In 2018, the sums allocated for funding the whole cybersecurity industry in Israel amounted to 1.03 billion US dollars, with a 22% increase compared to the previous public-private funds budgeted.
Again in 2018, 66 new companies in the cybersecurity sector were set up, with a 10% increase as against to 2017. In 2016, however, they were 88.
The higher the rate of technological innovation, the greater the mortality rate of companies.
A fast and significant increase in turnover and investment in the Israeli cybersecurity, which, however, has been going on for five years.
Currently the area in which the Israeli start-ups specialized in cybersecurity is particularly focused is the IoT security, i.e. the security concerning the Internet of Things, which is basically a web system in which the real or even symbolic “objects” communicate one another data about themselves and can also have access to information about other objects, autonomously and independently.
The “things” we are talking about can be equipment, plants, systems, devices, material objects, goods and machines.
The IoT stems from the idea that the Web can and sometimes must leave a recognizable trace in the real world. This means that the web technology can and often must indicate the end of the separation between the material “thing” and the formal symbol, in the Web as in calculations.
Just think for a moment about what this will mean for the future production and distribution technologies.
But also for the design of the “objects”, with “things” that will change autonomously, in their various phases, between automated production, exchange and consumption.
The technologies that allow the creation of this new form of Spinozan coincidentia rei et intellectus are, in particular, radio-frequency identification (RFDI), with the recent addition of the new protocols by the IEEE.802.15.4 standard, a model using short-range wireless networks integrated between them, precisely according to the technical standards provided by IEEE.802.15.4.
Low-frequency radio networks and short-range wireless networks, all integrated into a new technology that allows “things” to communicate one another.
According to many estimates made by market analysts for the sector, in 2020 there will already be 29 billion objects connected at global level.
Control tools, real objects, materials for medical, statistical and intelligence analyses, as well as technologies for the just-in-time adaptation of companies’ products, not to mention obviously the defence sector.
For us laymen it is hard even to imagine the application areas of these new web technologies.
Another primary application of the new cybersecurity of Israeli start-ups in 2018 was that of security for blockchains.
This means taking care of the security of a network, namely the blockchain, which is a predetermined and closed set of computers, which always talk to one another, but do not know one another and, however, use all the data at their disposal, even vis-à-vis the other elements of the “chain”.
A game in which all the players know the cards of the others, but do not know the players and, above all, they are always steadily controlled by a constant exchange of information between them.
Just think, here, of the malware-probably of Chinese origin- which, over two years, has infected the production of virtual coins to the tune of over 2 million US dollars.
The virtual currency is always and in any case produced in blockchains and succeeding in entering a malware into a complex block network is certainly not a very easy operation.
As can be easily imagined, the malware we are talking about was the result of a blockchain hacking.
Every decentralized system, such as blockchains, is always structurally weak.
Hence, we can infer that Israel wants to use the blockchain technology in many areas, certainly including defence, strategic intelligence and security.
With specific reference to Security BC, an increasing number of attacks occurred on the boundary between the network and its market.
In fact, in December 2017, NiceHash- the largest virtual exchange market for virtual currency – was hacked, with a loss of 60 million US dollars.
However, many other attacks could be mentioned.
There is also the “51 attack”.
This entails that once any blockchain transaction has been completed, there may be a subject on the Web who, at that moment, has a higher computing power (51%) than the other “blocks”.
Hence, this enables the subject to change transactions and even multiply them, often excluding the other participants in the “blockchain” from communication.
Again in this regard, in 2014 there was the case of Gash, which for a long time had 51% of mining power, which is information technology – or rather energy and calculation power – capable of knocking out the competitors of both the other blockchains and of those in which Gash participated directly.
Recently the new start-ups of Israeli cybersecurity have recently much dealt with cloud-native security.
In other words, cloud-native security are technologies that regard, for example, containers or networks without autonomous central control.
This means the intelligence security of everything that currently – due to the size of the networks or of the market – already goes directly to cloud computing.
Just think here about the large logistics networks, or also the networks of the new division of international labour, or tourist networks and oil, material and raw materials trade networks.
Finally, for long time Israel’s new cybersecurity companies have much been operating in the Software Defined Perimeter (SDP).
SDP is also called “black cloud”, a cyber-system that evolved from the studies conducted at the Defense Information Systems Agency, namely the Defense Communication Agency, established in 1960 and producer of countless communication-command-control systems for the US Armed Forces.
The black cloud – probably developed in 2007 – is, in principle, a criterion for monitoring network security.
At the beginning of operations, there is an alphanumeric paradigm in which the position and identity of what enters the SDP is checked, but this network is “black” precisely because it can never be traced from outside, or by unauthorized web third parties. Everything happens without ever externalizing an Internet Protocol (IP) or other information.
In Israel’s current cybersecurity market, recently the most important sector in terms of investment has been the Internet of Things (IoT), which last year totalled as many as 229.5 million US dollars.
The Israeli government and private investors are very interested in the IoT, because it is versatile, but above all because it allows many industrial applications, for example in the drone network, in scientific research, in remote control and in medical therapies.
There will also be IoT technological and application innovations both for management and for storage and distribution networks, but also for the wireless networks of administrative offices and for small specialized production.
In 2018 one third of total investment went precisely to this sector, to the companies that deal with new network security-enhancement technologies.
Again in 2018, 60% of the new entrepreneurs or founders of Israeli cyber start-ups already had over ten years of experience in the sector, both as executives and as analysts.
