(in) Security - Academic Conferences Limited

More documents

Recommendations

Info

David Barnard-Wills Karen Fierke suggests that due to attempts to develop new approaches and answers, and a rejection of universal and transitive interests and behaviours among states, critical security studies has arguably been more in line with a changing world than its mainstream counterparts (Fierke 2007, p.27). A sensitivity towards identity and interests is more appropriate than a theory which assumes an unchanging security environment over time (Fierke 2007, p.28). Furthermore, the Realist perspective concerns itself with the interests of states and as such is poorly calibrated for understanding the actions of sub-state or non-state actors (Peoples & Vaughan-Williams 2009, p.20) precisely those that can become involved in cyber conflict. 2. The cyberwar? This section of the paper sets out a brief overview of the events following the WikiLeaks ‘Cablegate’ release of US diplomatic cables. This series of events has been selected because it demonstrates a number of features that have been increasingly associated with contemporary cyber conflict. It has also been called, somewhat loosely, the first visible cyber war. Because of these features this set of events provides insight for thinking about cyber conflict more broadly. The conflict has involved non-state actors and the ‘weapon of choice’ appears to be distributed denial of service attacks. However looking at the events from a holistic perspective that includes political, legal and symbolic aspects suggests a more complicated reading. In late November 2010 the whistleblowing and journalism organisation WikiLeaks starts to make publicly available secret cables from United States diplomats. It is rapidly condemned by the US government. Over the following days, quite a range of actors becomes involved in this at quite high tempo. Much of the reporting in the technical media focused upon the movement between various hosting services and a series of electronic attacks. Shortly after the cable release WikiLeaks’ website comes under two denial of service attacks, seemingly from a US ‘patriotic hacker’, which force it offline. Additionally the Chinese government blocks access to WikiLeaks from within China. The attacks force WikiLeaks to move from servers in France to two Amazon cloud servers on the 29 th . Amazon then removes WikiLeaks from its S3 server in the US stating a terms of service violation (Amazon Web Services 2010). The Berkman Center report on civil society and human rights groups that are the target of denial of service attacks suggests making hosting arrangements closer to the ‘core’ of the internet to benefit from the capacity and resilience of major service providers, and finding internet service providers who will commit not to remove controversial content unless required to be law (Zukerman et al. 2010, p.5). This seems to be the motivation for moving to cloud servers, but was in this case ineffective due to the unwillingness of such a provider to host. Shortly after everyDNS.net kills the wikileaks.org address, forcing a move to the Swiss wikileaks.ch. WikiLeaks is now hosted by Swedish company Banhof AB which excites the media by being inside a bomb shelter. On the evening of the 3 rd December PayPal stops processing donations to WikiLeaks stating a violation of acceptable use and that it considers WikiLeaks to have violated its service agreement on encouraging, promoting, facilitating and instructing others in illegal activity (PayPal 2010). It is followed on the 7 th by Mastercard and Visa Europe who also stop processing payments. Visa Europe Ltd blocked donations to WikiLeaks and Sunshine Press (the associated fundraising organisation) from December 8 th pending an investigation into the nature of WikiLeaks business and if it contravened Visas operation conditions. The internal investigation is ongoing, and payments have not been resumed (Associated Press 2011). Declaring its support for WikiLeaks campaign