Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Information-Security-News
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

[ISN] DOD cyberwarriors in a war of attrition

from [InfoSec News] Network Security [Permanent Link]
Subject: [ISN] DOD cyberwarriors in a war of attrition
Date: Tue, 12 Jul 2005 05:13:24 -0500 (CDT) 
Forwarded from: William Knowles <wk@c4i.org>

http://www.fcw.com/article89526-07-11-05-Web

By Frank Tiboni
July 11, 2005 

Military officials can better protect their communications systems by 
building fake networks or Honeynets to divert adversaries away from 
critical systems and to gain intelligence on their attack methods, a 
top official in the Defense Department's cyberdefense organization 
suggests in a new paper. 

The new computer defense strategy is called Net Force Maneuver. "For 
Net Force Maneuver, our objective is to draw the adversaries away from 
real, mission-critical systems while learning as much about their 
attack techniques and capabilities as possible," said Army Col. Carl 
Hunt, director of technology and analysis/J-9 in the Joint Task Force 
for Global Network Operations (JTF-GNO), in the paper "Net Force 
Maneuver: A NetOps Construct."

To use Net Force Maneuver, military officials must better understand 
their networks, the technologies available to better operate them and 
their adversaries' capabilities, Hunt said. He co-wrote the paper with 
Doug Gardner, director of the Applied Technology Unit in JTF-GNO, and 
Jeffrey Bowes, technical director of the Joint Information Operations 
Division of Northrop Grumman's Information Technology TASC unit. The 
paper appeared in the 2005 Information Assurance Proceedings 
publication produced for the Institute of Electrical and Electronics 
Engineers Computer Society's Systems, Man and Cybernetics IA Workshop 
held in June at the U.S. Military Academy at West Point, but was 
announced at the Army IT Conference in Las Vegas earlier that month.

Hunt also describes the military's current computer network defense 
strategy as a battle against attrition. "Unfortunately, attrition is a 
reasonable characterization of our defensive computer network strategy 
today, with one major caveat," he said. "With the exception of an 
occasional arrest, our adversaries are able to inflict a substantial 
amount of harassment and a measurable amount of damage upon DOD 
communications networks at practically no cost to themselves." 

Hunt went on to say, "It's probably only a slight exaggeration to say 
we are fighting an attrition battle where we are the only ones being 
attrited."


 
*==============================================================*
"Communications without intelligence is noise;  Intelligence
without communications is irrelevant." Gen Alfred. M. Gray, USMC
================================================================
C4I.org - Computer Security, & Intelligence - http://www.c4i.org
*==============================================================*



_________________________________________
Attend the Black Hat Briefings and
Training, Las Vegas July 23-28 - 
2,000+ international security experts, 
10 tracks, no vendor pitches.
www.blackhat.com
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • [ISN] DOD cyberwarriors in a war of attrition, InfoSec News <=
Previous by Date:  [ISN] Fear, Anger, Distrust, InfoSec News
Next by Date:  [ISN] Trial Begins in Arkansas Hacker Case, InfoSec News
Previous by Thread:  [ISN] Fear, Anger, Distrust, InfoSec News
Next by Thread:  [ISN] Trial Begins in Arkansas Hacker Case, InfoSec News
Indexes:  [Date] [Thread] [Top] [All Lists]