Obviously, much of what is done in Israel stems from the excellent training that these technicians receive within the Armed Forces, in particular.
What is the secret of this highly successful formula? First and foremost, the full synergy between the Armed Forces and Universities.
Also this alone currently seems to be unattainable for our country.
All this happens, in Italy, both due to the lack of regulatory flexibility and also to the absolute scarcity of funds, as well as to some short-sightedness of investors, who aim at the “product” and not at the new “system”, not to mention some general cultural backwardness.
Also university backwardness especially in relation to the issues that entail a direct commitment of scientific research in the company and, which is even more severe, in the defence sector.
There is now a “Fund for supporting venture capital” available, included in the Government’s financial and budget package for 2019 – which, however, is technically a “reserve” of the Ministry for Economic Development (MISE), with 90 million euros to be allocated between 2019 and 2021.
The government is supposed to finance this Fund with a 15% share of the dividends made by State-owned subsidiaries.
All this seems to work slowly and as late as possible.
However, the traditional standard of investment in the innovative start-up sector – 100 million euros a year – has remained stable in Italy for several years.
It must be made clear, however, that this applies to all types of market technological innovation, not just cybersecurity.
This pales into insignificance compared to the sums invested in Israel, only in the essential field of cybersecurity.
The bilateral cyber working group between the United States and Israel is already operational, but only for the two countries.
It was established upon the proposal put forward by Thomas Bossert, former US Homeland Security Advisor, at the 2017 Cyber Week in Tel Aviv. Hence the idea of a bi-national network between the two countries (easier said than done) to counter cyberattacks.
In his Tel Aviv speech, Bossert mentioned the Iranian attacks on the Sands Casino and Saudi Aramco, as well as the operations of North Korea, which had already attacked Sony. As Bossert underlined, those countries had certainly not the technological and operational refinement of Russia and China.
Hence, for President Trump’s former consultant, as well as for Israel, the core of everything lies in cyberdefence, which in both countries is the backbone of cybersecurity.
Another factor to consider when analysing the network of cybersecurity companies in Israel is the very high quality provided by the universities that, in some cases, have specialized in this sector, but always with a close and updated relationship with the Israeli Armed Forces.
The working cycle of a manager in an Israeli start-up is traditionally military training, then specialization at university level and later creation of the various start-ups, whose products largely returnto the defence sector.
The new companies are also excellent for generating private profits, but are even more useful in stabilizing the ongoing innovation that characterizes the whole sector.
Much of the research that private individuals conduct, however, is not subject to disclosure.
Here much of what comes from Israel is web intelligence, which is the type of research using Artificial Intelligence and Information Technology to build products, systems and procedures that can be reused on the Web.
Therefore, this sector deals with a sum of data mining (which is the use of technologies that can discover semantic models in vast data collections) and information retrieval, i.e. the technology that discovers information in documents to search for both data and metadata, namely data on data.
In this sector, however, a relevant role is played by predictive analysis, which uses many of the already mentioned techniques, albeit in a different way, to predict facts or behaviours, as can be easily imagined.
Web intelligence and web monitoring, however, are used by the Israeli public or private analysts, with a view to checking on the Internet what each intelligence service does – perhaps using less refined methods: the probability of illegal leakage of sensitive data; the emergence of subjective and structural risks; the analysis on the Web of subjects of greater positive or negative interest for the intelligence services; the possible unlawful disclosure of data by intelligence agents and operators or by people of interest; as well as what we currently tend to call Adversary Simulation.
It is a technology based, first and foremost, on the actual exfiltration of the enemy’s data.
Furthermore, adversary simulation operates through a “compromise clause” based on the fact that the enemy is skilful, capable and, in any case, already part of the Web.
The technology we are talking about creates real-world indicators within one’s own and the attacker’s network. At this juncture, however, for many public and private users who buy it, this technology becomes the highest level for threat assessment and structured response to any threat.
An enhanced and innovative technique of strategic games, which obviously apply both to business and to defence.
What currently changes in the Israeli cybersecurity technology is the possibility of adapting – for various levels of customers (and security) – the functions of the system and hence the potentials used by the Web.
Therefore the solutions are always distributed, above all, in Software as a Service mode (SaaS).
In the social media sector, which is extraordinarily important for its intelligence relevance and the possibility of data mining, the Israeli cybersecurity is willing to produce many avatars and online profiles to be later launched in the virtual world.
On these structures, it is usually preferred to apply technical solutions that affect both the ordinary and the dark web.
It should be recalled that the latter is the network composed of websites that do not appear in search engines.
A network for security, certainly, but above all a Web aimed at the exploration of information, with a constant focus on dual-use technology and an evident primacy of the military sector over the civilian one, for obvious reasons.
Islamic Caliphate is dead, but its dangerous and infectious ideology is alive
The year 2019 witnessed the rout of the Islamic Caliphate – the pseudo-state entity created on the territories of Iraq and Syria by the terrorist organization Islamic State of Iraq and the Levant, a.k.a. the Islamic State or IG, ISIL, Daesh (Arabic), a terrorist group outlawed in the Russian Federation.
On March 1, 2019, just three or four years after the Islamic Caliphate terrorized the entire world, Kurdish units of the Syrian Democratic Forces in Syria launched an offensive to flush out 500 jihadist fighters holed up in the city of Baguz, ISIL’s last stronghold in the country.
Does this mean that Islamist terrorism is now done for?