for transparency and free speech and high critical of those organisations that had suspended their interactions with the organisation, the internet collective ‘Anonymous’ redirected its Operation Payback away from the Motion Picture Associate of America (MPAA) and International Federation of the Phonographic Industry (Zukerman et al. 2010, p.6) towards the opponents of WikiLeaks. Anonymous has previously also taken action against the Church of Scientology. Anonymous has demonstrated a relatively high level of technical capacity as well as knowledge of its targets. Using a distributed denial of services attack (DDoS) using the ‘Low Orbit Ion Cannon (LOIC)’ software, Anonymous attacked PayPal on December 6 th and Mastercard on December 8 th . An Anonymous press release suggested a number of tactics in addition to DDoS attacks: a boycott of Paypal, to spread and mirror the leaked diplomatic cables, form a ‘human DNS’ system to make them impossible to censor, to upvote Assange on Time’s person of the year list to increase public exposure. It also advocates posting on ‘critical hubs of information distribution’ to ‘make sure everyone you know is 18
David Barnard-Wills aware of what is happening’. Offline strategies included printing out and distributing locally relevant cables, complain to local member of parliament or political figures, and conventional protest (marches, petitions etc). Operations Payback and Avenge Assange interweave online strategies and actions into protest and political action. This is not inherently surprising because the online environment is one of the ‘places’ where people enact politics, economics, communicate with peers and get information. That political communication and protest activity move here too is to be expected. The ‘Low Orbit Ion Cannon’ software does not disguise IP addresses and potentially leaves users open to tracking. On the morning of January 28 th 2011, three teenagers and two adults were arrested in the UK under the Computer Misuse Act 1990 for their alleged involvement in Operation Payback (BBC 2011). A press release from ANON OPS responding to this interpreted the arrests as a sign that the UK government does not understand the ‘present-day political and technological reality’ but also as a declaration of war by the UK government against Anonymous. (Anonymous 2010). In co-ordinated activity, the FBI executed more that forty search warrants across the USA, whilst issuing its own press release reminding the public that participating in a DDoS is illegal and punishable with ten years imprisonment (FBI National Press Office 2011). This should raise some caution towards the assumption that cyber attacks are generally anonymous. 3. Language and securitization There are two levels of analysis here – the first is the relatively simply question that asks ‘is the conflict between Anonymous and service providers, in support of WikiLeaks, a cyber war’? The answer to which is rapidly negative. However, this question reveals a second deeper set of questions about the process of naming and defining a cyber war; a process that involves language and the politics of securitization. ‘Cyber war’ currently has no objective definition against which we can assess an event or series of events and make a clear assessment if these events count as cyber war or not. There are a set of usual reasons why such a definition is absent. These revolve around antagonistic relations between states unwilling to settle on a definition which would either curtail their ability to act in this domain, or require them to take particular action that they wish to avoid. Also, in the historical absence of anything universally recognised as a cyber war, comparison is complex. However the absence of a clear definition has more substantial epistemological underpinnings. If we spend some time examining cyberwar’s antecedent concept, that of war itself, we can find a similar contested understanding. Fierke (2007, p.34) describes security as an essentially contested