|
Server : Apache/2.4.62 System : FreeBSD fbsdweb2.web.rcn.net 14.1-RELEASE FreeBSD 14.1-RELEASE releng/14.1-n267679-10e31f0946d8 GENERIC amd64 User : www ( 80) PHP Version : 8.3.8 Disable Function : NONE Directory : /domains/roger.dnai/2007book/ |
Upload File : |
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"
"http://www.w3.org/TR/html4/loose.dtd">
<html><!-- InstanceBegin template="/Templates/2007template.dwt" codeOutsideHTMLIsLocked="false" -->
<head>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">
<!-- InstanceBeginEditable name="doctitle" -->
<title>CSDR 24th International Workshop on Global Security, Michele Alliot-Marie, Herve Morin, General Henri Bentegeat, General Jean-Louis Georgelin, General James L. Jones, Marc Perrin de Brichambaut, Patrick Auroy, Kent Schneider, Ambassador Mahmoud Karem, Admiral Giampaolo Di Paola, General Franciszek Gagor, Dr. Arthur T. Hopkins, George Joulwan, Borys Tarasyuk, Jean de Ponton d'Amécourt, General Rainer Schuwirth, General Egon Ramms, Gen Ulrich Wolf, Louis Gallois, Marwan Lahoud, Denis Ranque, Edgar Buckley, Assistant Secretary John Grimes, Tim Bloechl, EADS, Northrop Grumman, Microsoft, Robert Ranquet, Admiral Jean Betermier, Giovanni Bertolone, Robert Ranquet, Alenia Aeronautica, Roger Weissinger-Baylon, WMD, Weaapons of Mass Destruction, NATO, EU, UN, OSCE, Paris Air Show, French Defense Minister, Afghanistan, Iraq, Kosovo, Climate Change, Energy, Boeing</title>
<!-- InstanceEndEditable -->
<link rel="stylesheet" href="/2002Book/emx_nav_right.css" type="text/css">
<style type="text/css">
<!--
.style5 {font-weight: bold;
color: #000000;
font-family: Arial, Helvetica, sans-serif;
font-size: large;
}
.style7 {font-size: 2px}
.style8 {font-family: Arial, Helvetica, sans-serif}
.style17 {
font-size: x-small;
font-weight: bold;
}
.style18 {font-size: x-small}
.style217 {font-family: Verdana, Arial, Helvetica, sans-serif}
.style219 {font-style: normal; font-weight: normal; font-family: Verdana, Arial, Helvetica, sans-serif; }
.style19 {font-size: 11px}
.style20 {
color: #006699;
font-size: large;
}
.style21 {font-size: small}
.style22 {font-family: Arial, Helvetica, sans-serif; font-size: small; }
-->
</style>
<style type="text/css">
<!--
.style23 {font-size: medium}
.style24 {font-size: large}
.style25 {
color: #006699;
font-weight: bold;
font-style: italic;
}
.style26 {
color: #006699;
font-size: medium;
font-weight: bold;
}
.style27 {
color: #006699;
font-size: medium;
}
.style293 {
font-size: large;
color: black;
}
-->
</style>
<!-- InstanceBeginEditable name="head" --><!-- InstanceEndEditable -->
</head>
<body>
<div class="skipLinks">skip to: <a href="#content">page content</a> | <a href="../book2007TEST/2002Book/pageNav">links on this page</a> | <a href="#globalNav">site navigation</a> | <a href="#siteInfo">footer (site information)</a> </div>
<div id="masthead">
<h1 align="center" id="siteName"><strong>Center for Strategic Decision Research</strong></h1>
<div id="globalNav"> <div id="globalLink">
<a href="/index.html" id="gl1" class="glink"><span class="style18"><span class="style19">Home</span></span></a><a href="/2007book/joulwan07" id="gl2" class="glink"><span class="style18"><span class="style19">Paris '07</span></span></a><a href="/2006book/jung.htm" id="gl2" class="glink"><span class="style18"><span class="style19">Berlin '06</span></span></a><a href="/2005book/alliotmarie.htm" id="gl2" class="glink"><span class="style18"><span class="style19">Paris '05</span></span></a><a href="/2004book/PeterStruckKeynote.htm" id="gl3" class="glink"><span class="style18"><span class="style19">Berlin '04</span></span></a><a href="/moscow03/weissingerbaylon.htm" id="gl4" class="glink"><span class="style18"><span class="style19">Moscow '03</span></span></a><a href="/berlin02/scharping.htm" id="gl5" class="glink"><span class="style18"><span class="style19">Berlin '02</span></span></a><a href="/2001Book/workshop2001.htm" id="gl6" class="glink"><span class="style18"><span class="style19">Helsinger '01</span></span></a><a