|
Server : Apache/2.4.62 System : FreeBSD fbsdweb2.web.rcn.net 14.1-RELEASE FreeBSD 14.1-RELEASE releng/14.1-n267679-10e31f0946d8 GENERIC amd64 User : www ( 80) PHP Version : 8.3.8 Disable Function : NONE Directory : /domains/roger.dnai/2009book/ |
Upload File : |
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"
"http://www.w3.org/TR/html4/loose.dtd">
<html><!-- InstanceBegin template="/Templates/2008template.dwt" codeOutsideHTMLIsLocked="false" -->
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
<!-- InstanceBeginEditable name="doctitle" -->
<title>CSDR 2009: Cyber Resilience for Mission Success</title>
<!-- InstanceEndEditable -->
<link rel="stylesheet" href="/2002Book/emx_nav_right.css" type="text/css">
<link rel="stylesheet" href="/css/rome08.css" type="text/css" />
<style type="text/css">
<!--
.style5 {font-weight: bold;
color: #000000;
font-family: Arial, Helvetica, sans-serif;
font-size: large;
}
.style7 {font-size: 2px}
.style8 {font-family: Arial, Helvetica, sans-serif}
.style17 {
font-size: x-small;
font-weight: bold;
}
.style18 {font-size: x-small}
.style217 {font-family: Verdana, Arial, Helvetica, sans-serif}
.style219 {font-style: normal; font-weight: normal; font-family: Verdana, Arial, Helvetica, sans-serif; }
.style19 {font-size: 11px}
.style20 {
color: #006699;
font-size: large;
}
.style21 {font-size: small}
.style22 {font-family: Arial, Helvetica, sans-serif; font-size: small; }
-->
</style>
<style type="text/css">
<!--
.style23 {font-size: medium}
.style24 {font-size: large}
.style25 {
color: #006699;
font-weight: bold;
font-style: italic;
}
.style26 {
color: #006699;
font-size: medium;
font-weight: bold;
}
.style27 {
color: #006699;
font-size: medium;
}
.style293 {
font-size: large;
color: black;
}
-->
</style>
<!-- InstanceBeginEditable name="head" --><!-- InstanceEndEditable -->
</head>
<body>
<!-- Start of StatCounter Code -->
<script type="text/javascript">
var sc_project=3086157;
var sc_invisible=0;
var sc_partition=27;
var sc_security="33bf0688";
</script>
<script type="text/javascript" src="http://www.statcounter.com/counter/counter_xhtml.js"></script><noscript><div class="statcounter"><a class="statcounter" href="http://www.statcounter.com/"><img class="statcounter" src="http://c28.statcounter.com/3086157/0/33bf0688/0/" alt="free website hit counter" /></a></div></noscript>
<!-- End of StatCounter Code -->
<div class="skipLinks">skip to: <a href="#content">page content</a> | <a href="../book2007TEST/2002Book/pageNav">links on this page</a> | <a href="#globalNav">site navigation</a> | <a href="#siteInfo">footer (site information)</a> </div>
<div id="masthead">
<div id="globalNav" style="margin-top:15px;"> <div id="globalLink">
<a href="/index.html" id="gl1" class="glink"><span class="style18"><span class="style19">Home</span></span></a><a href="/index.html#about" class="glink"><span class="style18"><span class="style19">Contact Us</span></span></a><a href="/2009book/gonul.html" id="gl2" class="glink"><span class="style18"><span class="style19">Istanbul '09</span></span></a><a href="/2008book/joulwan.html" id="gl2" class="glink"><span class="style18"><span class="style19">Rome '08</span></span></a><a href="/2007book/joulwan07" id="gl2" class="glink"><span class="style18"><span class="style19">Paris '07</span></span></a><a href="/2006book/jung.htm" id="gl2" class="glink"><span class="style18"><span class="style19">Berlin '06</span></span></a><a href="/2005book/alliotmarie.htm" id="gl2" class="glink"><span class="style18"><span class="style19">Paris '05</span></span></a><a href="/2004book/PeterStruckKeynote.htm" id="gl3" class="glink"><span class="style18"><span class="style19">Berlin '04</span></span></a><a href="/moscow03/weissingerbaylon.htm" id="gl4" class="glink"><span class="style18"><span class="style19">Moscow '03</span></span></a><a href="/berlin02/scharping.htm" id="gl5" class="glink"><span class="style18"><span class="style19">Berlin '02</span></span></a><a href="/2001Book/workshop2001.htm" id="gl6" class="glink"><span class="style18"><span class="style19">Helsingør '01</span></span></a><a href="/2000Book/workshop2000.htm" id="gl6" class="glink"><span class="style18"><span class="style19">Berlin '00</span></span></a><a href="/99Book/workshop1999.htm" id="gl6" class="glink"><span class="style18"><span class="style19">Budapest '99</span></span></a><a href="/98Book/workshop98.htm" id="gl6" class="glink"><span class="style18"><span class="style19">Vienna '98</span></span></a><a href="/97Book/workshop97.htm" id="gl6" class="glink"><span class="style18"><span class="style19">Prague '97</span></span></a><a href="/96Book/Workshop96.htm" id="gl7" class="glink"><span class="style18"><span class="style19">Warsaw '96</span></span></a>
