophistication “stealth” / advanced scanning techniques burglaries network mgmt. diagnostics distributed attack tools Cross site scripting Staged attack Time

20 20 Examples – Response Time to CNO

21 21 Cyber Terrorism Cyberterror is still emerging  No verified example of cyber terror attack to date  Evolving threat  Integrating critical missions with general Internet  Increasing damage/speed of attacks  Continued vulnerability of off-the-shelf software Much confusion of descriptions and definitions Technology widely viewed as critical weakness of Western nations

22 22 Defenders Highly trained specialists  Part detective, intelligence analyst, technologist, and bad guy Red Teams/Tiger Teams Vulnerability / Risk Analysts Intrusion Response Teams

23 23 Defense Flow Analysis & Assessment Remediation Indications & Warnings Mitigation Response Reconstitution Threshold? No Yes

24 24 Intrusion Response teams Types:  Automated  Local dedicated or volunteer team  Contracted team Why?  Single-point of contact for fast response  Provide for consistent response  Provide for collateral relationships Problems:  Resources  Authorization to act  Trust

25 25 Summary Information Warriors are the same as warriors have always been  Utilize different weapon Long-bow or Computer?  Have to react faster Aircraft or Data packets?  New skills Hand-to-Hand or Computer Network Operations?

26 26 Summary Increasingly diverse threat Ongoing challenge to track, trend, pursue Who may be as important as what

Download ppt "1 Information Warfare: The Warriors Casey J. Dunlevy CERT Survivable Enterprise Management."

Similar presentations

Cyber Crime and Technology

Cyber Crime and Technology
High Performance Research Network. Development Lab. / Supercomputing Center 1 Design of the Detection and Response System against DDoS attacks Yoonjoo.

High Performance Research Network. Development Lab. / Supercomputing Center 1 Design of the Detection and Response System against DDoS attacks Yoonjoo.
DETECTING A CYBER-ATTACK SOURCE IN REAL TIME R. Romanyak 1), A. Sachenko 1), S. Voznyak 1), G. Connolly 2), G. Markowsky 2) 1) Ternopil Academy of National.

DETECTING A CYBER-ATTACK SOURCE IN REAL TIME R. Romanyak 1), A. Sachenko 1), S. Voznyak 1), G. Connolly 2), G. Markowsky 2) 1) Ternopil Academy of National.
Welcome HITRUST 2014 Conference April 22, 2014. The Evolving Information Security Organization – Challenges and Successes Jason Taule, Chief Security.

Welcome HITRUST 2014 Conference April 22, The Evolving Information Security Organization – Challenges and Successes Jason Taule, Chief Security.
Lynn Ray ISO Towson University Strategic Planning for IT Security Copyright Lynn Ray, 2007. This work is the intellectual property rights of the author.

Lynn Ray ISO Towson University Strategic Planning for IT Security Copyright Lynn Ray, This work is the intellectual property rights of the author.
Introduction to Information Operations Attaché Corps- SEP 09

Introduction to Information Operations Attaché Corps- SEP 09
Chapter 1.  Security Problem  Virus and Worms  Intruders  Types of Attack  Avenues of Attack 2 Prepared by Mohammed Saher Hasan.

Chapter 1.  Security Problem  Virus and Worms  Intruders  Types of Attack  Avenues of Attack 2 Prepared by Mohammed Saher Hasan.
DoD and Cyber-Terrorism Eric Fritch CPSC 620. What is cyber-terrorism? The premeditated, politically motivated attack against information, computer systems,

DoD and Cyber-Terrorism Eric Fritch CPSC 620. What is cyber-terrorism? "The premeditated, politically motivated attack against information, computer systems,
CERT Centers, Software Engineering Institute Carnegie Mellon University Pittsburgh, PA 15213-3890 SEI is sponsored by the U.S. Department of Defense ©

CERT Centers, Software Engineering Institute Carnegie Mellon University Pittsburgh, PA SEI is sponsored by the U.S. Department of Defense ©
CERT Centers, Software Engineering Institute Carnegie Mellon University Pittsburgh, PA 15213-3890 SEI is sponsored by the U.S. Department of Defense ©

CERT Centers, Software Engineering Institute Carnegie Mellon University Pittsburgh, PA SEI is sponsored by the U.S. Department of Defense ©
Addressing Terrorist Use of the Internet, Cyber Crime and Other Threats: National Expert Workshop Forging a Comprehensive Approach to Cyber Security Richard.

Addressing Terrorist Use of the Internet, Cyber Crime and Other Threats: National Expert Workshop Forging a Comprehensive Approach to Cyber Security Richard.
Computer Security Fundamentals

Computer Security Fundamentals
Chapter 14 Crime and Justice in the New Millennium

Chapter 14 Crime and Justice in the New Millennium
1`1 Hacking and Information Warfare. 2 Overview Information Warriors  Who Are They  What Do They Do Types of Threat PsyOps Civil Affairs Electronic.

1`1 Hacking and Information Warfare. 2 Overview Information Warriors  Who Are They  What Do They Do Types of Threat PsyOps Civil Affairs Electronic.
1  Carnegie Mellon University System Security and U. Rich Pethia Software Engineering Institute Carnegie Mellon University Pittsburgh, PA 15213.

1  Carnegie Mellon University System Security and U. Rich Pethia Software Engineering Institute Carnegie Mellon University Pittsburgh, PA
1 CHAPTER 1 POLITICS. 2 Definitions Of The Word Hacker Hacker – someone who has achieved some level of expertise with a computer Hacker – someone who.

1 CHAPTER 1 POLITICS. 2 Definitions Of The Word Hacker Hacker – someone who has achieved some level of expertise with a computer Hacker – someone who.
INDEX  Ethical Hacking Terminology.  What is Ethical hacking?  Who are Ethical hacker?  How many types of hackers?  White Hats (Ethical hackers)

INDEX  Ethical Hacking Terminology.  What is Ethical hacking?  Who are Ethical hacker?  How many types of hackers?  White Hats (Ethical hackers)
Hands-On Ethical Hacking and Network Defense

Hands-On Ethical Hacking and Network Defense
1 Telstra in Confidence Managing Security for our Mobile Technology.

1 Telstra in Confidence Managing Security for our Mobile Technology.
Security on the Internet: The Problem, Solutions and Perspectives Alain Patrick AINA Copyright, ECA, June 2006.

Security on the Internet: The Problem, Solutions and Perspectives Alain Patrick AINA Copyright, ECA, June 2006.

Similar presentations

Ads by Google