href="/2000Book/workshop2000.htm" id="gl6" class="glink"><span class="style18"><span class="style19">Berlin '00</span></span></a><a href="/99Book/workshop1999.htm" id="gl6" class="glink"><span class="style18"><span class="style19">Budapest '99</span></span></a><a href="/98Book/workshop98.htm" id="gl6" class="glink"><span class="style18"><span class="style19">Vienna '98</span></span></a><a href="/97Book/workshop97.htm" id="gl6" class="glink"><span class="style18"><span class="style19">Prague '97</span></span></a><a href="/96Book/Workshop96.htm" id="gl7" class="glink"><span class="style18"><span class="style19">Warsaw '96</span></span></a>
<a href="/95Book/95Workshop.htm" id="gl8" class="glink"><span class="style18"><span class="style19">Dresden '95</span></span></a></div>
</div>
</div>
<div id="pagecell1">
<div id="breadCrumb"><br>
<table width="386" border="0" align="center">
<tr>
<td width="66" height="68"><p><img src="../2004book/logo-kevin-web.jpg" alt="csdr logo" width="60" height="66"></p> </td>
<td width="340"><div align="left" class="style262">
<p><span class="style293">international workshop series<br>
on global security </span><br>
</p>
</div></td>
</tr>
</table>
</div>
<div id="pageNav">
<div id="sectionLinks">
<p align="center" class="style17"><strong>Table of Contents<br>
24th International Workshop - </strong><strong>Paris '07</strong></p>
<p align="center" class="style17"><span class="style18"><span class="style219"> </span>
<span class="style219"><a href="/2007book/weissinger07.htm">Preface- Dr. Roger<br>
Weissinger-Baylon<br>
Workshop Chairman<br>
</a></span><span class="style219"><a href="/2007book/ranquet07.htm">Foreword - Ing General<br>
Robert Ranquet<br>
</a></span>
<span class="style219"><a href="/2007book/joulwan07.htm">Opening Dinner Debate - <br>
General George Joulwan<br>
Former SACEUR<br>
</a></span></span><br>
Global security challenges: <br>
Is there hope for <br>
Afghanistan or Iraq?<br>
</p>
<p align="center" class="style17"><a href="/2007book/bentegeat07.htm">General Henri Bentegeat<br>
President of EU Military Committee</a>
<a href="/2007book/georgelin07">Gen Jean-Louis Georgelin C<strong>hef d’état</strong>-<strong>major</strong> des armées - France</a><a href="/2007book/amecourt07.htm">Mr. Jean de Ponton d'Amecourt - French Dir of Strategic Affairs</a><a href="/2007book/schuwirth07.htm">General Rainer Schuwirth <br>
Chief of Staff, SHAPE</a><a href="/2007book/ramms07.htm">General Egon Ramms <br>
Commander, Allied Joint Force Cmd, Brunssum</a>
<a href="/2007book/akram07.htm">
Amb Munir Akram<br>
Pakistan's Amb to UN</a><a href="/2007book/zhan07.htm">
Major Gen ZHAN Maohai<br>
Vice Chair of China IISS</a><br>
Energy & Climate Change<br>
<p align="center" class="style17"><a href="/2007book/jones07.htm">General James Jones<br>
Former Supreme Allied Commander Europe</a><a href="/2007book/ashton07.htm">Mr. John Ashton<br>
UK Special Repr for Climate Change</a><br>
Security in the Balkans & Black Sea region<br>
<p align="center" class="style17"><a href="/2007book/baramidze07.htm">Georgian Vice Prime Minister Giorgi Baramidze</a>
<a href="/2007book/tarasyuk07.htm">Ukrainian Foreign Minister Borys Tarasyuk</a>
<a href="/2007book/mediu07.htm">Albanian Defense Minister Fatmir Mediu</a><a href="/2007book/bliznakov07.htm">Bulgarian Defense Minister Veselin Bliznakov</a><a href="/2007book/bezhuashvili07.htm">Georgian Foreign Min Gela Bezhuashvili</a><a href="/2007book/ildem07.htm">Ambassador <strong> Tacan Ildem</strong><br>
Turkish Amb to NATO</a><a href="/2007book/buzhinsky07.htm">
Lt Gen Evgeniy Buzhinsky<br>
Russian Ministry of Defense</a><br>
Time for new strategies?<br>
NATO after the Riga Summit<br>
<p align="center" class="style17"><a href="/2007book/eldon07.htm">Amb Stewart Eldon<br>
UK Ambassador to NATO</a>
<a href="/2007book/orgaz07.htm">Amb Pablo Benavides Orgaz<br>
Spanish Amb to NATO</a>
<a href="/2007book/stefanini07.htm">Amb Stefano Stefanini <br>
Italian Amb to NATO</a><a href="/2007book/dipaola07.htm">Adm Giampaolo Di Paola<br>
Italian Chief of Defense<br>
</a><a href="/2007book/gagor07.htm">Gen Franciszek Gagor Polish Chief of Defense</a><br>
How can the EU, NATO, the OSCE, and UN reform?<br>
<p align="center" class="style17"><a href="/2007book/brichambaut07.htm">Amb Marc Perrin de Brichambaut<br>
OSCE Secretary General </a><a href="/2007book/lintonen07.htm">Amb Kirsti Lintonen Finnish Amb to UN</a>
<a href="/2007book/brodi07.htm">Amb Gabor Brodi<br>
Hungarian Amb to UN</a><a href="/2007book/rinkevics07.htm">State Sec Edgars Rinkevics - Latvian MOD</a><a href="/2007book/linkevicius07.htm">Amb Linas Linkevicius<br>
Lithuanian Amb to NATO<br>
</a>
<a href="/2007book/chizhov07.htm">Amb Vladimir Chizhov<br>
Russian Amb to the EU<br>
</a><a href="/2007book/monteforte07.htm">Vice Adm Ferdinando Sanfelice di Monteforte<br>
Italian Mil Repr to NATO</a><br>
Dealing with middle east:<br>Views from North Africa
<p align="center" class="style17"><a href="/2007book/yousfi07.htm">Amb Youcef Yousfi<br>
Algerian Amb to UN and former Foreign Minister</a><a href="/2007book/karem07.htm">Amb Mahmoud Karem<br>
Egyptian Amb to EU and Repr to Med Dialogue</a><a href="/2007book/alem07.htm">Amb Menouar Alem<br>
Moroccan Amb to EU and Repr to Med Dialogue<br>
</a>
<p align="center" class="style17">WMD and cyber threats
<p align="center" class="style17"><a href="/2007book/pfirter07.htm">Amb Rogelio Pfirter<br>
Director-General, OPCW</a>
<a href="/2007book/hopkins07.htm">Dr. Arthur T. Hopkins<br>
Assist to U.S. Sec of Defense - Nuclear & Chemical & Biological</a><a href="/2007book/aaviksoo07.htm">Estonian Defense Minister<br>
Jaak Aaviksoo</a><a href="/2007book/grimes07.htm">Hon John Grimes<br>
US Assistant Secretary of Defense - NII<br>
</a><a href="/2007book/lentz07.htm">Mr. Robert Lentz<br>
US Dep Asst Sec for NII<br>
</a><a href="/2007book/wolf07.htm">Lt General Ulrich Wolf<br>
Dir of NATO CIS Service Agency<br>
</a>
<a href="/2007book/bloechl07.htm">Mr. Tim Bloechl<br>
Microsoft Exec Director</a>
<p align="center" class="style17">How industry can help address the global challenges<p align="center" class="style17"><a href="/2007book/lahoud07.htm">Mr. Marwan Lahoud<br>
Chief Operating Office EADS</a><a href="/2007book/schneider07.htm">Mr. Kent Schneider<br>
President, Defense Group<br>
Northrop Grumman IT<br>
</a><a href="/2007book/auroy07.htm">Mr. Patrick Auroy<br>
Deputy Director,<br>
French DGA
<br>
</a><a href="/2007book/volkman07.htm">Mr. Alfred Volkman<br>
Dir, Defense Cooperation<br>
US Dept of Defense<br>
</a>
<a href="/2007book/linnenkamp07.htm">Dr. Hilmar Linnenkamp<br>
Dep CEO, EDA</a>
<a href="/2007book/lind07.htm">Mr. Jan-Olof Lind<br>
Swedish National Armaments Director</a>
<a href="/2007book/buckley07.htm">Dr. Edgar Buckley<br>
Thales Senior Vice President</a>
<a href="/2007book/trice07">Dr. Robert Trice<br>
Lockheed Martin <br>
Senior Vice President<br>
</a><a href="/2007book/bertolone07.htm">Ing. Giovanni Bertolone<br>
CEO, Alenia Aeronautica</a>
<p align="center" class="style17">The way ahead & why current approaches don't work
<p align="center" class="style17"><a href="/2007book/martinusz07.htm">Amb Zoltan Martinusz<br>
Hungarian Amb to NATO<br>
</a><a href="/2007book/ducaru07.htm">Amb Dumitru Sorin Ducaru<br>
Romanian Amb to NATO</a><a href="/2007book/kujat07.htm"> General Harald Kujat<br>
Former Chair of NATO Military Committee</a>
</div>
</div>
<div id="content">
<div class="story"><!-- InstanceBeginEditable name="EditRegion3" -->
<!-- Start of StatCounter Code -->
<script type="text/javascript">
var sc_project=3086157;
var sc_invisible=0;
var sc_partition=27;
var sc_security="33bf0688";
</script>
<script type="text/javascript" src="http://www.statcounter.com/counter/counter_xhtml.js"></script><noscript><div class="statcounter"><a class="statcounter" href="http://www.statcounter.com/"><img class="statcounter" src="http://c28.statcounter.com/3086157/0/33bf0688/0/" alt="free website hit counter" /></a></div></noscript>
<!-- End of StatCounter Code -->
<div align="center" class="style285" style="font-weight: bold; color: #FFFFFF">Paris '07 Workshop</div>
