America’s Cyber Security Dilemma

Uploaded on 2017-01-16 in NEWS-Cybersecurity News, GOVERNMENT-National, GOVERNMENT-Defence, FREE TO VIEW

A security dilemma occurs when one nation’s efforts to improve its security prompts other nations to take similar actions, often provoking arms races, instability, even war. 

But while such dilemmas have typically led to more-or-less balanced buildups on all sides, today’s US military spending patterns are driving adversaries in a different direction: towards cheaper, cyber-focused means of undermining a network-dependent force and the society it protects.

The way out of this cybersecurity dilemma must be equally unconventional: continue to establish cyberspace rules of engagement, improve and increase government-industry partnerships, and strengthen oversight and regulation of cyber-enabled technologies. 

Among the actors working to exploit new network-enabled technologies and the American dependence on them are the Islamic State, al-Qaida, Russia, and China, but perhaps the archetypal example is Iran. 

Its political and defense leaders realise that they cannot compete militarily against the United States, and stand little chance against Israel, a US ally, in conventional combat. Iran also recognises that it is in many respects outgunned by its regional rival, Saudi Arabia, and has on occasion sought to redress its differences through hostile actions in cyberspace.

With its nuclear program on hold, Iran is trying to bridge the conventional military gap between the country and its competitors by shifting some resources to develop cyber capabilities. Iranian hackers have progressed far beyond defacing websites and disrupting network services. 

They can now develop and use sophisticated software to probe for vulnerabilities, inject malware, and gain control of adversary systems.

The Iranians have targeted public, and private-sector industrial control systems, including the supervisory control and data acquisition (SCADA) systems that drive utilities and industrial automation. 

In a rare move, the United States indicted several Iranian citizens in March that it alleges were working as hackers for the Islamic Revolutionary Guard Corps and the Iranian government. 

These hackers are accused of conducting cyberattacks on myriad entities, including the New York Stock Exchange, NASDAQ, Bank of America, J.P. Morgan Chase, and AT&T. Perhaps even more troubling, Iranian hackers purportedly gained unauthorised remote access to a computer controlling the Bowman Avenue Dam in upstate New York. While no physical damage occurred, the demonstrated capability was extremely concerning.

What can the United States do about this cybersecurity dilemma?

It could try to decrease its military and economic reliance on cyberspace and correspondingly reduce its level of vulnerability. 

However, such a move would likely have enormous economic costs and significant associated losses in business and military productivity. This option is even less palatable when viewed in light of the relative gains that would be realised by competitors who do not likewise reduce their investments in cyberspace.

The United States could also raise the costs to its competitors for engaging in cyberattacks. For instance, it could develop an explicit policy of responding to particularly injurious cyberattacks with significant and visible combinations of cyber and kinetic retaliations and/or diplomatic and economic sanctions. 

Yet the US officials cannot be sure how the execution of declared policy of escalation would be perceived or responded to by others, even if they could reasonably assume that the origin, identity, and intent of an attack or attacker could be ascertained in a timely fashion. If this prescription were followed, mistakes or miscalculations could lead to war.

The risks of these two paths lead us to a third: 

The United States should instead continue to pursue international cooperation in cyberspace, improve its ability to identify and expose the sources of attacks, and improve its oversight of the development and adoption of cyber-related technologies. Although not a panacea, following each step would help ensure that US military investments in cyber capabilities are balanced against the attendant risks.

Most importantly of those three, the United States should continue to help craft international rules of engagement for behavior in cyberspace. Establishing internationally accepted rules for the conduct and legitimacy of engaging in cyberattacks could go a long way toward reducing the risks associated with the relatively unrestricted modes of warfare now occurring in and through cyberspace.

The United States should also continue to work on developing methods for quickly and accurately identifying the source of any attacks launched against its military, businesses or individuals. Although forming partnerships between the government and businesses has proven difficult in the past, such continued partnerships are necessary to this effort. 

Identifying and exposing the actors engaging in cyberattacks could help the United States redress economic losses and improve its ability to defend against future attacks. Increasing awareness of bad actors and their methods of attack also benefits the broader community of interested parties.

