[126892] in North American Network Operators' Group
Re: Nato warns of strike against cyber attackers
daemon@ATHENA.MIT.EDU (Marshall Eubanks)
Tue Jun 8 17:51:16 2010
From: Marshall Eubanks <tme@americafree.tv>
To: "Peter Boone" <NANOG@Aquillar.com>
In-Reply-To: <001f01cb074e$cb548ab0$61fda010$@com>
Date: Tue, 8 Jun 2010 17:50:52 -0400
Cc: nanog@merit.edu
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
On Jun 8, 2010, at 5:08 PM, Peter Boone wrote:
> So let's say a cyber-attack originates from Chinese script kiddie.
>
> Albania, Belgium, Bulgaria, Canada, Croatia, Czech Republic, Denmark,
> Estonia, France, Germany, Greece, Hungary, Iceland, Italy, Latvia,
> Lithuania, Luxembourg, Netherlands, Norway, Poland, Portugal, Romania,
> Slovakia, Slovenia, Spain, Turkey, the United Kingdom, and the =20
> United States
> will all respond by invading China?
That leaves out the important aspect of selection. You can bet that, =20
if they do this, they will pick
a more suitable target, say one without strategic rocket forces.
> Is NATO trying to start a war here?
>
Militaries tend to think in terms of military responses.
What any of this has to do with configuring routers escapes me.
Regards
Marshall
> There's no mention in the article about any kind of electronic =20
> response to
> the attack.
>
> -----Original Message-----
> From: J. Oquendo [mailto:sil@infiltrated.net]
> Sent: Tuesday, June 08, 2010 3:08 PM
> To: nanog@merit.edu
> Subject: Nato warns of strike against cyber attackers
>
>> =46rom the NetSec mailing list...
>
>> At http://www.timesonline.co.uk/tol/news/world/article7144856.ece
>>
>> June 6, 2010
>> Nato warns of strike against cyber attackers
>> Michael Smith and Peter Warren
>>
>> NATO is considering the use of military force against enemies who =20
>> launch
>> cyber attacks on its member states.
>>
>> The move follows a series of Russian-linked hacking against Nato =20
>> members
> and
>> warnings from intelligence services of the growing threat from China.
>>
>> A team of Nato experts led by Madeleine Albright, the former US =20
>> secretary
> of
>> state, has warned that the next attack on a Nato country =B3may well =20=
>> come
> down
>> a fibre-optic cable=B2.
>>
>> A report by Albright=B9s group said that a cyber attack on the =
critical
>> infrastructure of a Nato country could equate to an armed attack,
> justifying
>> retaliation.
>>
>> Article 5 is the cornerstone of the 1949 Nato charter, laying down =20=
>> that
> =B3an
>> armed attack=B2 against one or more Nato countries =B3shall be =20
>> considered an
>> attack against them all=B2.
>>
>> It was the clause in the charter that was invoked following the =20
>> September
> 11
>> attacks to justify the removal of the Taliban regime in Afghanistan.
>>
>> Nato is now considering how severe the attack would have to be to =20
>> justify
>> retaliation, what military force could be used and what targets =20
>> would be
>> attacked.
>>
>> The organisation=B9s lawyers say that because the effect of a cyber =20=
>> attack
> can
>> be similar to an armed assault, there is no need to redraft existing
>> treaties.
>>
>> Eneken Tikk, a lawyer at Nato=B9s cyber defence centre in Estonia, =20=
>> said it
>> would be enough to invoke the mutual defence clause =B3if, for =20
>> example, a
>> cyber attack on a country=B9s power networks or critical =
infrastructure
>> resulted in casualties and destruction comparable to a military =20
>> attack=B2.
>>
>> Nato heads of government are expected to discuss the potential use of
>> military force in response to cyber attacks at a summit in Lisbon in
>> November that will debate the alliance=B9s future. General Keith =20
>> Alexander,
>> head of the newly created US cyber command, said last week there =20
>> was a
> need
>> for =B3clear rules of engagement that say what we can stop=B2.
>>
>> The concerns follow warnings from intelligence services across =20
>> Europe that
>> computer-launched attacks from Russia and China are a mounting =20
>> threat.
>> Russian hackers have been blamed for an attack against Estonia in =20
>> April
> and
>> May of 2007 which crippled government, media and banking =20
>> communications
> and
>> internet sites.
>>
>> They also attacked Georgian computer systems during the August 2008
> invasion
>> of the country, bringing down air defence networks and =20
>> telecommunications
>> systems belonging to the president, the government and banks.
>>
>> Alexander disclosed last week that a 2008 attack on the Pentagon=B9s
> systems,
>> believed to have been mounted by the Chinese, successfully broke =20
>> through
>> into classified areas.
>>
>> Britain=B9s Joint Intelligence Committee cautioned last year that
> Chinese-made
>> parts in the BT phone network could be used to bring down systems =20
>> running
>> the country=B9s power and food supplies.
>>
>> Some experts have warned that it is often hard to establish =20
>> government
>> involvement. Many Russian attacks, for example, have been blamed on =20=
>> the
>> Russian mafia. The Kremlin has consistently refused to sign an
> international
>> treaty banning internet crime.
>>
>>
>
> Obviously NATO is not concerned with proving the culprit of an =20
> attack an
> albeit close to impossibility. Considering that many attackers
> compromise so many machines, what's to stop someone from =20
> instigating. I
> can see it coming now:
>
> hping -S 62.128.58.180 -a 62.220.119.62 -p ++21 -w 6000
> hping -S 62.220.119.62 -a 62.128.58.180 -p ++21 -w 6000
>
> So NANOGer's, what will be the game plan when something like this
> happens, will you be joining NATO and pulling fiber. I wonder when all
> types of warm-fuzzy filtering will be drafted into networking: "Thou
> shall re-read RFC4953 lest you want Predator strikes on your NAP
> locations...
>
> --=20
>
> =3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=
=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+
> J. Oquendo
> SGFA, SGFE, C|EH, CNDA, CHFI, OSCP, CPT
>
> "It takes 20 years to build a reputation and five minutes to
> ruin it. If you think about that, you'll do things
> differently." - Warren Buffett
>
> 227C 5D35 7DCB 0893 95AA 4771 1DCE 1FD1 5CCD 6B5E
> http://pgp.mit.edu:11371/pks/lookup?op=3Dget&search=3D0x5CCD6B5E
>
>
>
>
