Inside DOD

By Amber Corrin

Blog archive

How ready are we for cyberspace?

The trouble with cyberspace is that little is defined, many Defense Department officials say. There aren’t the maps of physical terrain that are used every day in military operations. As far as official word goes, a year after the establishment of the Cyber Command, policies and doctrine are still being worked out. Little is publicly known about what’s in America’s cyber arsenal — or about the policies that govern it.

What is clear: The DOD approach to cyberspace needs to be much different than traditional operations.

“We can’t dominate cyberspace — the buy-in for bad actors is too low. We should secure cyberspace in a way that makes it impossible for others to dominate,” said Army Col. Jeffery Schilling, chief of current operations at Army Cyber Command. Schilling, June 28 at the IDGA Cyber Warfare and Security Summit in Washington. Schilling stressed that his comments were strictly his own opinion and not representative of DOD.

Schilling said the imminent steps in making cyber defense progress include better definitions for the territory and operations.

“We need to draw a line around cyberspace before the U.S. can exercise governance,” Schilling said, noting that it needs to be determined what exactly to protect. “If you don’t know what’s inside the borders, how can you know what to protect?”

He added that hostile acts and intent — and assigned federal jurisdictions — still need definitions, too.

What’s unique about cyberspace and what makes things more complicated is some of the domain's key attributes: It’s a man-made global commons, and for the most part, it isn’t government owned or operated, Schilling pointed out.

Its borderless existence means there’s no distinction between inside and outside the lines. It’s a virtual environment with no dimensions. Traditional borders have depended on physical geographical boundaries and attributes, of which there are none in cyberspace.

Schilling suggested that cyberspace be treated as sovereign-less space, like the open sea or Antarctica. To address the critical issue of anonymity, he also suggested users and equipment have flags like ships do for identification purposes. This would require international policy and cooperation, he added.

The question is: How much of this is already under way at DOD, and how much of it still remains to even be considered?

Posted by Amber Corrin on Jun 29, 2011 at 12:14 PM


Who's Fed 100-worthy?

Nominations are now open for the 2015 Federal 100 awards. Get the details and submit your picks!

Featured

Reader comments

Fri, Aug 12, 2011 Winter Park, FL

It's extremely hard for me to say we're ready.With so many interceptions of data by those who we can not see,I say it's not the time.

Thu, Jul 21, 2011 Mitch

Well as long as the DoD and other federal agencies spend much of their IT security funds and resources on paper security (AKA security by checking boxes on forms), we aren't going to be ready for cyberspace.

Tue, Jul 5, 2011

ready for cyberspace?? are you kidding? there are too many professional hackers who can decode programs for their owe benefits, thus making cyberspace very difficult for anybody to be safe. it will be a cat and mouse game forever.

Please post your comments here. Comments are moderated, so they may not appear immediately after submitting. We will not post comments that we consider abusive or off-topic.

Please type the letters/numbers you see above