<table width="100%" border="0">
<tr>
<td bgcolor="#006699" height="18" colspan="5"><div align="center" class="style285" style="font-weight: bold; color: #FFFFFF">Paris '07 Workshop</div></td>
</tr>
</table>
<div class=Section1>
<p align="center" class="style26">Cyber-Security:�
Challenges for Industry</p>
<div align="center">
<table width="624" border="0">
<tr>
<td width="328" height="61"><div align="center" class=""></a></div>
<img src="2007images/Bloechl DSC_1092 Panel The Unnoticed Third World War DAY III.JPG" alt="Mr. Tim Bloechl, Microsoft" width="320" height="226"></td>
<td width="10" rowspan="2"><div align="center"></div></td>
<td width="272" rowspan="2" align="left"><div align="center" >
<div>
<p class="style26">Mr. Tim Bloechl<br>
Executive Director, World-wide Public Safety and National Security<br>
Microsoft<br>
</p>
</div>
</div></td>
</tr>
<tr>
<td align="left" valign="top"><p>Mr. Tim Bloechl (center), Microsoft
Executive Director, World-wide Public Safety and National Security, with U.S. Assistant Secretary of Defense John Grimes (left) and NATO's Lieutenant General Ulrich Wolf (right).</p>
</td>
</tr>
</table>
</div>
<p align="center" class="style26"><em>"...we do not have adequate laws,
regulations, and policies in place to deal with cyber-attacks. <br>
Clearly, this
needs to be improved both nationally and internationally so that <br>
cyber criminals cannot take free advantage of the vulnerabilities of the
Internet, <br>
steal our money, take our identity..."</em></p>
<p> I would like to follow up on the insights raised by Defence Minister Aaviksoo. When the cyber attacks occurred against Estonia, the NATO cyber-defense workshop was taking place at our headquarters in Redmond, Washington. Very quickly, the NATO nations and the NATO membership were talking about the incident, sharing ideas on how to counter it, and, from there, a plan of response developed. It is a testament to NATO that the member states had the vision to create this kind of a capability several years ago and to develop it to the point where they have a very active cyber-defense center in Mons today. It is a very effective center and is continuing to improve.</p>
<p> When I look at such operational examples from the standpoint of a former war planner and intelligence officer, I think in terms of things like offense, defense, deception, psyops, and intelligence gathering. I think there are enemies out there right now conducting reconnaissance and surveillance of our military networks, and this tells me we are technically in a state of cyber-war today. It is a peacetime cyber-war, but it could very quickly turn into an active war once more traditional hostilities occur.</p>
<p> I think industry has a very important role to play in this state of cyber war. Industry is the provider of capabilities, many new technologies, and innovation that we can take advantage of. At the same time, because we have these capabilities, we accrue new types of risk. Industry must take a role in helping to mitigate this risk and must work very closely with military, government, intelligence, and other types of organizations and the critical infrastructures they protect in order to help counter some of the security threats described at this workshop.</p>
<p> I believe industry's role can be summed up in terms of five key components, which I call the five "P's:" policies, partnerships, programs, processes, and people. Let me explain each one of them.</p>
<p align="center" class="style26">POLICIES</p>
<p> One of the things we have identified in our discussions is that we do not have adequate laws, regulations, and policies in place to deal with cyber-attacks. Clearly, this needs to be improved both nationally and internationally so cyber criminals cannot take free advantage of the vulnerabilities of the Internet, steal our money, take our identity, and in general do bad things to us. Some activities are underway to improve the situation but we are not there yet and work remains to be done. </p>