During the first decade of the 21st century, ISIL emerged as the biggest threat to international security and world order. On June 29, 2014 ISIL terrorists announced the creation of an Islamic Caliphate with claims to global domination.
As seen on the map , the Islamic Caliphate, comprising numerous provinces, was to extend from China to the Atlantic Ocean, and from Central Europe and Siberia all the way down to equatorial Africa. The Caliphate encompasses all Muslim states without exception, including Iran and non-Muslim Israel, the territories “occupied by infidels,” as well as the whole of the Middle East and North Africa. Moreover, the Caliphate lays claims to Western Asia and Europe, including Spain, the Balkans, Romania and Austria.
The Islamic Caliphate went on to make the Syrian city of Raqqa its de-facto capital in 2014.
Although still far from achieving global dominion, the jihadists started building the basis of their future Islamic Caliphate by enslaving between 8 million and 10 million people in the occupied territories of Iraq and Syria, and virtually annihilating Syrian and Iraqi Christians, Yezidis, Shiites and Kurds.
In addition to Syria and Iraq, the Islamic State and its affiliates controlled parts of Afghanistan, Egypt, Yemen, Libya, Nigeria, Somalia and the Democratic Republic of Congo.
ISIL also used its substantial financial resources to increase the number of “sleeper” terrorist cells in Morocco, Algeria, Tunisia, Pakistan, Saudi Arabia, Lebanon, Indonesia, the Philippines, the North Caucasus and various European countries.
During its criminal heyday in 2014-2017, ISIL was one of the most numerous and well-armed terrorist groups in the Middle East, boasting over 100,000 fighters active mainly in Syria and Iraq.
Add to these 27,000 to 31,000 mercenaries from 86 countries who, according to the Soufan Group analytical center, fought in the ranks of this terrorist organization.
Equally noteworthy is the distribution of foreign ISIL militants by region and country (2016 – 2017):
|Former Soviet republics||8,717|
|Near and Middle East||7,054|
|Maghreb countries (North Africa)||5,356|
|South and Southeast Asia||1,568|
Countries –main suppliers of fighters for ISIL:
Equally noteworthy is data pertaining to the number of ISIL mercenaries from former Soviet republics (2015)
ISIL owes its temporary success in Iraq and Syria to these countries’ weak militaries, the seizure of their arsenals of advanced US-supplied weapons, and to the considerable financial resources looted from Iraqi banks.
And also to its militants’ religious fanaticism, the professional skills of former Iraqi and Syrian military officers who joined ISIL, to foreign mercenaries, the cruel and fear-instilling daily activities of this quasi-state, the ideological brainwashing of jihadist fighters and to professionally organized advocacy work.
ISIL’s bloody and ruthless way of dealing with opponents and the medieval laws it imposed on its subjects shocked the world. Even the ill-famed al-Qaeda that ISIL spun off from has come out against its “daughter,” with al-Qaeda leader Ayman al-Zawahiri officially announcing in February 2014 that he did not recognize ISIL as a member of his group.
In their effort to secure the locals’ support, ISIL members tried, within the framework of their quasi-state, to restore the cities’ economic life by rebuilding their war-ravaged infrastructure. Imitating state authority, they paid salaries and benefits to the unemployed, collected taxes and paid monthly salaries of $700 to their militants. At the same time, in their brutal imposition of Islamist medieval order, they surpassed even the Afghan Taliban.
Propaganda and PR feature prominently in the ISIL leaders’ activity.
ISIL has “revolutionized” the field of online promotion of jihadist ideology by creating a powerful social movement and recruiting thousands of fighters from around the world, Russia included, through a web of social networks alone.
According to Yekaterina Sokiryanskaya, director of the Center for Analysis and Conflict Prevention, a leading expert on the North Caucasus, ISIL created a highly professional and ramified propaganda machine for recruiting online, consisting of “central” media organizations, such as Al-Furqan and al-Hayat, and “regional” ones. In addition, the AMAQ News agency provides coverage for the Caliphate’s military operations and its everyday life even without having the status of its “official” media outlet.
Propagandists enjoy a privileged status in ISIL. According to the propaganda researcher IG Charles Winter, during the organization’s halcyon days (2014–2015), spin doctors were paid seven times as much as regular fighters.
Since its outset, ISIL has put out over 41,000 media releases, with an additional 2.3 billion releases made by its supporters (The New York Times).
“The loss of territory, resources, the retreat and evacuation of fighters, compounded by problems with the Internet has significantly reduced the flow of jihadist propaganda,” Yekaterina Sokiryanskaya writes.
“Daesh will not be able to maintain the previous level and quality of its propaganda materials any time soon. Realizing that with the loss of its ideological machine the whole project of the Islamic Caliphate will eventually be doomed, the ISIL leadership is adapting to new realities with affected references to a high mission now making way for more down-to-earth calls for one-off attacks with knives and axes on unarmed people. This change of tactic began in late-2015, after security agencies of various countries had seriously complicated the process of bringing in new fighters to Syria. ISIL initially advised its supporters to look for workarounds, and later – to move to other “provinces” of the Caliphate. Finally, last year, ISIL said that those who could not reach the Caliphate proper should stage attacks back at home,” she continues.
This is an extremely important trend. Just as the Caliphate ceases to exist as a quasi-state, its subjects, who have survived the antiterrorist battles, remain. Islamist terrorism is taking a new shape.
