Sunday, January 24, 2010

Australia and Cyber-warfare Book on Attacks from China

Cover of Australia and Cyber-warfareThe book "Australia and Cyber-warfare" is very useful for putting the new Australian Cyber Security Operations Centre (CSOC) into perspective. The section on "China’s cyber-attack capability" is relevant to Google's recent allegations of attacks from China.

There are very well formatted free web and mobile versions of the book available online, as well as a print on demand edition.

Australia and Cyber-warfare

Gary Waters, Desmond Ball and Ian Dudgeon

Canberra Papers on Strategy and Defence No. 168

ISBN 9781921313790 (Print version) $19.95 (GST inclusive)
ISBN 9781921313806 (Online)
Published July 2008

This book explores Australia’s prospective cyber-warfare requirements and challenges. It describes the current state of planning and thinking within the Australian Defence Force with respect to Network Centric Warfare, and discusses the vulnerabilities that accompany the use by Defence of the National Information Infrastructure (NII), as well as Defence’s responsibility for the protection of the NII. It notes the multitude of agencies concerned in various ways with information security, and argues that mechanisms are required to enhance coordination between them. It also argues that Australia has been laggard with respect to the development of offensive cyber-warfare plans and capabilities. Finally, it proposes the establishment of an Australian Cyber-warfare Centre responsible for the planning and conduct of both the defensive and offensive dimensions of cyber-warfare, for developing doctrine and operational concepts, and for identifying new capability requirements. It argues that the matter is urgent in order to ensure that Australia will have the necessary capabilities for conducting technically and strategically sophisticated cyber-warfare activities by the 2020s.

The Foreword has been contributed by Professor Kim C. Beazley, former Minister for Defence (1984–90), who describes it as ‘a timely book which transcends old debates on priorities for the defence of Australia or forward commitments, [and] debates about globalism and regionalism’, and as ‘an invaluable compendium’ to the current process of refining the strategic guidance for Australia’s future defence policies and capabilities. ...

Table of Contents

Abstract
Contributors
Acronyms and Abbreviations
Foreword by Professor Kim C. Beazley
Chapter 1. Introduction: Australia and Cyber-warfare
Chapter 2. The Australian Defence Force and Network Centric Warfare
Introduction
The ADF’S NCW Concept
Networks
Shared situational awareness
Self-synchronisation
Balancing risks and opportunities
The NCW Roadmap
The human dimension
Accelerating change and innovation
Defence’s Information Superiority and Support Concept
Networking issues
The ADF’s capability planning for NCW
Maritime
Land
Aerospace
ISR
Joint force
Coalition
Conclusion
Chapter 3. Information Warfare—Attack and Defence
Introduction
The value of information
Open source information
Information Warfare
How would an adversary attack us?
China’s cyber-attack capability
What should we do?
Conclusion
Chapter 4. Targeting Information Infrastructures
Introduction
The information society
Information Infrastructures: the NII, GII and DII
The National Information Infrastructure
The Global Information Infrastructure
The Defence Information Infrastructure
Information Infrastructures: Some key characteristics
Components
Connectivity
Bandwidth
Functional interdependence
Ownership and control
The Importance of Information Assurance
Targeting Information Infrastructures: who and why?
Nation-state targeting
Targeting by non-state organisations
Targeting: objectives
Targeting: capabilities required
Psychological operations
Database management
Computer Network Operations (CNO)
Other weapons and methodologies
Media
HUMINT assets
Additional capabilities
Targeting: vulnerability and accessibility
Vulnerabilities
Accessibility
Intelligence
Conclusion
Chapter 5. Protecting Information Infrastructures
Introduction
Balancing information superiority and operational vulnerability
Vulnerabilities
Balancing security and privacy in information sharing
Managing security risk
Managing privacy risk
Dangers in getting privacy wrong
Cyber-security
Critical Infrastructure Protection in Australia
Securing the Defence enterprise
Trusted information infrastructure
Addressing the national requirement
Conclusion
Chapter 6. An Australian Cyber-warfare Centre
Introduction
The relevant organisations and their coordination
Research, planning and preparation
Offensive activities
Information Warfare and the intelligence process
Command issues
A premium on ante-bellum activities
Rules of engagement, doctrine and operational concepts
Capability planning
Location of a Cyber-warfare Centre
Regional developments
Conclusion
Bibliography
Index

No comments: