SCHOOL THESIS

More documents

Recommendations

Info

For example, Stavridis outlines the 2012 “Shamoon” virus that infected Saudi Aramco, the world’s largest State-owned oil company. This cyber operation erased data from computer memories which the company could not reconstitute. Also, company systems were down for two weeks, resulting in adverse global economic affects. Finally, more than 30,000 workstations were replaced to rid the corporation network of malware. This action “is a far better measure of cyberforce than simply concentrated personal injury or physical damage. Yet, according to the Tallinn Manual, Shamoon was not a cyber attack.” 49 Therefore, Stavridis offers his own alternative definition: A cyber attack is the deliberate projection of cyberforce resulting in kinetic or nonkinetic consequences that threaten or otherwise destabilize national security, harm economic interests, create political or cultural instability; or hurt individuals, devices or systems. 50 This may become a more useful definition for future military planners, as it broadens threats from cyberspace operations to include those actions which inflict economic harm or national security instability. 4. Military Cyberspace Definitions Finally, from a Department of Defense (DOD) perspective, military cyberspace missions can be characterized using the following unclassified definitions: Department of Defense Information Networks (DODIN). “The globally interconnected, end-to-end set of information capabilities, and associated processes for collecting, processing, storing, disseminating, and managing information on-demand to warfighters, policy makers, and support personnel, including owned and leased communications and computing systems and services, software (including applications), data, security services, other associated services, and national security systems.” 51 49 Ibid. 50 Ibid. 51 Department of the Army, Field Manual 3–38, “Cyber Electromagnetic Activities,” 3–7 Feb 2014, accessed 21 Apr 2015, http://armypubs.army.mil/doctrine/DR_pubs/dr_a/pdf/fm3_38.pdf. 24
DODIN Operations. “Operations to design, build, configure, secure, operate, maintain, and sustain Department of Defense networks to create and preserve information assurance on the Department of Defense information networks.” 52 DODIN operations are the traditional methods we all think of to preserve data availability, integrity, confidentiality, and user authentication. These operations include configuration control and system patches, user training, physical security, firewalls, and data encryption. Many DODIN activities are conducted through regularly scheduled events and updates. Defensive Cyberspace Operations (DCO). These are operations which respond to unauthorized activity or alert/threat information against the DODIN. DCO can be both “passive and active cyberspace operations intended to preserve the ability to utilize friendly cyberspace capabilities and protect data, networks, net-centric capabilities, and other designated systems.” 53 DCO consists of both internal defensive measures and DCO Response Actions (DCO-RA): “Internal defense measures” are conducted within the DODIN. These are defined as being “defensive tools and techniques [which] are designed to find, fix and finish anomalous network activity using rule, signature and behavioral-based techniques.” 54 “DCO-RA” are defensive measures taken outside the defended network to protect DOD cyberspace capabilities. Once sources of a cyber attack are identified, response actions (such as custom-made computer code) may be implemented to defend friendly cyberspace systems. 55 Offensive Cyberspace Operations (OCO). These are “operations intended to project power by the application of force in and through cyberspace.” 56 OCO focuses effects in cyberspace to influence or degrade enemy weapon systems, command and control processes, critical infrastructures, etc. 52 Ibid., 3–7. 53 Ibid., 3–6. 54 Ibid., 3–6. 55 Ibid., 3–6. 56 Ibid., 3–2. 25
Page 1 and 2: NAVAL POSTGRADUATE SCHOOL MONTEREY,
Page 3 and 4: REPORT DOCUMENTATION PAGE Form Appr
Page 5 and 6: Approved for public release; distri
Page 7 and 8: ABSTRACT For more than fifty years,
Page 9 and 10: TABLE OF CONTENTS I. INTRODUCTION..
Page 11 and 12: 1. Advantages, Disadvantages and We
Page 13 and 14: LIST OF FIGURES Figure 1. North Ame
Page 15 and 16: LIST OF TABLES Table 1. Cyberspace
Page 17 and 18: LIST OF ACRONYMS AND ABBREVIATIONS
Page 19 and 20: EXECUTIVE SUMMARY Since 1958, North
Page 21 and 22: ACKNOWLEDGMENTS I feel very fortuna
Page 23 and 24: I. INTRODUCTION A. PROBLEM STATEMEN
Page 25 and 26: This thesis then developed three co
Page 27 and 28: II. OPERATIONAL OVERVIEW A. INTRODU
Page 29 and 30: Based upon the remarkable success o
Page 31 and 32: Later, because of growing concerns
Page 33 and 34: 3. Cruise Missile Warning While ICB
Page 35 and 36: C. NORAD’S NEW MARITIME WARNING M
Page 37 and 38: When asked about the pending NORAD
Page 39 and 40: Director Clapper then identified to
Page 41 and 42: Level 2. Software tools that can be
Page 43 and 44: First, the Tallinn group developed
Page 45: More importantly, the NATO definiti
Page 49 and 50: As can be seen, the topic of “cyb
Page 51 and 52: 3. U.S. Northern Command Created in
Page 53 and 54: 5. U.S. Cyber Command Created in 20
Page 55 and 56: Figure 16. DND and SJS Crests. 2. S
Page 57 and 58: 4. Canadian Forces Information Oper
Page 59 and 60: Figure 19. Cyber Event Conferences.
Page 61 and 62: Finally, the NORAD and USNORTHCOM C
Page 63 and 64: III. LITERATURE REVIEW A. INTRODUCT
Page 65 and 66: Maritime warning consists of proces
Page 67 and 68: Initiative #10. Define and develop
Page 69 and 70: of peace and crisis, and develop th
Page 71 and 72: c. National Military Strategy (2011
Page 73 and 74: This publication discusses cyberspa
Page 75 and 76: MINDFUL that in the years since the
Page 77 and 78: IV. COURSES OF ACTION DEVELOPMENT A
Page 79 and 80: 4. Disadvantages and Proposed Solut
Page 81 and 82: Requires negotiating new cyberspace
Page 83 and 84: E. SUMMARY This chapter identified
Page 85 and 86: V. COURSES OF ACTION ANALYSIS A. ME
Page 87 and 88: 2. COA #1 Synopsis COA #1 is a prom
Page 89 and 90: Requires negotiating new cyberspace
Page 91 and 92: DISADVANTAGES SOLUTIONS WEIGHT Modi
Page 93 and 94: Under this COA, existing classified
Page 95 and 96: Change DOD conference procedures to
Page 97 and 98:
VI. FINDINGS AND RECOMMENDATIONS A.
Page 99 and 100:
Finally, COA #3 proposes a joint NO
Page 101 and 102:
LIST OF REFERENCES “2014: Piracy,
Page 103 and 104:
Lawson,Sean. “DOD’s ‘First’
Page 105 and 106:
———. Joint Publication 3-12R
Page 107:
INITIAL DISTRIBUTION LIST 1. Defens
show all

SCHOOL THESIS

Create successful ePaper yourself

Delete template?

Save as template?