The Islamic Caliphate created by ISIL is perhaps the highest organizational quasi-state form of modern-day Islamist terrorism. Terror (“Fear,” “horror” in Latin) was used by ISIL as a primary method of warfare. Therefore, it could be compared (in function, if not in scale) with Nazi Germany or militaristic Japan, where international terrorism was part of official state policy.
Even though chances of a complete reincarnation of either ISIL or the Islamic Caliphate are pretty slim, dangerous options thereof can’t be ruled out.
That terrorism is often used by non-state actors – whether left-wing, right-wing or nationalist – and religious groups, is well known. In the 19th and 20th centuries, hundreds of political parties and groups were known to have used terror in their work.Their activities covered virtually the whole world: from small settlements and countries to continents, and were often supervised and financed by individual states to achieve geostrategic ends.
It is highly probable that the routed ISIL will still be trying to preserve its remaining terrorist groups, rebrand old ones, and recruit new fighters. Moreover, what has remained of the Daesh forces will spread throughout the world.
As BBC columnist Frank Gardner writes, “At the recent Munich Security Conference, Alex Younger, the chief of Britain’s secret intelligence service (MI6) said this: “The military defeat of the ‘caliphate’ does not represent the end of the terrorist threat. We see it therefore morphing, spreading out… within Syria but also externally… This is the traditional shape of a terrorist organization.”
Speaking at the same event, German Defense Minister Ursula von der Leyen said that ISIL was going deeper underground and building networks with other terrorist groups.
General Joseph Votel, who runs US Central Command, also said that even though the ISIL network is dispersed, pressure must be maintained or its components will have “the capability of coming back together if we don’t.”
Indeed, much of the ISIL militant force has not been destroyed and is now breaking up into small terrorist groups, which is only natural since ISIL is a plethora of jihadist groups fully capable of acting autonomously. .
With the rout of the Caliphate now a hard fact, ISIL is desperately looking for a way out of the situation. There are several such “exists” to speak of.
The first is the dispersal of jihadist fighters among the local population in Syria and Iraq, and the creation of “sleeper cells” waiting for an order to resume the fight.
A second option would be to redeploy militants to remote areas of Syria and Iraq, and the formation of guerilla units there.
Thirdly, this could be gradual infiltration into other countries where ISIL already has a base, or at least has supporters necessary for the organization to function further, perhaps under a different name, but with similar ideology and military-political doctrine. Primarily into Libya, where ISIL controls the cities of Derna, Nofalia, Sirt, and the Al-Mabrouk oil field. Moreover, in Libya, ISIL could become a third party in the ongoing confrontation between Tripoli and Tobruk.
In Afghanistan, ISIL has already become a third party in the long-running standoff between Kabul and the Taliban. However, the ongoing negotiations between the international community, primarily Russia and the US, with the Afghan Taliban (though in a separate format) could eventually ease tensions in that country which, in turn, would seriously undercut ISIL’s ability to influence the situation there.
In Egypt, local jihadists, taking orders from ISIL, control parts of the Sinai Peninsula.
Also, the Boko Haram group, which controls the north-east of Nigeria and is making inroads into neighboring Chad, Cameroon and Niger, has recently subordinated itself to ISIL.
There are certain opportunities now opening for ISIL also in Yemen, Somalia and the Democratic Republic of Congo.
Another “exit” option could be the return of the remaining jihadist fighters to their home countries, either individually or as part of small but closely-knit groups.
In the wake of the Islamic Caliphate’s downfall, many militants have recently returned home. About 30 percent of the 5,000 ISIL fighters (1,500) happen to be EU citizens. Of these, 300 have returned to France, about 900 people – to the former Soviet republics (including 400 to Russia), 800 – to Tunisia, 760 – to Saudi Arabia, and 250 – to Jordan.
This process is characteristic of all 86 countries Islamist volunteers once set out from to defend the ideas of radical Islam.
Clearly, the presence of experienced and battle-hardened ISIL terrorists, sometimes even armed, in the countries of their current residence is dangerous, even disastrous for these and other countries’ security. Small wonder, therefore, that the world is getting increasingly aware of the real threat posed by this jihadist-terrorist contagion.
Religious leaders are united in their denunciation of Islamist terror.
Saudi Arabia’s Supreme Mufti Abdulaziz bin Abdullah Al-Sheikh has branded the al-Qaeda and Islamic State jihadists the main enemies of Islam. He also quoted a verse from the Koran, which calls to kill the perpetrators of acts that “have a disastrous effect on Islam.” Any compromises with bloodthirsty fanatics are simply out of the question. They must be eliminated once and for all.
Pope Francis has approved the use of force against Islamist radicals. The Pontiff believes that coercive methods should be used to protect religious minorities from militants.
The World Jewish Congress (WJC) and the Russian Jewish Congress (RJC) has urged the entire world community to stand together against the “disgusting wave of violence” against Christians in the Middle East.
In Iraq, the Shiite leader Ayatollah Ali al-Sistani has reiterated his call for the Iraqi people to resist ISIL militants.
Important as religious leaders’ rejection of terrorism and its perpetrators is, however, the same can hardly be said about the world community. Indeed, even in the midst of the fight against ISIL in Syria, the antiterrorist forces failed to present a shared understanding of the danger posed by their common enemy.
It is really unforgivable that a universally accepted definition of international terrorism has not yet been worked out. The term is often used as an instrument of political struggle, because each country actually decides for itself whether a certain group is “terrorists” or “freedom fighters.” In Russia, 21 Islamist organizations are recognized as terrorist, and 33 in the United States . Moreover, actual definitions of “terrorism” often vary.