<p> We generally adhere to some policies or international standards that are in place today. They attempt to identify software vulnerabilities and get them fixed in order to ensure that the software on our military networks is adequately secure. One such standard is Common Criteria. If you are not familiar with it, it is a standard adhered to by many countries and used to ensure that software placed on our military and government networks satisfy some degree of evaluation. In our view the Common Criteria methodology is out of date; it is too cumbersome and expensive a process; It does not keep pace with technological change; and it does not significantly reduce today's vulnerabilities. A replacement for Common Criteria is something I think we need to take on as an issue internationally. We need to find a better standard so we can properly assess the technology we place on our networks and do it more effectively, efficiently, and quickly. </p>
<p align="center" class="style26">Procurement Cycles</p>
<p> If you think about it, in the government and the military, when you buy something you typically hold on to it for a long time. But the IT world does not move slowly. For example, think about the IT devices you have in your hands today and then think back five years ago to what you had then. The amount of change is amazing. Clearly we have to take a look at government procurement cycles and work together as a team to figure out ways to speed up the system to allow for more flexibility in the world of rapid IT change. If flexibility and adaptability are built into the procurement system, you will be able to take advantage of new IT capabilities and not be stuck with legacy systems and their inherent vulnerabilities down the road. </p>
<p align="center" class="style26">Piracy</p>
<p> There is a huge amount of pirated software in use today around the world. In fact, I would venture to say that some of you at this workshop have pirated software on your home or office systems and may not even know it. Pirated software is dangerous as often additional code is added, as well as back doors and other malicious capabilities, leaving you more vulnerable. Such vulnerabilities are inherently dangerous for military operations. To defeat this problem, we need policies and trade laws to deter the use of pirated software and we also need to build in capabilities in the software development life cycle to help us identify pirated copies so we can reduce the use of such software.</p>
<p align="center" class="style26">PARTNERSHIPS</p>
<p> Industry needs to develop four levels of partnership: with military/government; with law enforcement; with critical infrastructure owners; and with other industry partners and competitors. Such partnerships should help improve the products we develop, ensure they are designed to better meet military and government needs and standards, and to reduce some of the challenges mentioned earlier. </p>
<p> First, as I just mentioned, is the partnership with military and government organizations. We have one with NATO right now, as well as with many other customers, which allow us to jointly look at product road maps to see how we can work together to identify where technology is headed in the future and to plan together how we can insert new technology once it is available for use. Also, we are sharing Information about computer vulnerabilities, techniques, processes, and procedures, as well as how to work together when a cyber crisis occurs. Finally, we are discussing how to respond to such crisis situations and how we can effectively team to mitigate the threats we jointly face.</p>
<p align="center" class="style26">Law Enforcement</p>
<p> Another level of partnership should be with law enforcement. Clearly, there is an awful lot of illegal or potentially dangerous activity out there: for example, a lot of cyber-crime, exploitation of children on the Internet, and other disgusting activities. Therefore, it is critical for industry to work with law enforcement to help reduce the evil side of the Internet. Of course, this cooperation leads back to a point I made earlier--we need to put laws in place to make such acts illegal or industry and law enforcement will face a much harder battle.</p>