<a href="/95Book/95Workshop.htm" id="gl8" class="glink"><span class="style18"><span class="style19">Dresden '95</span></span></a></div>
</div>
</div>
<div id="pagecell1" style="top:65px;">
<div id="breadCrumb" style="text-align:center;">
<img src="/images/header.gif" alt="Center for Strageic Decision Research: Celebrating over 25 years of international dialogue. International workshop on global security." width="618" height="99" style="padding:20px 10px;" />
</div>
<div id="pageNav">
<div id="sectionLinks">
<p align="center" class="style17">Table of Contents<br>
26th International Workshop - Istanbul '09</p>
<p align="center" class="style17">
<a href="/2009book/weissinger-preface.html">Preface & Acknowledgements-<br />Dr. Roger<br>Weissinger-Baylon<br>Workshop Chairman<br></a>
<a href="/2009book/weissinger-overview.html">Workshop Chairman's Overview - Dr. Roger Weissinger-Baylon</a>
<a href="/2009book/gonul.html">Keynote Address - <br>Turkish Defense Minister<br>Vecdi Gönül</a>
<a href="/2009book/meimarakis.html">Greek Defense Minister<br />
Evangelos Vassilios I. Meimarakis
</a>
<a href="/2009book/teixeira.html">Portuguese Defense Minister<br />
Dr. Nuno Severiano Teixeira
</a>
<a href="/2009book/middelkoop.html">Dutch Defense Minister<br />
Eimert van Middelkoop
</a>
<a href="/2009book/aaviksoo.html">Estonian Defense Minister<br />
Jaak Aaviksoo
</a>
<a href="/2009book/baramidze.html">Georgian Vice Prime Minister<br />
Giorgi Baramidze
</a>
<a href="/2009book/jelusic.html">Slovenian Defense Minister<br />
Dr. Ljubica Jelusic
</a>
<a href="/2009book/sikharulidze.html">Georgian Defense Minister<br />
Vasil Sikharulidze
</a>
<a href="/2009book/vucinic.html">Montenegrin Defense Minister<br />
Boro Vucinic
</a>
<a href="/2009book/liegis.html">Latvian Defense Minister<br />
Imants Liegis
</a>
<a href="/2009book/chizhov.html">Russian Amb to EU<br />
Vladimir Chizhov
</a>
<a href="/2009book/dutt.html">Indian Deputy National Security Advisor<br />
Shekhar Dutt
</a>
<a href="/2009book/eldon.html">British Amb to NATO<br />
Stewart Eldon
</a>
<a href="/2009book/mcrae.html">Canadian Amb to NATO<br />
Robert McRae
</a>
<a href="/2009book/winid.html">Polish Amb to NATO<br />
Boguslaw Winid
</a>
<a href="/2009book/ducaru.html">Romanian Amb to NATO<br />
Sorin Dimitru Ducaru
</a>
<a href="/2009book/karem.html">Egyptian Amb to Belgium<br />and EU<br />
Dr. Mahmoud Karem
</a>
<a href="/2009book/abouyoub.html">Morrocan Amb-at-large<br />
Hassan Abouyoub
</a>
<a href="/2009book/al-mulla.html">Kuwaiti Amb to Belgium<br />and EU<br />
Nabeela A. Al-Mulla
</a>
<a href="/2009book/masadeh.html">Jordanian Amb to Belgium and EU<br />
Dr. Ahmad Masa’deh
</a>
<a href="/2009book/grimes-lentz.html">U.S. Asst Sec of Def<br />
Hon. John G. Grimes<br />&<br />
U.S. Dep Asst Sec of Def<br />
Robert Lentz
</a>
<a href="/2009book/serres.html">Dir General for Information and Communication Systems<br />French Ministry of Defense<br />
Henri Serres
</a>
<a href="/2009book/lentz.html">U.S. Dep Asst Sec of Def<br />
Robert Lentz
</a>
<a href="/2009book/bloechl.html">Microsoft, Managing Dir.<br />
Tim Bloechl
</a>
<a href="/2009book/morgan.html">CISCO, Director, Netcentric Initiatives<br />
Terry Morgan
</a>
<a href="/2009book/tanin.html">Afghan Amb to UN<br />
Dr. Zahir Tanin
</a>
<a href="/2009book/haroon.html">Pakistani Amb to UN<br />
Abdullah Hussain Haroon
</a>
<a href="/2009book/camporini.html">Italian Chief of Defense<br>
General Vincenzo Camporini
</a>
<a href="/2009book/lather.html">SHAPE Chief of Staff<br>
General Karl-Heinz Lather
</a>
<a href="/2009book/zappata.html">Dep Supreme Allied<br>
Commander Transformation<br />
Admiral Luciano Zappata
</a>