Coordinated fight is the only possible and effective way of ridding the planet of the scourge of terrorism. Unfortunately, there is no international legal basis for a collective solution of the problem. The experience of the past few years shows that a slow-moving and bureaucratic UN is not capable of providing quick and effective response to the threat posed by international terrorism. The world needs a fundamentally new and mobile international mechanism, structured to counter the terrorists’ extensive and diverse criminal activities.
The proposed idea of creating a supranational system uniting antiterrorist forces that would include administrative, information, analytical, intelligence, financial, counter-propaganda and power structures – well-equipped counter-terrorist units ready for quick deployment to troubled regions looks pretty viable. However, this international antiterrorist system must be established under the auspices of the United Nations, with its blessing, and rest on a solid legal foundation.
First published in our partner International Affairs
Cyber Warfare: Competing National Perspectives
The threat of cyberwarfare is a growing fear among all intelligence communities. “In June 2009 the U.S. Cyber Command was created and in July of 2011 Deputy Secretary of Defense William J. Lynn III announced that as a matter of doctrine, cyberspace will be treated as an operational domain similar to land, air, sea, and space” (Colarik & Janczewski, 2012, 35). Cyber warfare is conducted by infiltrating the country’s computer networks to cause damage and/or disruption to various infrastructures. This could be as minimal as spying on another nation or as in-depth as implementing acts of sabotage directed towards specific targets such as military operations or the power grid. The threat of cyber warfare is not specific to one country. This is a potential threat that effects each country across the globe.
China is a dominant power within the global arena and is consistently evolving with potential threats especially cyber technology. Chinese colonels Liang and Xiangsui claimed advanced technology gave the country’s adversaries a significant advantage, and proposed that China ‘build the weapons to fit the fight. Recently, the Chinese People’s Liberation Army (PLA) confirmed the existence of its Online Blue Army (Colarik, &Janczewski, 2012, 35). China’s fear of the impact and devastation that can be caused by the internet has forced them to implement strict policies governing the freedom and use of the internet within the country and creating strong security measures against infiltration by outside sources.
In 2014, China implemented the Central Internet Security and Informatization Leading Group to oversee all internet security. “This leading group is to deepen reform, protect national security, safeguard national interests, and promote the development of information technology. The group will have complete authority over online activities, including economic, political, cultural, social, and military” (Iasiello, 2017, 5). This group disseminates and monitors all information found on the web to ensure that there are no security breaches and the people are not in violation of the law.
In 2015, China drafted a national cybersecurity law.“The chief goals of its 2015 draft national cybersecurity law are (1) ensure cybersecurity, (2) safeguard cyberspace sovereignty, national security, and the public interest, (3) protect the legitimate rights and interests of citizens, legal persons and other organizations, and (4) promote the healthy development of economic and social information” (Kolton, 2017, 126). Whereas the United States promotes a free internet, China’s main focus is on establishing an internet that is secure from all potential threats both external and internal.
In 2016, China passed the “Cyber Security Law” that focused on the security of the internet and information systems and extended the ability of the government to oversee the information that was being shared to determine if it was done within accordance of their strict cyber security laws. This law helps the government to monitor any potential breaches of security by outside or internal sources. By implementing a stronger grasp of control over the internet, the government is able to reduce the potential of an attack or intrusion. Within this law, government agencies would be able to implement more guidelines for network security within industries to include energy, transport, military, defense, and many more (Iasiello, 2017, 6).These restrictions increase the control of the government over cybersecurity but also limits the freedoms of its citizens to explore the internet.
China has created new training for its military to be prepared against potential cyber warfare attacks. It has “developed detailed procedures for internet warfare, including software for network scanning, obtaining passwords and breaking codes, and stealing data; information-paralyzing software, information-blocking software, information-deception software, and other malware; and software for effecting counter-measures” (Ball, 2011, 84). It has also increased its number of training facilities to focus only on network attacks on cyber infrastructure and defense operations. The amount of money China is investing in facilities and training of military personal increases its ability to remain secure within this global threat of cyber warfare. One fear for China is its dependence on Western technology. “China’s capabilities in cyber operations and emerging technologies such as artificial intelligence are becoming more sophisticated, the country still depends largely on Western technology. Beijing is hoping to break that dependency through the Made in China 2025 plan” (Bey, 2018, 33). This is a mutual fear for both the US and China as they both rely on each other’s manufacturers with the fear that they will implement a trojan horse to intervene.
Like China, Russia has increased its abilities in combating the potential threat of cyber warfare. However, Russia has taken a different approach to this threat by going on the offensive. Russia has focused on non-linear warfare within the cyber world, which is defined as “the collection of plans and policies that comprise the state’s deliberate effort to harness political, military, diplomatic, and economic tools together to advance that state’s national interest. Grand strategy is the art of reconciling ends and means” (Schnauffer, 2017, 22). To assert its dominance in the global arena, Russia has been utilizing its own forms of cyber attacks to collect information and become a dominant cyber power.
Russia began its experiments with cyber warfare in 2007 in the clash with Estonia. This was done to determine its cyber capabilities as well as create a stronger resilience against future attacks. “Russia’s cyber experiment effectively shut down day-to-day online operations in Estonia’s cyber infrastructure for weeks, from news outlets to government institutions” (Shuya, 2018, 4). After this successful movement, Russia began to expand its focus to Georgia and Ukraine in 2008 and then in 2015, to offset local initiatives there which it considered to be against Russian national security interests. Russia has “developed multiple capabilities for information warfare, such as computer network operations, electronic warfare, psychological operations, deception activities, and the weaponization of social media, to enhance its influence campaigns” (Ajir& Valliant, 2018, 75). Russia has had a strong focus on using the tool of propaganda to disseminate key information to its citizens with the hope that they will abide by it as the real truth.
