Deterrence

15 Thursday Jan 2015

Tags

black ice, Burning Chrome, centcom hack, ethical hack, Neuromancer, sony hack

Doesn’t it just seem obvious that at some point, to protect our digital selves, we’ll have to fight back? Firewalls and anti virus software are like fences – merely obstacles. Leaving the porch light on and locking your door is no doubt wise. Thieves target easy prey. You don’t have to out run the bear, just your buddy. The metaphors advising essential layers of protection are endless, but by now everyone should understand that absolutely no one is entirely safe from online intrusions. Lest we all agree to simply run around naked, data privacy requires more than protection; we need to increase the risk/reward ratio of cyber attacks with a strong deterrent.

We’re building a fence along our border with Mexico – which is to say that’s a problem we don’t really care to see fixed. Where American lives and real money are on the line, we deter attack with our armed forces. The best defense is a good offense. Cyber theft is starting to become real money. It’s one thing for a credit card company to build fraud into its business model. Not every business can do that. The potential losses aren’t always known. The information age is rapidly approaching its kairotic moment. If we can’t control technology, then we might as well reboot ourselves back to the dark ages before cyber extremism launches us into the stone age.

I’m proposing the ability to respond to hacking efforts with intrusion countermeasures electronics. ICE. There are other terms for this but I like the literary reference from Tom Maddox and William Gibson. The concept is an active defense that strikes back. Currently there is very little risk to deter internationally remote cyber criminals. This proposal is not new, the concept has been around since Burning Chrome and Neuromancer. Black ICE takes it further by suggesting the response actually include deadly force. Assuming that’s even possible. So why are we not enacting an idea that’s older than the Internet?

Consider what we learned recently from the Sony attack, ostensibly by North Korea. I have to use the adjective ostensibly, not because the FBI has yet to make their proof public, but because other agencies believe they have evidence demonstrating this is an inside job. Point being, certainty is difficult in proving the source of cyber attacks. So much can be spoofed. IP addresses. So much more is circumstantial and inferred. This type of malware was used by this cyber warrior previously against that target. The more sophisticated the attacker, the more likely they have obscured their tracks if not framed another source. The level of certainty required in a U.S. civil court of law is virtually impossible.

Given that, you can be certain responding with a counter attack is illegal. And your response will leave undeniable evidence. No corporate legal team will approve counter attacks. They would be complicit. There is also the risk of escalating the conflict. I don’t subscribe to that fear personally, but it doesn’t matter. No legal entity can perform counter attacks. It’s simply not allowed. Only governments can respond with intrusion countermeasures. Israel is transparent about this. You can only hope the U.S. does it. Deterrence requires we do so in a public and comprehensive manner.

Perhaps the government could outsource this to corporate ethical hackers like they do some military security now. Regardless, I think this cost should come out of our defense budget. I haven’t put any thought into how we should triage attacks. Should our response to an attack against a small startup be as severe as that of a Fortune 500 company? Should we discriminate at all. Is our first level of response a denial of service attack or do we erase attacker hard drives?

The technology for countermeasures will be interesting. The solution might require a government layer of software on every citizen’s computing device, much as we run anti virus now. That’s a scary thought. Worse than NSA snooping would be having to call the gov’t helpdesk when a software patch crashes your machine. That Obama is responding with Executive orders now to the Sony hack tells me what direction we’re headed. Could be years given the pace of political policy-making. Could be months given the pace of technological progress.

The Dark Side of the Cloud

18 Thursday Dec 2014

Posted by Ed Mahoney in cyber war

≈ 2 Comments

Tags

cyber war, FUD, Guardians of Peace, Kim Jong-un, sony hack, The Interview

The first thing I have to say about the Sony hack is that I can’t believe both this and the Cuba thing are keeping the Taliban slaughter of over 130 children out of the news. Seriously? I’m commenting on this because I work in the cyber security industry. Because $10M of pre-hack movie hype has bought this story top billing. But I consider it a non-event relative to the school children massacre in Pakistan this week.

I thought I was fully up on this story yesterday but it ruled the news today. It was bigger than Cuba by day’s end. Poor GOP, does anyone even remember the immigration story? Today’s dominant news theme was around the response of Americans to the Sony decision to yank the movie. I watched ET and read news stories. I saw it all day long on CNBC. I’ve yet to hear one person say this. Sony is Made in Japan.

So, armed with this intelligence; was America really hacked? To everyone clamoring for a military response; would you like to pause and think about this now that you understand N. Korea invaded Japan? I know, virtual borders are tough to decipher. Trust me on this. Check out Wikipedia. Query their stock listing. Sony is run by the Japanese. Maybe you won’t have to totally back down from your position. Perhaps there’s some clause in our joint defense treaty that provides Japan more protection than the U.S. Gov’t brings to bear each year when your credit card is hacked.

And how sure are you that Kim Jong-un is the culprit? I actually wouldn’t challenge the U.S. Gov’t. on this. It’s just I’m not sure I’ve read any credible government sources yet confirm this. I feel like the media has liberally referenced government sources as they confirm it’s North Korea. I think what makes me question this is how fast North Korea has been confirmed. Otherwise, I have no doubt our boys can determine the source. If not 100%, within five nines.

I will tell you I’m not worried about Sony. I mean about them making money from the film. I am starting to pity them somewhat with all the hits they keep taking. In terms of profiting from the film, I always think of the old Hollywood expression, “even bad publicity is good publicity.” So I’m not worried about the film making money. In fact, The Interview will likely become the highest grossing non-release of all time. Sony should start to care about all the damage this is doing to their brand. And Prime Minister Abe might want to beef up his cyber security forces along with his plans to increase funding for the military.

As far as that goes, every one of you better start to shore up your security. A cyber storm is coming. If you feel wounded from the Sony cyber battle, wait to see what it feels like when you take a direct hit.