<p align="center" class="style26">Critical Infrastructures</p>
<p> The next level of partnership is with critical infrastructure owners. Industry needs to work to improve cyber security with all the different layers of critical infrastructure, including areas such as power generation, telecommunications, banking and finance, and transportation. In their own right, each of these infrastructures is very important to the way we work every day, and when you look at them from a military operational perspective they are extremely critical because most militaries cannot operate without them. So it is important to establish this type of relationship with critical infrastructure owners early, to keep the relationship current, and to keep it strong.</p>
<p align="center" class="style26">Industry to Industry</p>
<p> To some degree, there are representatives of companies at this workshop who are competitors to Microsoft. Where cyber-defense is concerned, industry has to come together regardless of competition and work to help defeat the threats we jointly face and affect us all. We welcome such industry cooperation and discussion.</p>
<p align="center" class="style26">PROGRAMS</p>
<p> I would like to mention a couple of programs which industry and government organizations should consider sharing information or intelligence on the cyber threat. One is a government security program in which vendors open up their source code to government and military organizations to prove to them there are no hidden backdoors within the software; to show the software being put on their system is effective; to validate the software has gone through very careful screening; and to give government the option of providing feedback to help improve the software before it is delivered. Another program might be a security cooperation program, with established mechanisms between industry, military organizations, and governments for sharing information on software vulnerabilities. One could also share open source threat information under such a program. I would recommend we consider such programs to improve our cyber security readiness and operations across NATO.</p>
<p align="center" class="style26">PROCESSES</p>
<p> My good friend Bob Lentz used to say, "We need to bake in security, not brush it on after the fact." I think it is very important that we bake in security capabilities in the software development life cycle, and we are very focused now on doing just that in industry. In fact, we use a program called the Security Development Lifecycle, which we are continuing to refine and improve, including Red Team attacks against the software to identify vulnerabilities and fix them; to conduct penetration tests; and to put the software through many other checks before the software ships and becomes a product on the market.</p>
<p> Regarding migration from legacy systems to new IT, we know that some of these older military systems have major problems but you are stuck operating with them as change does not happen overnight. Industry needs to work with you to conduct some degree of technical refresh of these systems, and to make sure they are interoperable with new IT, and integrate adequate security to keep up with present threats. "Defense in Depth" is the term applied to the type of security referred to here--a system to ensure that security practices and procedures work from the hand-held device to the desktop or laptop all the way back to the network and the back-end systems. Effective Defense in Depth requires various types of security capabilities are built into operational networks and all the hardware and software maintained on them. This is clearly a process for government, software vendors, hardware producers, and others involved to work on together to build a safer and more secure net.</p>