Russia’s investment into technology and the freedom of speech allotted by the West has made the West not only extremely vulnerable to Russia, but also has expanded the reach of the Russia globally. Ajir and Valliant (2018) highlight several key points of the Russian strategy:
Direct lies for the purpose of disinformation both of the domestic population and foreign societies; Concealing critically important information; Burying valuable information in a mass of information dross; Simplification, confirmation, and repetition (inculcation); Terminological substitution: use of concepts and terms whose meaning is unclear or has undergone qualitative change, which makes it harder to form a true picture of events, Introducing taboos on specific forms of information or categories of news; Image recognition: known politicians or celebrities can take part in political actions to order, thus exerting influence on the worldview of their followers; Providing negative information, which is more readily accepted by the audience than positive.
This approach allows the Russian government to remain in control of information that is filtered to its citizens. The restriction of freedom reduces the capability of deciphering fact from fiction.
Russia has also taken a defensive approach to cyber warfare by implementing strict laws that govern the use of the internet. The agency Roskomnadzor scans the internet for activity that is deemed illegal and detrimental to the Russian government. It has also implemented new laws to regulate internet activity. “The laws which came into force in November 2012 provided provisions for criminalizing slander, requiring nonprofits receiving funding from abroad to declare themselves “foreign agents,” and provide additional financial information and a final law sanctioning the blocking of websites featuring content that “could threaten children’s lives, health, and development” (Cross, 2013, 14). Many have deemed these laws as means to censor the internet, but the Russian government argues it is for the protection of its citizens.
An opposite example of failing to employ measures to protect the country from a potential cyber warfare attack is Mexico. The main focus for Mexico has been on drug cartels and eliminating internal threats within their own government. Mexico has begun to implement its own version of cybersecurity due to its substantial growth in cyber-attacks over the years. However, its overall success has been limited due to a lack of understanding and outdated systems. “Incidents in cyberspace pose a challenge to Mexico due to a lack of institutional structures and there is a need to strengthen capabilities since it does not have any specialized government or public sector agencies certified under internationally recognized standard” (Kobek, 2017, 8). Without the establishment of a specific agency dedicated to cybersecurity, Mexico will continue to struggle against cyber warfare threats. Mexico must implement new security measures that are applicable to all main threats beyond the drug cartels.
Currently, the government presence in Mexico is focused solely on actionable and tangible threats. There must be a reform to its current laws for “the armed forces require a law that reframes and modernizes the concepts of public safety, internal security, and national defense; clarifies the role, conditions, terms, and limits of the armed forces’ engagement; and establishes mechanisms to hold them accountable” (Payan& Correa-Cabrera, 2016, 3). The lack of accountability and oversight by the government to control key aspects, such as the military, and impose a stronger presence in the more demanding field of cybersecurity opens up the potential for a catastrophic event to occur within Mexico.
China and Russia are prime examples of how strict policy governance of the internet will help to reduce the potential threat of an attack. They are micromanaging every aspect of the internet from restricting specific websites (social media) or establishing specific agencies to monitor and analyze all information that is being viewed from all sources. “With the United States and European democracies at one end and China and Russia at another, states disagree sharply over such issues as whether international laws of war and self-defense should apply to cyber-attacks, the right to block information from citizens, and the roles that private or quasi-private actors should play in Internet governance” (Forsyth, 2013, 94). The failure of this policy is the restriction of freedoms to citizens. As stated above, one of Russia’s main focuses is promoting propaganda that is anti-west and pro-Russia. The control over the internet does not allow their citizens to research the truth or have global interaction. This increases the risk of upheavals among the people, especially as technology continues to improve and loopholes are found to circumvent existing policies and hidden content is exposed.
Another approach to cybersecurity is seen with the actions of NATO. It is focusing on improving its relationships with private security companies and “developing a Cyber Rapid Reaction Team (RRT)19 to protect its critical infrastructure, much like U.S. Cyber Command’s Cyber Protection Teams (CPTs)” (Ilves et al, 2016, 130). One downside to this approach is NATO is only able to apply defensive measures. It does not have the ability to implement an offensive attack. Creating a partnership with private companies provides it greater access and resources to potential cyber threats. Private companies have more funds available to pursue a stronger cyber security defense. A recommendation would be to create a joint European Union, United States, and NATO partnership against cyber warfare. Each has its own strengths that can be applied to a joint force against one common threat. A stronger partnership among key global powers will help to create a multifaceted approach to the threat of cyber warfare. The end goal of cyber warfare is the same for each country targeted. There is no specific adversary, but rather the substantial disruption or sabotage of key infrastructure.
Although facing intense criticism and skepticism, it would be beneficial for the US, China, and Russia to form a partnership against cyber warfare. As each country is already connected via their technology companies, they are each a global power that encompasses a vast majority of the world. A collaboration of information and resources would provide a stronger protection amongst common non-state threats. However, the chief obstacle is the ability to trust each country to act within the realm of security, instead of using it as an opportunity to gain substantial access to an inside look of the country. Since the US often accuses China and Russia of being the biggest state perpetrators of cyber actions, this criticism may be near impossible to overcome, despite the possible advantages. According to the World Economic Forum, the table below lists the top countries best prepared against cyber-attacks.
