[126928] in North American Network Operators' Group
Re: Nato warns of strike against cyber attackers
daemon@ATHENA.MIT.EDU (Hank Nussbacher)
Wed Jun 9 01:04:34 2010
Date: Wed, 09 Jun 2010 08:03:53 +0300
To: nanog@merit.edu
From: Hank Nussbacher <hank@efes.iucc.ac.il>
In-Reply-To: <4C0E9504.3090700@infiltrated.net>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
At 15:07 08/06/2010 -0400, J. Oquendo wrote:
> > At http://www.timesonline.co.uk/tol/news/world/article7144856.ece
> >
> > A report by Albright=B9s group said that a cyber attack on the critical
> > infrastructure of a Nato country could equate to an armed attack,=20
> justifying
> > retaliation.
> >
> > Eneken Tikk, a lawyer at Nato=B9s cyber defence centre in Estonia, said=
it
> > would be enough to invoke the mutual defence clause =B3if, for example,=
a
> > cyber attack on a country=B9s power networks or critical infrastructure
> > resulted in casualties and destruction comparable to a military attack=
=B2.
> >
>
>Obviously NATO is not concerned with proving the culprit of an attack an
>albeit close to impossibility. Considering that many attackers
>compromise so many machines, what's to stop someone from instigating. I
>can see it coming now:
>
>hping -S 62.128.58.180 -a 62.220.119.62 -p ++21 -w 6000
>hping -S 62.220.119.62 -a 62.128.58.180 -p ++21 -w 6000
Lets try to seperate the attacks into those that we (NANOG) have dealt with=
=20
and those that NATO are referring to - and there is *no* overlap between=20
the two.
Attacks such as botnets, hpings, compromised machines, DDOS attacks, site=20
defacements, prefix hijacks is what this list deals with, sometimes well=20
and other times not.
The attacks NATO is referring to are ones like causing trains to crash into=
=20
each other, attacks causing oil and gas pipelines to overload and explode,=
=20
attacks altering blood bank data, attacks poisoning the water supply, etc.=
=20
- all of which can be done remotely.
NATO is in no way (unless they have been out in the sun too long) condoning=
=20
an attack for a DDOS attack. I think NATO is discussing attacking if 5,000=
=20
people die from some cyber attack as listed above (I have many more=
scenerios).
-Hank