<a href="/2009book/volkman.html">U.S. Dir of Internat. Coop.<br>
Alfred Volkman
</a>
<a href="/2009book/homberg.html">EADS Corp Vice Pres<br>
Thomas Homberg
</a>
<a href="/2009book/flory.html">NATO Asst Sec Gen<br>
Peter Flory
</a>
<a href="/2009book/buckley.html">Thales Senior VP<br>
Dr. Edgar Buckley
</a>
<a href="/2009book/harris.html">Lockheed Martin Global Pres.<br>
Dr. Scott A. Harris
</a>
<a href="/2009book/shephard.html">Northrop Grumman VP<br>
Mr. Timothy Shephard
</a>
<a href="/2009book/joulwan.html">General George Joulwan<br>Former SACEUR</a>
<a href="/2009book/acosta.html">Global Impact CEO<br>
Ms. Renee Acosta
</a>
<a href="/2009book/coles.html">Africare CEO<br />
Julius E. Coles
</a>
<a href="/2009book/torbay.html">Int'l Medical Corps Sr VP<br />
Rabih Torbay
</a>
<a href="/2009book/beaman.html">Joint Force Command Naples Operations<br />
Rear Admiral Gerald Beaman
</a>
<a href="/2009book/dezenski.html">INTERPOL Managing Dir<br />
Ms. Elaine Dezenski
</a>
<a href="/2009book/monteforte.html">Italian Milrep to NATO<br>
Vice Adm Ferdinando Sanfelice di Monteforte
</a>
<a href="/2009book/wells.html">Fmr U.S. Asst Def Sec<br />
Dr. Linton Wells II
</a>
<a href="/2009book/dardel.html">Swiss Amb to NATO<br />
Dr. Jean-Jacques de Dardel
</a>
<a href="/2009book/patterson.html">Univ of Tennessee<br />
Mr. David Patterson
</a>
<a href="/2009book/lather-wrap-up.html">Wrap-up Remarks - SHAPE Chief of Staff<br>
General Karl-Heinz Lather
</a>
</div>
</div>
<div id="content">
<div class="story">
<h2 class="workshop_year">Istanbul '09 Workshop</h2>
<!-- InstanceBeginEditable name="Main Content" -->
<h1>Cyber Resilience for Mission Success</h1>
<table align="center">
<tr>
<td width="300"><h2 style="margin-bottom: 0;">
The Honorable John G. Grimes
<br />U.S. Assistant Secretary of Defense (Networks and Information Integration)</h2>
<h2><img width="200" height="250" alt="The Honorable John G. Grimes" src="/2009book/2009images/grimes.jpg" /></h2></td>
<td width="150" valign="top"><h2 style="margin-top:20px;">and</h2></td>
<td width="300"><h2 style="margin-bottom: 0;">
Mr. Robert Lentz
<br />Deputy Assistant Secretary of Defense</h2>
<h2 style="margin-top: 0; margin-bottom: 0;"><img width="200" height="250" alt="Mr. Robert Lentz" src="/2009book/2009images/lentz.jpg" style="padding-top:20px;" /></h2></td>
</tr>
</table>
<p>Our governments, societies, and economies depend on the unimpeded flow of information through cyberspace. Information is a catalyst for successful missions and enables greater opportunity for advancement through knowledge sharing.</p><p>
We share threats, vulnerabilities, and together face the cascading impacts of attacks on our shared cyberspace to include the critical information infrastructures that individuals, the private sector, and civil society depend on as much as governments. But, are we prepared to operate in contested cyber environments, and do we work together effectively on protection and defense—both nationally and internationally, and among public and private sectors?</p><p>
I would like to talk about the critical information infrastructure that we share, dependencies on fragile underpinnings, collective threats we face, concepts for resilience, and considerations for potential trust-and confidence-building initiatives to address these challenges. My goal is to further develop discussions on lessons learned, share best practices, and facilitate opportunities between nations, both in the public and private sector, to contribute to cyber resilience for mission success.</p>
<h2>DEPENDENCE ON FRAGILE UNDERPINNINGS</h2>
<p>The overall security of a nation is dependent on the unimpeded use of cyberspace. One construct to describe the capabilities of nations is to discuss the capabilities in terms of Diplomacy, Information, Military, and Economics or “D.I.M.E.”. The underlying Information and Communication Technologies (ICT) which facilitate collaboration are prerequisites for all four of these capabilities. ICTs depend on the underlying Critical Information Infrastructure (CII) to facilitate connectivity. In the United States, as well as in other developed nations, most critical infrastructure assets are owned and operated by the private sector.
