Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Risk

7/15/2011
12:10 PM
Connect Directly
Twitter
RSS
E-Mail
50%
50%

Attacks Focus DOD On Cybersecurity Partnerships

Defense Department's cyber strategy stresses government-industry collaborations, recognizing that the military operates in an interconnected world where cyber attacks continue to rise in frequency and severity.

>Slideshow: Next Generation Defense Technologies
Slideshow: Next Generation Defense Technologies
(click for larger image and for full slideshow)
Partnerships with industry, allies, and other government agencies play a large role in the new cyber strategy that the U.S. military announced Thursday, and with good reason: attacks are on the rise in severity and number on numerous fronts, and the Department of Defense (DOD) is increasingly connected to the outside world.

"Because cyberspace is composed of many interwoven networks that perform many different functions, ensuring its peaceful use will require efforts on many fronts," deputy secretary of defense Bill Lynn said at Thursday's announcement of the strategy. "The men and women of the military, other government agencies, our allies, the private sector, and indeed, the citizens of cyberspace must all play a role."

On Thursday, Lynn detailed two previously unpublicized attacks. In one attack on a defense contractor in March, which the DOD has pegged a foreign intelligence service as the likely perpetrator, 24,000 files on a sensitive weapons system were stolen from a defense contractor's network. As a result of that attack, Lynn said, the DOD is investigating whether the system needs to be redesigned because its specs have been compromised. In another recent attack, the Web servers of the National Defense University were hijacked by "an unknown intruder."

While serious, these are only two items on a long list of recent attacks on the military, military partners, and critical infrastructure that supports military operations. Data stolen from security company RSA earlier this year was used to penetrate Lockheed Martin's networks, for example. The Pentagon's official credit union database was possibly exposed after being accessed by a PC weighed down by malware. Cyber intruders have also successfully attacked energy firms and large financial institutions in recent months, Lynn noted.

In response, the military has been working more closely with the private sector. Lynn highlighted the Defense Industrial Base Cyber Pilot, in which the DOD is working with a handful of defense contractors and Internet service providers to identify and stop attacks on their networks. The effort builds on a program started in 2007.

While the new pilot has only been up and running for a few months, Lynn said that it has already begun preventing intrusions for some of those companies involved. The DOD plans to end the pilot later this summer and then determine whether and how to expand the program to other defense contractors and possibly other critical infrastructure sectors.

Beyond defense contractors, numerous other non-military networks support important military functions, such as those that run and manage the power grid, transportation systems, and the financial sector. Ninety-nine percent of U.S. military electricity comes from civilian sources, for example, and 90% of U.S. military voice and Internet traffic travel over private networks. "To protect our military capability, we must work with the Department of Homeland Security and the private sector to protect the nation's critical infrastructure," Lynn said, adding that attacks on multiple critical infrastructure sectors could have a "devastating" impact on the U.S. military.

The military cyber strategy indicates that the DOD's efforts in collaboration with the private sector will continue to expand, reaching out eventually even to small and midsized businesses. "Success will require additional pilot programs, business models, and policy frameworks to foster public-private synergy," the strategy document says.

International partners also play a role, as the United States has been increasing cooperation with key allies including Australia, Canada, the United Kingdom, Japan, and allies in NATO. "Collective cyber defenses will help expand our awareness of malicious activity and speed our ability to defend against ongoing attacks," Lynn said. He added that, going forward, the United States would pursue "international norms" in cyberspace through vehicles like treaties.

What industry can teach government about IT innovation and efficiency. Also in the new, all-digital issue of InformationWeek Government: Federal agencies have to shift from annual IT security assessments to continuous monitoring of their risks. Download it now. (Free registration required.)

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
Why Cyber-Risk Is a C-Suite Issue
Marc Wilczek, Digital Strategist & CIO Advisor,  11/12/2019
DevSecOps: The Answer to the Cloud Security Skills Gap
Lamont Orange, Chief Information Security Officer at Netskope,  11/15/2019
Attackers' Costs Increasing as Businesses Focus on Security
Robert Lemos, Contributing Writer,  11/15/2019
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Current Issue
Navigating the Deluge of Security Data
In this Tech Digest, Dark Reading shares the experiences of some top security practitioners as they navigate volumes of security data. We examine some examples of how enterprises can cull this data to find the clues they need.
Flash Poll
Rethinking Enterprise Data Defense
Rethinking Enterprise Data Defense
Frustrated with recurring intrusions and breaches, cybersecurity professionals are questioning some of the industrys conventional wisdom. Heres a look at what theyre thinking about.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2019-19071
PUBLISHED: 2019-11-18
A memory leak in the rsi_send_beacon() function in drivers/net/wireless/rsi/rsi_91x_mgmt.c in the Linux kernel through 5.3.11 allows attackers to cause a denial of service (memory consumption) by triggering rsi_prepare_beacon() failures, aka CID-d563131ef23c.
CVE-2019-19072
PUBLISHED: 2019-11-18
A memory leak in the predicate_parse() function in kernel/trace/trace_events_filter.c in the Linux kernel through 5.3.11 allows attackers to cause a denial of service (memory consumption), aka CID-96c5c6e6a5b6.
CVE-2019-19073
PUBLISHED: 2019-11-18
Memory leaks in drivers/net/wireless/ath/ath9k/htc_hst.c in the Linux kernel through 5.3.11 allow attackers to cause a denial of service (memory consumption) by triggering wait_for_completion_timeout() failures. This affects the htc_config_pipe_credits() function, the htc_setup_complete() function, ...
CVE-2019-19074
PUBLISHED: 2019-11-18
A memory leak in the ath9k_wmi_cmd() function in drivers/net/wireless/ath/ath9k/wmi.c in the Linux kernel through 5.3.11 allows attackers to cause a denial of service (memory consumption), aka CID-728c1e2a05e4.
CVE-2019-19075
PUBLISHED: 2019-11-18
A memory leak in the ca8210_probe() function in drivers/net/ieee802154/ca8210.c in the Linux kernel before 5.3.8 allows attackers to cause a denial of service (memory consumption) by triggering ca8210_get_platform_data() failures, aka CID-6402939ec86e.