concept and we can extrapolate a similar understanding of war. The criteria for an essentially contested concept is that a concept must have value associated with it, be internally complex and part of a broad conceptual landscape and have relatively open rules of application, so that users can interpret the concept differently in response to different real world events. Typical examples in political theory would be ‘justice’ or ‘equality’, meaningful terms around which political ideologies are structured, and which are used to make political claims. Political language is not simply descriptive but also evaluative. To term something a ‘war’ or not, is not just to describe, but also to judge (Jackson 2005, p.23). To accept an account of an essentially contested concept is to also accept political activity in line with that commitment (Fierke 2007, p.34). Bobbitt argues that the entire system of laws of war is predicated in part upon the definition of warfare (Bobbitt 2008, p.455). War is a human social artefact (Fierke 2007, p.57), but one that is potentially at odds with other human ends. The search for definitions and check lists is missing the contested and politicised nature of language and the penetration of the definitional exercise by securitization moves. Labelling a set of events as ‘war’ is a clear example of a securitizing move. A theoretical concept initially developed by the Copenhagen school in international relations, ‘securitization’ does not mean ‘to make something more secure’ but rather to define something as needing to be secured (Buzan et al. 1998, p.36). Conventionally the referent object of this securitization is the nation state, a political regime or ‘the people’. The concept of national security assumes that the nation state has to survive and it is therefore necessary for the state to maintain armies, produce weapons and seek out intelligence (Peoples & Vaughan-Williams 2009, p.76). Normal politics is characterised by haggling and contestation, but multiple actors and agencies with varying priorities as well as resources. Successfully securitizing an issue removes it from this melee and 19
Page 1 and 2: Proceedings of the 10th European Co
Page 3 and 4: Contents Paper Title Author(s) Page
Page 5 and 6: Paper Title Author(s) Page No. PhD
Page 7 and 8: Biographies of Conference Chairs, P
Page 9 and 10: esearch and teaching interest inclu
Page 11: Tampere, Military History and Strat
Page 14 and 15: Kari Alenius power and stayed there
Page 16 and 17: Kari Alenius The last two closely r
Page 18 and 19: Kari Alenius Bush, G. W. (2003-03-1
Page 20 and 21: Dominic Asamoah and William Oblitey
Page 22 and 23: Dominic Asamoah and William Oblitey
Page 24 and 25: Debi Ashenden cyberspace. As a resu
Page 26 and 27: Debi Ashenden (specifically the Bus
Page 28 and 29: Debi Ashenden implications are. It
Page 32 and 33: David Barnard-Wills justifies prior
Page 34 and 35: David Barnard-Wills The extent to w
Page 36 and 37: Potential Threats of UAS Swarms and
Page 38 and 39: Isolated individuals Laurent Beaudo
Page 40 and 41: Laurent Beaudoinet al. priori the s
Page 42 and 43: Laurent Beaudoinet al. about approp
Page 44 and 45: Alexander Bligh The following paper
Page 46 and 47: Alexander Bligh Are differences in
Page 48 and 49: Alexander Bligh Characterization of
Page 50 and 51: A Secure Architecture for Electroni
Page 52 and 53: Paul Crocker and Vasco Nicolau Spo
Page 54 and 55: 4.2 General overview Paul Crocker a
Page 56 and 57: 4.3 Security layer Paul Crocker and
Page 58 and 59: Paul Crocker and Vasco Nicolau The
Page 60 and 61: Figure 14: Strong biometric authent
Page 62 and 63: Evaluation of the Armed Forces Webs
Page 64 and 65: 1.2 The problem Pedro Cunha et al.
Page 66 and 67: Pedro Cunha et al. Another obtained
Page 68 and 69: Pedro Cunha et al. When classifying
Page 70 and 71: Christian Czosseck et al. The 2007
Page 72 and 73: 3.1 Penal code Christian Czosseck e
Page 74 and 75: Christian Czosseck et al. Political
Page 76 and 77: Christian Czosseck et al. file_id=1
