Cyber Primer

Recommendations

Info

Integrating cyber operations As these operations may be dependent on infrastructure and networks associated with, or even located within, physical target sets, we need to de-conflict and thoroughly understand the gain/loss balance to avoid fratricide and the compromise of ‘equity’. It may be possible to create the required effect using relatively low equity or open-source (or modified open-source) tools that can provide agile and flexible response options. Integrating cyber into operational planning is achieved through joint action 47 which is a framework for considering the integration, coordination and synchronisation of all military activity within the battlespace. Joint action is implemented through the orchestration of: • information activities; • fires; • outreach; and • manoeuvre. 4.4. Tactical effects. At the tactical level, the time required to develop access and invest in capability may mean that creating high-end cyber effects is reserved for early or important actions that have a high pay-off. However, lower-level attacks (such as locally interfering with a single building’s network access and subsequently employing a low-end common payload) may increasingly be seen on operations. The Israeli integration of cyber operations into the conventional bombing of a Syrian nuclear research institute is a good example of the operational/tactical use of cyber. 48 4.5. Time. Cyber accesses often take years to develop. Knowledge of specific accesses and capabilities will be tightly controlled and held at the highest classification levels. Conversely, while this preparatory phase can take years, the execution phase may only take seconds. Similarly, in defensive terms, it may take far more people, time and resource to successfully protect and defend our own networks than for an adversary to launch a credible attack against them. 47 Joint action is defined as: the deliberate use and orchestration of military capabilities and activities to affect an actor’s will, understanding and capability, and the cohesion between them to achieve influence. Joint Doctrine Publication (JDP) 3-00, Campaign Execution (3rd Edition, Change 1). 48 More details on this case study can be found at Annex 4A on pages 78-79. 68 Cyber Primer (2nd Edition)
Integrating cyber operations Cyber command and control 4.6. Cyber underpins so many aspects of Defence business that cyber command and control for Defence is complex. UK cyber doctrine describes Defence’s cyber command and control. The span of military, multi-agency and multinational partners conducting cyber activities means simple supported/supporting relationships are inappropriate. Instead, the commander and specialist staff must understand and manage multiple relationships, each of which is governed by particular freedoms and constraints. Government and industry must adopt a cautious but trusted partnered approach to cyber activity, orchestrated across strategic to tactical levels of command. This also applies to allies and coalition partners. 4.7. By mainstreaming cyber, Defence is developing command and control and force structures to deliver and sustain cyber capabilities as part of its future force. The evolving Defence structure emphasises the complexity of conducting operations in cyberspace and our need to ensure actions are coordinated while retaining the flexibility and agility to manage the threats, and opportunities, arising from cyber. 4.8. An adversary may conduct cyber attacks against all the elements of national power. 49 An agile and resilient command and control approach will better survive and respond to the demands of such hostile activities. Command and control structures must also support cross-government and industry burden sharing. Further details of this will evolve as the UK Cyber Security Information Sharing Partnership (CISP) develops. The Defence Cyber Protection Partnership (DCPP) will raise awareness and improve understanding of the cyber security risks. These partnerships highlight the need for protective measures to increase the security of the wider Defence supply chain and define an approach to implement cyber security standards. 4.9. The UK Cyber Security Strategy 50 sets out our intention to secure the advantage in cyberspace by exploiting opportunities to gather intelligence and intervening as necessary against adversaries. Commanders should 49 The three instruments of national power are diplomatic, economic and military, which are underpinned by information. An example of this can found at Annex 4A on pages 80-81. 50 The UK Cyber Security Strategy: Protecting and promoting the UK in a digital world. Due to be updated in 2016. Cyber Primer (2nd Edition) 69
Page 1 and 2:
Cyber Primer Second Edition Develop
Page 3 and 4:
Cyber Primer The Cyber Primer (2nd
Page 5 and 6:
Preface ‘The Government will ensu
Page 7 and 8:
Contents Preface . . . . . . . . .
Page 9 and 10:
“In the information age almost al
Page 11 and 12:
Fundamentals of cyber Chapter 1 - F
Page 13 and 14:
Fundamentals of cyber • are ready
Page 15 and 16:
Fundamentals of cyber cyber and cyb
Page 17 and 18:
Fundamentals of cyber • details o
Page 19 and 20:
Mainstreaming, competencies, unders
Page 21 and 22:
Fundamentals of cyber 1.27. Cyber b
Page 23 and 24:
1A.5. Armed attack. Armed attack is
Page 25 and 26: Fundamentals of cyber Notes Cyber P
Page 27 and 28: “In the “We information reserve
Page 29 and 30: Cyber threats Chapter 2 - Cyber thr
Page 31 and 32: Cyber threats 2.5. Cyber attacks ca
Page 33 and 34: Cyber threats 2.9. Terrorists. Terr
Page 35 and 36: Cyber threats b. Payload. Payload i
Page 37 and 38: Cyber threats The process of attrib
Page 39 and 40: Phishing Spear phishing Whaling Fak
Page 41 and 42: Cyber threats Malware types Viruses
Page 43 and 44: Cyber threats and/or securely. Such
Page 45 and 46: How Against whom Why Theft of perso
Page 47 and 48: Cyber threats Using Twitter to mani
Page 49 and 50: Cyber threats Cyber attacks against
Page 51 and 52: Cyber threats State use of cyber op
Page 53 and 54: Cyber threats Case study 6 - The im
Page 55 and 56: Cyber threats Impact of malware on
Page 57 and 58: Cyber threats Social engineering ag
Page 59 and 60: “In the information age almost al
Page 61 and 62: Chapter 3 - Cyber functions Cyber f
Page 63 and 64: Cyber functions levels, they protec
Page 65 and 66: Cyber functions • command and con
Page 67 and 68: Cyber functions 3.16. Indicators an
Page 69 and 70: Cyber functions Maritime Land Air a
Page 71 and 72: Cyber functions 3.27. Electromagnet
Page 73 and 74: “In the information “It is impo
Page 75: Integrating cyber operations Chapte
Page 79 and 80: Integrating cyber operations archit
Page 81 and 82: Integrating cyber operations physic
Page 83 and 84: Integrating cyber operations NATO a
Page 85 and 86: Integrating cyber operations Cyber
Page 87 and 88: Integrating cyber operations Israel
Page 89 and 90: Integrating cyber operations Cyber
Page 91 and 92: Lexicon Lexicon Part 1 - Acronyms a
Page 93 and 94: Part 2 - Additional terms and defin
Page 95 and 96: Lexicon information operations Info
Page 97 and 98: Lexicon TEMPEST TEMPEST refers to t
Page 99 and 100: Lexicon Cyber Security Information
show all

Cyber Primer

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?