Comments on: Cyber Warfare – Fear is the Real Threat

By: Emmanuel Carabott

Emmanuel Carabott — Thu, 07 Apr 2011 12:38:56 +0000

@Bruce Personally I cannot think of any scenario in which such an action will ever be needed. Even in organizations that do not have skilled security personnel, in the case of an attack they will still easily be able to disconnect themselves from the Internet should it come to that; they don’t require the whole country to block Internet for them.

I can only assume that the reasoning behind such an idea is that if the country is under attack by a foreign country who have infiltrated key government/military infrastructure and are actively stealing confidential information and the victims aren’t taking action (possibly because they have not realized the theft is occurring) a central government agency might be tasked with monitoring that no confidential data is being stolen, and therefore could hypothetically take swift action rather than having to contact the victims and mobilizing them to act. However, if this is indeed the case, it would still be an overkill. I would imagine that if they can detect such action, then they can block it too; no need for a wide net.

By: Bruce Roberts

Bruce Roberts — Thu, 17 Mar 2011 19:31:51 +0000

The question is rather if there is no other alternative to the Internet kill switch. This is just too brutal – are we that powerless to need it? Or as Emmanuel Carabott points in the last comment: “Disconnecting the US from the rest of the Internet provided it is indeed nationwide will, in my opinion, be more damaging then any attack.” In other words, the use of this not-so-hypothetical kill switch will do more damage than hackers could inflict! This is simply ridiculous!

By: Emmanuel Carabott

Emmanuel Carabott — Mon, 10 Jan 2011 10:08:28 +0000

@Cheryl – You’re right it needs to be a balance. The importance here is perspective really. Cyber warfare for me is losing that perspective and taking the existent threats to a whole new level that is really not necessary.

@Elbert Gelton – I agree. No one person / organization should have such power. The infrastructure should ultimately be able to defend itself. Personally I do not believe centralized intervention is needed. If some of the IT infrastructure is under attack it should be quite capable of defending itself even by cutting outside access if required. It should be the victim that controls the response to the attack however.

@Gary – I am not sure I can agree with you. You’re right in that it’s a defensive mechanism and not an offensive one or a retaliation, but I am not so sure that it prevents further damage. Obviously I don’t know when such a system is going to be developed (if ever) but unless it’s nationwide I doubt it will be effective. Disconnecting the US from the rest of the Internet provided it is indeed nationwide will, in my opinion, be more damaging then any attack. Furthermore it introduces a huge security risk in that anyone intent on disrupting IT operations in the US need only launch an attack to trick the victim into triggering the kill switch. In essence a clever attacker intended on disruption might achieve his goal by exploiting the country’s response to an attack rather than depending on the success of an attack, which in most cases is pretty limited.

By: Gary

Gary — Tue, 04 Jan 2011 22:11:54 +0000

@warren

I can understand the analogy, but I think comparing an internet kill switch to a nuclear warhead is a bit of an exaggeration. If you think about it, the purpose of an internet kill switch is to prevent further damage during a cyber attack on the nation’s online infrastructure. This manages to working functions intact while the attacker is kept at bay by other systems (which may or may not be physical). It isn’t an act of retaliation by any means. It’s simply a defensive mechanism.

By: Elbert Gelton

Elbert Gelton — Tue, 04 Jan 2011 22:01:57 +0000

It’s hard to believe that over 61% of Americans approved of a single individual to have full control and authority on the internet. Whether he’s the local server maintenance guy or the President of the United States, I don’t believe any single individual should have access to that much power. Granted, it’s a measure for international security, but isn’t a bit ridiculous to be surrendering such blatant liberties for the sake of security?

By: cheryl

cheryl — Tue, 04 Jan 2011 21:54:28 +0000

As cliché as it may sound, I do agree that fear is a real threat when it comes to any sort of far reaching endeavor (and in our case, security). Fear can prove to be both paralyzing and demoralizing, pushing us to take on security practices that may prove to be too drastic, impractical and in the end; highly ineffective. Although the fear of being attacked and exploited is a common motivation to be better secured, the motivation should neither be crippling or counterproductive.

By: Emmanuel Carabott

Emmanuel Carabott — Mon, 03 Jan 2011 16:13:59 +0000

It certainly is a frightening concept and personally I am not so sure about its value either. Chances are by the time you know you need to use such a kill switch it will be too late and all you’ll be doing is hindering yourself and your infrastructure.

It depends how widespread such a kill switch will affect obviously but to be really effective I would imagine such a kill switch would need to isolate all of America from the rest of world. In terms of destructiveness it would probably be more then a nuclear warhead. At least it’s environmentally better since flipping the switch back will at least get things back to normal without any harmful radiation lingering for years to come.

By: warren belowski

warren belowski — Mon, 03 Jan 2011 00:36:41 +0000

Incredibly interesting tidbit about the president and his rumored “kill switch”. Although I can see the tangible security benefits of having a human-issued override for the internet in general, putting it under the sole power of a single individual (president or not) seems to be a frightening concept.

Am I the only one getting the feeling that it’s like having access to a nuclear warhead, but this time, the only viable targets are completely online?

By: Jeremy Parker

Jeremy Parker — Tue, 28 Dec 2010 06:01:01 +0000

I have to agree with Emmanuel about data sniffing being as old as data itself. The access to the proper tools to sniff out particular and critical points of data are now just a purchase away, if you know where to look. However, Patrick makes a good point about the boundaries of actual real-world warfare beginning to blur. However, I still think we’re leagues away from equating data theft with bombing a village.

By: Emmanuel Carabott

Emmanuel Carabott — Tue, 14 Dec 2010 18:14:20 +0000

I am not sure I agree Patrick. In the sense that data sniffing is not something that has just started to occur. Occasionally we hear stories, like the one when China redirected some 15% of the world traffic through its server potentially allowing it to spy on that traffic. Maybe it was a simple routing table error like they claim or maybe it was done intentionally. The problem is this is not something new; before this there was the Echelon project created in the 1960s to spy on Russia and subsequently used to monitor Internet traffic. It’s allegedly run by Australia, Canada, New Zealand, the United Kingdom, and the United States and in the 1990s a controversy ensued because journalists claimed Echelon was being used for industrial espionage. Regardless, sniffing is a threat which every business faces, it doesn’t need to be from powerful political entities or terrorists, it can be attempted by hackers, competitors or even your own employees.

To cut it short, I think these are all attacks that one should already be protecting against regardless of terrorism.