The United States is ranked number one with a significant margin above Canada. China and Russia who have implemented a very strict cyber security policy are not listed within the top 20. This is determined by the Global Cybersecurity Index, a partnership between private industries and international organizations that analyze all aspects of cybersecurity. This argues that the approach by countries such as China and Russia is geared more to the control over its citizens rather than executing a strong cybersecurity policy focused on legitimate external threats. Although, the table above does show that the United States is ranked number one in being able to protect the nation from potential cyber threats, it is only ranked at 82.4% effective. Russia and China have employed a different approach to cyber security that could be utilized to increase the overall effectiveness globally if each side was able to work together towards common threats. Ideally, such partnership would not only create new channels of connection and collaboration between adversaries, but would also set the stage for the more heavy-handed and restrictive policies of China and Russia to be loosened to the benefit of its citizens’ virtual freedom.
Cybersecurity between Enemies and Allies
Operational success, whether state or non-state, begins with a solid strategic plan that encompasses key objectives or targets. In today’s globally connected world, cybersecurity is holding the forefront space of challenges, vulnerabilities, and growth (Barrinha 2018). Success, in a globally connected environment, requires an understanding of the environmental systems and connections to appropriately identify the gaps in security and potential points of entry from adversarial actors (Barrinha 2018). Understanding the connected nature and networked capability of potential adversaries’ drives a need to analyze social networks as they relate to the interrelated environmental systems (Tsvetovat and Kouznetsov2011). Therefore, the ability to effectively engage within an interconnected and globalized operational environment is to understand the cybersecurity policies, trends, and vulnerabilities across western and non-western states like Russia, United Kingdom, China, and Israel.
Internationally, states are viewing cyber as the fifth domain of operations, added to air, space, land, and sea. In 2013, fifteen countries agreed with a need for international law for the elaboration of measures, norms, rules, or principles over the cyber domain. Today, military cyber capabilities exist in more than 40 states and of those 12 have explicitly offensive cyber capabilities. Despite the growing application of cybersecurity strategies and advancements in the development of international laws, a standard definition of cybersecurity does not exist (Greiman 2015).
Regardless of the state’s abilities or interest in cybersecurity, the intent is to create an ability to protect domestic networks against domestic or foreign intrusion and attack (Fischer 2016). Cyber-attacks come in many forms. Though attacks vary widely, they generally have a geopolitical, diplomatic, or economic interest, causing business and economic organizations to get involved with political structures to consider policy-setting and strategic capabilities (Jaquire et al. 2018). The difference is that instead of defending against states physically, the defense efforts are against actions exclusively housed within the cyber arena (Duvenage et al. 2018).
National cybersecurity strategies in general tend to possess three main components: strategies with intelligence and counterintelligence capabilities, personal security on information held in databases, and corporate security (Vancouver 2018). As Adamsky (2017) described Israel’s cybersecurity plan, the three interrelated vectors work together to provide robustness, resilience, and defense. The overall intent of national cybersecurity strategies is to provide a means by which the state can protect local networks from adversary threats.
The criticality and concern coming from the international community when dealing with increasing threat potential and vulnerabilities within the cyber domain is reflected by the more than 40 countries working to establish cyber policies. The United States and the United Kingdom both view “terrorism and cyber-attacks as the two greatest threats to national security” (Greiman 2015). As states look at the threat posed by the cyber domain, they must consider non-traditional ways in which foreign non-state actors are leveraging networks to spread their messages — to incite fear, spread support for their anti-state ideologies, or the ability to use virtual space as a meeting location to create extremist support (Cross 2013).
In efforts to standardize, Russia, China, Tajikistan, and Uzbekistan joined forces to submit an international code for information assurance (Grieman 2015). Australia, Canada, New Zealand, United Kingdom, and the United States banded together to create a stronger shared level of intelligence, known as the “Five Eyes” Community (Walsh 2015). However, Israel is still leading the way in the cyber policy, strategy, and successful operations (Adamsky 2017). Though all countries possess a mix of security interests and priorities, there is not a single consensus on how to internationally address threat conditions (Crosston 2016). In an attempt to address those conditions, countries must seek innovative and creative means to establish operations and policies to protect against globalized threats (Cross 2013).
Israel has the lead in leveraging innovation and creativity to develop tangible results and an example for other countries to emulate. In 2002, Israel established the goals and means by which it intended to secure its portion of the cyber domain. Seeking to find a balance between commercial and private needs with a need for national security, Israel established policies to “protect vital computerized systems of selected public and private civilian organizations.” Not wanting to fall short on future threats, Israel included concepts of “education, R&D, security, economic development, and international cooperation” into their policy design (Adamsky 2017). In 2015, the government established a concept of operations (CONOP) to regulate cyber mechanisms and operations focusing on cyber defense, capacity building,and structure. Using an interrelated framework of robustness, resilience, and defense, Israel can operate, sustain, and defend their local cyber domain from intrusion and attack better than most (Adamsky 2017).
Russia and China have similar approaches and practices. In their efforts to collect intelligence, neither country relies solely on confidential sources or methods, nor does collection tie singularly to state-sanctioned collection requests. More importantly, collection in Russia and China does not focus on collection against foreign agencies alone (Crosston 2016). As part of the policy process in Russia and China, the government opts to control exposure and risk by limiting the availability of sites that threaten the influence their control over the population (Cross 2013). While similar in their approaches, Russia and China developed individual strategies to protect their networks (Fei 2010).