The United States should continue to improve its regulation and oversight of the development and adoption of new software and technologies. Networks and many of their components are inherently and increasingly insecure. Their vulnerabilities are exacerbated by the rapid and nearly exponential adoption of new applications and technologies where speed of development and convenience are often prioritized over the mitigation of potential security concerns. 

And while the US military takes security into account when adopting new technologies, the progressive employment of commercially developed cyber-enablers invites the risk of additional vulnerabilities.

Though the United States may have unwittingly created this security dilemma, it is too late to reverse course now. Its best chance of maintaining its military advantage, in both the conventional and cyber domains, requires a sober assessment of the path that it has chosen and deliberate steps to reduce the vulnerabilities it has created.

DefenseOne:       US & Russia Relations: It’s A New Cold War:      US Cybersecurity Strategy In The Trump Era:

Cyberwar: The Smart Person's Guide:         Image: George Creal

 

« German Police Will Squash Fake Online News
Changing Other People's Flight Bookings Is Just Too Easy »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

ZenGRC

ZenGRC

ZenGRC - the first, easy-to-use, enterprise-grade information security solution for compliance and risk management - offers businesses efficient control tracking, testing, and enforcement.

Perimeter 81 / How to Select the Right ZTNA Solution

Perimeter 81 / How to Select the Right ZTNA Solution

Gartner insights into How to Select the Right ZTNA offering. Download this FREE report for a limited time only.

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

Securezoo

Securezoo

Securezoo's mission is to simplify and enhance information security by providing trusted security guidance, products, and information to small and mid-sized businesses and security professionals.

SC Media

SC Media

SC Media arms information security professionals with the in-depth, unbiased business and technical information they need to tackle the countless security challenges they face.

Acunetix

Acunetix

Acunetix is a leading web vulnerability scanner, widely acclaimed to include the most advanced SQL injection and XSS black box scanning technology.

Seagate Technology

Seagate Technology

Seagate data storage systems are purpose-built for enterprise and data centre performance, scalability, reliability and security.

Altius IT

Altius IT

Altius IT reviews your website for security vulnerabilities and provides a report identifying vulnerabilities and recommendations to make secure.

HYAS Infosec

HYAS Infosec

HYAS is a highly skilled information security firm developing the next generation of information security technology.

BankVault

BankVault

BankVault is a new type of cyber technology (called remote isolation) which sidesteps your local machine and any possible malware.

Cybersprint

Cybersprint

Cybersprint's Digital Risk Protection platform continuously monitors your digital footprint so you can make informed decisions on exposure to online threats, identify vulnerabilities and take action.

Cyber Security Malta

Cyber Security Malta

Cyber Security Malta is part of Malta's National Cyber Security Strategy which aims to combat cybercrime, strengthen national cyber defence and provide cyber security awareness and education.

SecureTech360

SecureTech360

SecureTech360 is a cybersecurity and IT consulting firm whose principals have extensive experience in Cybersecurity and Information Technology.

CyNam

CyNam

CyNam is a platform for enabling the growth and development of people and organisations within Cheltenham’s flourishing cyber technology ecosystem.

CrowdSec

CrowdSec

CrowdSec is an open-source & participative IPS able to analyze visitor behavior by parsing logs & provide an adapted response to all kinds of attacks.

Mission Critical Partners (MCP)

Mission Critical Partners (MCP)

Mission Critical Partners is committed to delivering innovative solutions that help our clients enhance and evolve their critical-communications systems and operations.

DataSolutions

DataSolutions

DataSolutions is a leading value-added distributor of transformational IT solutions in the UK and Ireland.

Cloudsec Asia

Cloudsec Asia

Cloudsec Asia is Thailand's top-ranked cybersecurity consultant company. We offers security services to ensure that all your IT assets are reliable, accessible, and secure.

UK Cyber Cluster Collaboration (UKC3)

UK Cyber Cluster Collaboration (UKC3)

UKC3 has been launched to support Cyber Clusters and encourage greater collaboration across regions and nations of the UK.