<p align="center" class="style26">Research and Development</p>
<p> R&D to improve products and processes, and to come up with new ways to do things, is extremely important in our mutual business. Technology has such a huge impact on society today. Change is rapid. Everyone wants the newest gadget or device and our soldiers, sailors, airmen and marines expect to have these great IT capabilities. They also expect us to deliver even better capabilities so they can stay one step ahead of their adversaries. We have some challenges to overcome. For example, we must look at requirements like cross-domain sharing, or the ability to improve sharing information across top-secret or secret level networks in cases where everyone may have the same clearance level, but not equal need-to-know. We have overcome some of the challenges to build and deploy an effective cross domain environment but more work needs to be done. Also, there is no solution today for multi-level security--the ability to move information back and forth seamlessly between unclassified, secret, and top-secret levels. When we find that answer, I think we will save an awful lot of money and also have a much more secure system to support military operations.</p>
<p align="center" class="style26">PEOPLE</p>
<p> My last P is People! Leadership is key here: effective cyber defense is not just the world of the CIO and J6, but also the world of commanders and CEOs, J3s, J2s and Security Officers. Leaders must understand that today's cyber-operations are an inherent part of military operations and have an increasingly important impact on success or failure. Education and awareness are critical. We have to build cyber warfare related information into our training programs, and industry should work with the military to conduct exercises which help our people plan for cyber attack, mitigate against the risk, and respond to a problem when one occurs. </p>
<p> The last point I want to talk about here is the use of services personnel--highly trained software experts embedded within our military organizations. When I served with Joint Task Force-Computer Network Defense in the U.S. military, the organization was one-third military, one-third government/civilian, and one-third contractor. During these years I learned it is very important to embed IT service capabilities right in your units. You need to have as part of the organizational structure people who have a deep understanding of the technical capabilities of software, the way we use it to communicate, and the security methods we need to impose to protect our IT infrastructures. The result is a much more effective operational network and these experts often help us find new and exciting ways to improve operational techniques and procedures.</p>
<p align="center" class="style26">CONCLUDING REMARKS</p>
<p> I believe that if we focus on these five Ps in our cyber defense activities, our activities will be pretty effective and this operational effectiveness should lead to a sixth P: Power. Information is extremely important to our command and control processes. If we can gather and share the right information using the IT systems and capabilities available today, and if we can make those systems secure, we have the opportunity to turn this information into knowledge--and knowledge is power. This is what commanders at all levels need. They need to have the best possible situational awareness to improve their ability to command and control. The only way they will be able to do this on the modern battlefield is to have an IT system they can trust and that they are 100% sure will work all the time. Effective cyber defense to lessen the effects of today's cyber war is an essential element for ensuring that our commanders achieve the Power offered by todays information technology.</p>
<!-- InstanceEndEditable --></div>
</div>
<div class="style8" id="siteInfo"> <a href="#">Top of page </a> | <a href="../index.html">Home</a> | ©2007
Center for Strategic Decision Research</div>
</div>
<br>
</body>
<!-- InstanceEnd --></html>