SCHOOL THESIS

More documents

Recommendations

Info

B. SCOPE AND METHODOLOGY This thesis specifically focuses on the military cyberspace enterprise, and how NORAD and the individual military organizations of both the U.S. and Canada might jointly conduct military cyber attack warning. Therefore, no review was conducted of civilian cyberspace-related policies or strategies published by either by the U.S. Department of Homeland Security (DHS) or Department of Justice (DOJ), or by Canada’s Public Safety (PS) Canada. This problem statement also does not propose having NORAD assume the technical cyberspace defensive/offensive functions performed by USCYBERCOM. The thesis simply asks, “What is NORAD’s role when assessing whether the U.S.’ and/or Canada’s military are under a military-related cyber attack?” The question of whether NORAD should play a role in cyber attack warning does not seem to have been investigated previously. A literature review identifying the significant national cyberspace policies for both the U.S. and Canada has been accomplished, as well as a review of the key military strategies for cyberspace published by both countries. Literature outlining strategic cyberspace policies and general strategies of both the U.S. and Canada are well defined and unclassified. Military doctrine regarding cyberspace operations is also available, but details become classified as discussions become more technically oriented. Every five years, NORAD conducts an internal self-assessment to determine if the Command is accomplishing the right missions, using the right approaches. Recently the headquarters staff began its investigation regarding NORAD’s role in cyberspace defense, and expressed great interest and willingness to support this research. This thesis used existing documentation as well as dialogue with Headquarters NORAD and USNORTHCOM, USCYBERCOM, and Canadian military cyberspace practitioners. 2
This thesis then developed three courses of action, and outlined their advantages and disadvantages. It then proposed solutions for each disadvantage, and weighted the difficulty of implementing each solution. For each course of action, a numerical score was then assigned. The lowest score indicated an option potentially easier to implement, while a high scoring option was potentially more difficult. Overall, the cyber warning topic is important, valuable, relevant, and enduring. The eventual goal is to present this completed thesis to the NORAD Strategy and Policy Division for subsequent staff action. C. <strong>THESIS</strong> OUTLINE Chapter II opens with an operational overview, beginning with a short history of NORAD’s evolving warning missions. The chapter then discusses cyber warfare components and includes a discussion regarding the difficulty of defining what is meant by a “cyber attack.” Next, the chapter lists key U.S. and Canada military organizations involved in national cyberspace operations. The chapter closes with a review of differing military cyber event conferences. Chapter III reviews current NORAD, U.S., and Canadian military policy regarding cyberspace operations, providing the reader numerous examples of national strategic guidance directing greater cooperation between both nations. Chapter IV lays out three proposed courses of action (COA) for NORAD, from removing classification barriers to allow better information sharing, to fusing and disseminating all-domain threat warnings to both nations, to jointly participating with U.S. Cyber Command in assessing actual cyber attacks. Each COA is then examined for advantages, disadvantages, and proposed solutions for implementation. Chapter V then analyzes each COA using a weighted scoring methodology to determine the relative difficulty in implementing each course of action. A lower score indicated an option potentially easier to implement, while a higher scoring option was potentially more difficult. Chapter VI concludes with the overall findings and a recommendation. 3
Page 1 and 2: NAVAL POSTGRADUATE SCHOOL MONTEREY,
Page 3 and 4: REPORT DOCUMENTATION PAGE Form Appr
Page 5 and 6: Approved for public release; distri
Page 7 and 8: ABSTRACT For more than fifty years,
Page 9 and 10: TABLE OF CONTENTS I. INTRODUCTION..
Page 11 and 12: 1. Advantages, Disadvantages and We
Page 13 and 14: LIST OF FIGURES Figure 1. North Ame
Page 15 and 16: LIST OF TABLES Table 1. Cyberspace
Page 17 and 18: LIST OF ACRONYMS AND ABBREVIATIONS
Page 19 and 20: EXECUTIVE SUMMARY Since 1958, North
Page 21 and 22: ACKNOWLEDGMENTS I feel very fortuna
Page 23: I. INTRODUCTION A. PROBLEM STATEMEN
Page 27 and 28: II. OPERATIONAL OVERVIEW A. INTRODU
Page 29 and 30: Based upon the remarkable success o
Page 31 and 32: Later, because of growing concerns
Page 33 and 34: 3. Cruise Missile Warning While ICB
Page 35 and 36: C. NORAD’S NEW MARITIME WARNING M
Page 37 and 38: When asked about the pending NORAD
Page 39 and 40: Director Clapper then identified to
Page 41 and 42: Level 2. Software tools that can be
Page 43 and 44: First, the Tallinn group developed
Page 45 and 46: More importantly, the NATO definiti
Page 47 and 48: DODIN Operations. “Operations to
Page 49 and 50: As can be seen, the topic of “cyb
Page 51 and 52: 3. U.S. Northern Command Created in
Page 53 and 54: 5. U.S. Cyber Command Created in 20
Page 55 and 56: Figure 16. DND and SJS Crests. 2. S
Page 57 and 58: 4. Canadian Forces Information Oper
Page 59 and 60: Figure 19. Cyber Event Conferences.
Page 61 and 62: Finally, the NORAD and USNORTHCOM C
Page 63 and 64: III. LITERATURE REVIEW A. INTRODUCT
Page 65 and 66: Maritime warning consists of proces
Page 67 and 68: Initiative #10. Define and develop
Page 69 and 70: of peace and crisis, and develop th
Page 71 and 72: c. National Military Strategy (2011
Page 73 and 74: This publication discusses cyberspa
Page 75 and 76:
MINDFUL that in the years since the
Page 77 and 78:
IV. COURSES OF ACTION DEVELOPMENT A
Page 79 and 80:
4. Disadvantages and Proposed Solut
Page 81 and 82:
Requires negotiating new cyberspace
Page 83 and 84:
E. SUMMARY This chapter identified
Page 85 and 86:
V. COURSES OF ACTION ANALYSIS A. ME
Page 87 and 88:
2. COA #1 Synopsis COA #1 is a prom
Page 89 and 90:
Requires negotiating new cyberspace
Page 91 and 92:
DISADVANTAGES SOLUTIONS WEIGHT Modi
Page 93 and 94:
Under this COA, existing classified
Page 95 and 96:
Change DOD conference procedures to
Page 97 and 98:
VI. FINDINGS AND RECOMMENDATIONS A.
Page 99 and 100:
Finally, COA #3 proposes a joint NO
Page 101 and 102:
LIST OF REFERENCES “2014: Piracy,
Page 103 and 104:
Lawson,Sean. “DOD’s ‘First’
Page 105 and 106:
———. Joint Publication 3-12R
Page 107:
INITIAL DISTRIBUTION LIST 1. Defens
show all

SCHOOL THESIS

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?