Page 78 and 79: Christian Czosseck and Karlis Podin
Page 80 and 81:
Christian Czosseck and Karlis Podin
Page 82 and 83:
Page 84 and 85:
Page 86 and 87:
Moses Dlamini et al. then tested in
Page 88 and 89:
Moses Dlamini et al. Network of Liv
Page 90 and 91:
Moses Dlamini et al. phase. This is
Page 92 and 93:
Moses Dlamini et al. Santoro, R. an
Page 94 and 95:
João Ferreira et al. Host-based In
Page 96 and 97:
5. Proposed solution João Ferreira
Page 98 and 99:
João Ferreira et al. Therefore, pu
Page 100 and 101:
5.5 Profile updating João Ferreira
Page 102 and 103:
João Ferreira et al. Lynch, D.M. (
Page 104 and 105:
Eric Filiol et al. exist as well an
Page 106 and 107:
Eric Filiol et al. Level 2: warnin
Page 108 and 109:
Eric Filiol et al. method “saveAs
Page 110 and 111:
puts("Key Generated"); Eric Filiol
Page 112 and 113:
eturn -1; size = strlen(file); rt =
Page 114 and 115:
4.2 Email wiretapping Eric Filiol e
Page 116 and 117:
Eric Filiol et al. For Each myItem2
Page 118 and 119:
The Computer Security of Public/Ope
Page 120 and 121:
A USB stick containing portable app
Page 122 and 123:
Eric Filiol Figure 2: Document of t
Page 124 and 125:
Eric Filiol when pluging those USB
Page 126 and 127:
Marthie Grobler et al. for launchin
Page 128 and 129:
Marthie Grobler et al. situation ha
Page 130 and 131:
Marthie Grobler et al. meaning of s
Page 132 and 133:
Number of responses 5 4 3 2 1 0 Phy
Page 134 and 135:
Missionaries of Peace - The Creatio
Page 136 and 137:
Marja Härmänmaa In most cases the
Page 138 and 139:
Marja Härmänmaa romanità, to ser
Page 140 and 141:
Arto Hirvelä OPSEC is concerned wi
Page 142 and 143:
Arto Hirvelä feeling and action of
Page 144 and 145:
Live-Action Role-Play as a Scenario
Page 146 and 147:
Sara Hjalmarsson Cohn et al. (2002)
Page 148 and 149:
Sara Hjalmarsson experience may be
Page 150 and 151:
Sara Hjalmarsson The methodology us
Page 152 and 153:
Sara Hjalmarsson ELIN (2010). “We
Page 154 and 155:
Aki-Mauri Huhtinen between Wikileak
Page 156 and 157:
Aki-Mauri Huhtinen example, militar
Page 158 and 159:
4.3 Games of the 'postmodern world'
Page 160 and 161:
Information Security Culture or Inf
Page 162 and 163:
Ilona Ilvonen an explicit form and
Page 164 and 165:
Ilona Ilvonen All of the previous s
Page 166 and 167:
Ilona Ilvonen Schlienger, T. & Teuf
Page 168 and 169:
Saara Jantunen The Revolution in Mi
Page 170 and 171:
Saara Jantunen Table 1: "Sample IO
Page 172 and 173:
Saara Jantunen neutralization — (
Page 174 and 175:
Saara Jantunen Raytheon (2010) 'Tim
Page 176 and 177:
Saara Jantunen and Aki-Mauri Huhtin
Page 178 and 179:
Page 180 and 181:
Page 182 and 183:
Page 184 and 185:
Evolutionary Algorithms for Optimal
Page 186 and 187:
Jüri Kivimaa and Toomas Kirt Laye
Page 188 and 189:
2.2 Model optimization Jüri Kivima
Page 190 and 191:
Jüri Kivimaa and Toomas Kirt 5.1.1
Page 192 and 193:
Jüri Kivimaa and Toomas Kirt Fogel
Page 194 and 195:
Jüri Kivimaa and Toomas Kirt As we
Page 196 and 197:
Jüri Kivimaa and Toomas Kirt evolu
Page 198 and 199:
Luís Mendonça and Henrique Santos
Page 200 and 201:
Page 202 and 203:
Page 204 and 205:
Page 206 and 207:
Analysis and Modelling of Critical
Page 208 and 209:
Graeme Pye and Matthew Warren Conn
Page 210 and 211:
Graeme Pye and Matthew Warren 4. Cr
Page 212 and 213:
Graeme Pye and Matthew Warren 7. Au
Page 214 and 215:
Modelling Relational Aspects of Cri
Page 216 and 217:
Graeme Pye and Matthew Warren Tradi
Page 218 and 219:
Graeme Pye and Matthew Warren envir
Page 220 and 221:
Graeme Pye and Matthew Warren A fe
Page 222 and 223:
Graeme Pye and Matthew Warren North
Page 224 and 225:
3. eGovernment stages @ Kasi Raju T
Page 226 and 227:
Kasi Raju Facilities like single-w
Page 228 and 229:
Figure 2: Usage of online facilitie
Page 230 and 231:
Kasi Raju Figure 5: Suggestion for
Page 232 and 233:
Kasi Raju Figure 6b: Future plan to
Page 234 and 235:
Neil Rowe et al. date. It is time t
Page 236 and 237:
Neil Rowe et al. sampling of traffi
Page 238 and 239:
Neil Rowe et al. (Erbschloe 2001).