China opted for a strategy with a longer-term outlook and sought to respect other nation’s objectives while fostering mutually beneficial cooperation. China’s strategy emphasizes multilateral ties and dealing with both traditional and non-traditional threats. China’s strategic approach consists of four prongs: the inclusion of complex, non-traditional aspects; issue-orientation over country interests; economic development to be independent of foreign technologies; and, a supposed practice of good governance and transparency.
United Kingdom announced, in 2010, a plan to spend $1 billion US dollars over a four-year period to launch a “transformative national cybersecurity program” focused on closing the expanding gaps between current capabilities and emerging technological advancements. The UK outlined its plan with the intention of leveraging private-public partnerships to create a single point-of-contact for cyber-crimes and security issues. The strategy also outlined a plan to develop international cooperation with like-minded nations (Hammond 2010). Not unlike Israel, the United Kingdom is focusing on policy development to protect privacy and reduce crime, while establishing a resilience capability. Through private-public partnerships, the UK aims for capacity building and to implement a risk-based approach to defending against cyberattacks (Greiman 2015).
Private-public partnerships, coupled with dynamic state policies, contribute to the state’s ability for capacity building. This is particularly important with the understanding that the private sector mainly owns and operates activities within the cyber domain for most states (Grieman 2015). While Russia and China understand this phenomenon, they opt to block sites and access as a means of controlling the internet. The efforts of Russia are generally politically inclined, focused on the interest of making the president appear stronger. In China, the state leverages cyber abilities for economic maneuvering. Israel selects a more comprehensive and holistic approach to managing the cyber environment.
Tsvetovat and Kouznetsov (2011) explained the connected nature and networked capability of potential adversaries as driving social connections and purposes. Within the cyber domain, states are able to leverage the connections and networks to shape policy, offensive operations, and international relationship development. As Russia and China continue to work through their controlled approaches to cybersecurity, there is a need for international consensus towards cybersecurity. In an effort to standardize an approach to cybersecurity, the international community should seek to follow in the steps of Israel (Adamsky 2017).As a soft power instrument, Israel is leveraging opportunities and threats to harness the potential of cybersecurity. Over the last decade Russia, China, and many others have reached out to Israel. Additionally, the more success Israel has in leveraging cybersecurity to promote international ties, the greater likelihood it will lead an effort to normalize cyber across the globe (Adamsky 2017).
As academics and practitioners continue to work toward a standard definition and understanding of cybersecurity, there is a distinct need for various states to come together in an effort to establish international norms and standards for the execution of cybersecurity. This effort should be much the same as joint operations govern telling time or tracking targets. It is crucial that the United States continues to find ways to lead the effort to establish agreements that focus on commonalities that can benefit the reduction of cyber dangers between China, Russia, and Israel.
The effort to understand the cyber environment and its various network of connections is vital in working through concerns faced by countries emerging as a new power (i.e.,Brazil, India, Argentina, and Australia among others). The importance of this understanding links back to Brafman and Beckstrom’s (2012) starfish and spider concepts, demonstrating the capability of groups to operate from geographically dispersed locations without a centralized leader. Improved security within the cyber domain will assist in mitigating political, economic, and criminal activities that are counter to a state’s security strategies. Perhaps most importantly, he ability to increase cybersecurity and cooperation in the cyber domain internationally creates a possible platform to work against other threat issues such as transnational organized crime, terrorism, human trafficking, and migration from failing states. Understanding critical elements and the approach other countries use to navigate through their domestics and external threat will continue to prove to be as crucial for the United States and the interaction with other countries in the future.
The World’s Largest Residence Inn By Marriott Opens In Calgary Downtown
Marriott International, Inc. has announced the highly anticipated opening of Residence Inn Calgary Downtown/Beltline District, the largest property in the...
Women in Half the World Still Denied Land, Property Rights Despite Laws
Women in half of the countries in the world are unable to assert equal land and property rights despite legal...
India’s Belligerence in Kashmir
Love begets love, tyranny gives birth to tyranny Kashmir, a valley, where humanity is bleeding, the valley itself is burning...
World’s Energy Transition in Doubt as Progress on Affordability, Sustainability Stalls
The world’s energy systems have become less affordable and are no more environmentally sustainable than they were five years ago....
The Most Intriguing Historic Figures of the Czech Republic
Discover the unique personalities and inventions that originated in Prague and the Czech Republic. How many of the following do...
Partnering for Africa’s future: Exhibition on UNIDO-Japan cooperation
An exhibition highlighting cooperation between Japan and the United Nations Industrial Development Organization (UNIDO) for African industrial development has opened...
“The Rights of the Nations, National and Ethnic Minorities for Self- Determination”
The new article of the Charter of the UN “The rights of the nations, national and ethnic minorities for self-determination”,...
International Law1 day ago
Trump’s Golan Heights Declaration: The Message to Azerbaijan
Energy2 days ago
“Gas wars” in Europe
Defense2 days ago
Russia and the Indian Ocean Security and Governance
Energy News2 days ago
ADB Supports 275 MW Power Plant to Boost Energy Access in Sumatra, Indonesia
Diplomacy2 days ago
Civilizationism vs the Nation State
Travel & Leisure2 days ago
Pakistan: Next Destination for Nature-Lovers
Reports3 days ago
Investments in Gender Equality in Croatia Will Increase Opportunities for All
Middle East1 day ago
The fallacy of soccer’s magical bridge-building qualities