CYBERWAR! A Taxonomy
Cyberwar… A term that has been more misunderstood and bandied about improperly than APT (Advanced Persistent Threat) Every time I see it in the media or being barked out or talked about by this and that INFOSEC person, military officer, government official, or the media, my eye twitches. I understand that to many the word “Cyber” seems shiny and slick but it should not be the prefix for just anything that involves a computer or a smart phone. The reality is that the true meaning of “Cyber War” comes from the last bit “WAR”
And one hopefully knows what the meaning of war is.. Right?
So, for me, cyber war means that there is actual warfare at work here. Not just espionage efforts, which can be a prelude to war, but often aren’t the sole aegis of much of the espionage going on. By warfare I mean kinetic attacks, troops on the move, and generally an invasion of some kind or hostilities where people are being killed.
That is war…
Cyberwar, as yet, has NOT happened. There have been Cyber Operations if you want to use the term (I don’t) but most of what we have been seeing in the news cycle is once again, NOT cyberwar.
Our Site Has Been DoS’d IT’S CYBERWAR! Uhhh No… It’s Not
Ok, now that I have said that, I will once again re-iterate that most of what we have been seeing in the news (Anonymous, Antisec, LulzSec, DD0S, Dox-ing, IP Theft, etc) are NOT Cyberwar. I would not even call these attacks warfare and I will elucidate now on why. It really comes down to one thing… No outright declarations of war. None of the instances so far have actually resulted in rockets being fired, bombs being dropped, or any other warfare to be carried out on anyone anywhere. Of course though, we have had much sabre rattling about this, and the US military as well as Israel have recently made bones about being able to launch conventional warfare against those they “think” attacked a website or released some credit card data..
God… How stupid is that?
Yet again, I say none of this has happened yet. Nor would I say that any of these events above, would or should be classified as precursors to war. These are nuissance attacks by those wishing to cause damage to businesses or perhaps governments but they are not attacks on systems (as yet) that would cripple any nation state whatsoever to the point of being an easier target for real warfare.
Let me give you an example of real cyber warfare… Georgia The Georgian infrastructure was attacked as a pre-emptive measure to real invasion/bombing by the Russian government. The effect of the attacks took not only Estonia proper offline, but cut off its communications networks internally, leaving them in a weak position for the Russian attacks to just begin.
This is cyberwar.. Which leads me to the taxonomy thereof.
A Taxonomy of Cyber Warfare
There you have it. Cyberwar should only be levelled as a term when the actual use of warfare if involved. This is a cause and effect type of thing and should NEVER be confused with someone getting dox’d by Anonymous or having your internet commerce presence taken off-line with DDoS.
The short and simple.. No bombs and bullets.. No Cyberwar. To say otherwise loudly in the media is just another kind of cyber… “Cyberdouchery”
A Plea to The Media and INFOSEC Community
My polemic will conclude here with a plea to those in the know. The INFOSEC community at large should know better than to propagate all of this claptrap but unfortunately some do. Some people (who remain nameless but actually use the title cyberwar in their titles or screen names) should know better but see an opportunity to make a splash with buzzword bingo.
With the advent of computing and with the moniker of “Cyberspace” being coined (allegedly) by William Gibson, everyone seems to want to grab a little bit of that epic “cool” and throw the term out there for just about anything digital.
There’s warfare… There’s Espionage… and There’s Cyberdouchery.
Know the differences and be a better informed person.