Page 240 and 241:
Distributed Denial of Service Attac
Page 242 and 243:
2.1.1 Smurf / ICMP Libor Sarga and
Page 244 and 245:
Figure 2: Procedural decision-makin
Page 246 and 247:
Libor Sarga and Roman Jašek eBay s
Page 248 and 249:
References Libor Sarga and Roman Ja
Page 250 and 251:
Małgorzata Skórzewska-Amberg and
Page 252 and 253:
Małgorzata Skórzewska-Amberg trat
Page 254 and 255:
Małgorzata Skórzewska-Amberg Rest
Page 256 and 257:
Małgorzata Skórzewska-Amberg It i
Page 258 and 259:
Ewald Stieger and Rossouw von Solms
Page 260 and 261:
Page 262 and 263:
4.2.5 Evolving Ewald Stieger and Ro
Page 264 and 265:
Page 266 and 267:
Anna-Maria Talihärm all have impac
Page 268 and 269:
Anna-Maria Talihärm introducing co
Page 270 and 271:
Anna-Maria Talihärm among the many
Page 272 and 273:
Anna-Maria Talihärm Council of Eur
Page 274 and 275:
Risto Vaarandi monitoring, since th
Page 276 and 277:
Risto Vaarandi supersets with the s
Page 278 and 279:
Risto Vaarandi During the experimen
Page 280 and 281:
Locating the Enemy Marja Vuorinen U
Page 282 and 283:
Marja Vuorinen Needless to say, an
Page 284 and 285:
Marja Vuorinen society into lower,
Page 286 and 287:
Marja Vuorinen Huhta, I. (2001) ”
Page 288 and 289:
Matthew Warren and Shona Leitch In
Page 290 and 291:
Matthew Warren and Shona Leitch 39
Page 292 and 293:
Matthew Warren and Shona Leitch thi
Page 294 and 295:
282
Page 296 and 297:
Mudassar Aslam and Christian Gehrma
Page 298 and 299:
Table 1: Telecommunication cloud th
Page 300 and 301:
Page 302 and 303:
Page 304 and 305:
Anthony Desnos and Geoffroy Gueguen
Page 306 and 307:
Page 308 and 309:
Page 310 and 311:
Regulatory Compliance to Ensure Inf
Page 312 and 313:
2.1 Research model Andro Kull The i
Page 314 and 315:
Andro Kull IT risk management is th
Page 316 and 317:
Andro Kull Presented classic inform
Page 318 and 319:
Andro Kull Risk assessment was ment
Page 320 and 321:
Fudong Li et al. several networks s
Page 322 and 323:
Fudong Li et al. users have the fre
Page 324 and 325:
Fudong Li et al. Table 4: Experimen
Page 326 and 327:
Fudong Li et al. authentication mec
Page 328 and 329:
2. COBIT Teresa Pereira and Henriqu
Page 330 and 331:
ITIL Transition; ITIL Operation;
Page 332 and 333:
Teresa Pereira and Henrique Santos
Page 334 and 335:
6. Conclusions and future work Tere
Page 336 and 337:
Mirva Salminen shooting and the dis
Page 338 and 339:
Mirva Salminen supplement to the US
Page 340 and 341:
Mirva Salminen armed vehicle. A thi
Page 342 and 343:
330
Page 344 and 345:
332
Page 346 and 347:
Andrea Rigoni and Salvatore Di Blas
Page 348 and 349:
Andrea Rigoni and Salvatore Di Blas
Page 350 and 351:
338
Page 352 and 353:
Robert Erra Denial Of Services (DOS
show all

(in) Security - Academic Conferences Limited

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?