</p><p>Within the CII, there are complex interdependencies and cascading effects with are not fully recognized. For example, consider the growing interconnectivity between the internet and the electrical grid through Supervisory Control and Data Acquisition (SCADA) systems with SMART GRID technologies. This was done to deliver electricity from suppliers to consumers using digital technology to save energy and reduce cost but this also greatly increases the consequence of cyber attack with unknown cascade effects.</p><p>
Information and Communication Technologies and the supporting Critical Information Infrastructures are enabling capabilities that have a greater and broader value than the other three components of national missions. Our economic and national successes are linked through information capabilities and the fragile underpinnings we have created.
</p><p>The ability to operate through adversity and recover quickly to a trusted environment or, put simply, the ability to be cyber resilient is paramount to national security.</p>
<h2>INCREASING THREATS AND DEPENDENCE</h2>
<p>Building on the previous discussion on dependence, let us briefly consider the growth of the cyberspace security threat. The increased complexity of our information infrastructures coupled with our growing dependence equates to lower entry
barriers and an increased number of malicious actors in cyberspace.</p>
<p>The sophistication of most malicious actors is decreasing while the sophistication and number of attacks is increasing. While early malicious actors required unparalleled skills in the early days of this type of activity, today’s technology has not only facilitated greater computing reliance, it has also exponentially lowered the entry barrier for potential malicious acts in cyberspace. The recent Conflicker virus, as an example, demonstrated the potential impacts of automated threats. The
end result is a tremendous and continuing growth in the number and depth of threat capabilities.</p>
<h2>CYBER RESILIENCE</h2>
<p>Sophisticated adversaries have the resources and capabilities to exploit our Information and Communication Technologies, impacting our ability to accomplish missions. Best efforts to keep the adversaries at bay may fail and they will succeed in degrading, denying, or manipulating the technology underpinnings. Together we must put in place the necessary insurance that allows our shared critical information infrastructures to:</p>
<ul>
<li>Operate through adversity</li>
<li>Deflect attacks</li>
<li>Restore trust when information has been manipulated</li>
<li>Recover to a trusted state quickly</li>
<li>Be prioritized to support essential missions</li>
</ul>
<p>As we pointed out earlier, the ability to be cyber resilient is paramount to national security. Cyber resilience includes people, the physical environment (e.g., building networks, cables) and, importantly, the information and its enabling capabilities (e.g., Enterprise IT Services). To be resilient all must work together to operate through and recover from sophisticated cyber attacks, and be flexible, adaptable, and trustworthy.</p>
<h2>OPPORTUNITIES AND CONSIDERATIONS FOR NEXT STEPS</h2>
<p>There are insufficient resources to protect and defend all aspects of our shared critical information infrastructure at all times from the growing and asymmetric threats. We must collectively participate in the responsibility towards building resilient capabilities through protection and defense of the ICTs we depend on. When our best efforts in defense have failed, joint contributions towards recovery and reconstitution are key to ensuring that our most vital resource is there when we need it. Below are a few trust-and confidence-building initiatives that countries can take to cooperate bilaterally and multilaterally on cyber security matters:</p>
<ul>
<li>Improve defense-in-depth capabilities</li>
<li>Improve Information Assurance and Computer Network Defense (CND) interoperability</li>
<li>Share cyber situational awareness and early warning information</li>
<li>Link watch center to watch center operations and exercises</li>
<li>Ensure interoperability to protect and share CND/IA information</li>
<li>Foster relationship with collective security institutions</li>
</ul>
<p>Perhaps the most important and a good starting point to facilitate cooperation is to conduct training exercises under realistic cyber scenarios. Militaries have a unique appreciation of the benefit of training and conducting exercises and are a good resource to begin dialog in this area to:</p>
<ul>
<li>Increase awareness of stake holders regarding their interdependence on cyber space</li>
<li>Improve understanding of procedures that should be implemented</li>
<li>Increase trust between all the players</li>
</ul>
<p>As leaders from across the world, we must encourage the international community to be good stewards of our shared critical information infrastructure and to make the cyberspace a safer place for our citizens, our businesses, and our national interests.</p>
<!-- InstanceEndEditable --></div>
</div>
<div class="style8" id="siteInfo"> <a href="#">Top of page </a> | <a href="../index.html">Home</a> | ©2010
Center for Strategic Decision Research</div>
</div>
<br>
</body>
<!-- InstanceEnd --></html>