Cyber B52 strikes mooted as response to Chinese infowar
PHP is our profession...
But back to the National Journal. It had published an article entitled "China's Cyber Militia," one which fueled the paranoia of Dr. Strangelove crazies. The facts were all there for everyone to see, implied the magazine, and the Chinese "had possibly triggered two recent and widespread blackouts in Florida and the Northeast, according to U.S. government officials and computer-security experts."
"Officially, the blackout was attributed to a variety of factors, none of which involved foreign intervention," reported the magazine. And then came the procession of private sector consultants, stating things were otherwise. The magazine's report was lengthy, working through the logic that the truth of a thing is determined by the number of Americans who can be found to assert it. In another manner of speaking, if one can fill a room with bull, hearsay and gossip, there's always a magic tipping point where it transforms into fact, like lead turns into gold when touched by the Philosophers Stone in alchemy.
To spend too much time arguing details is to be drawn into the deranged world of the American way of threat description. Absence of proof is not proof of absence, goes the slogan, and before you know it, you're off to war.
But long-time readers know how the cyberwar game has played for close to a decade.
By way of example, in November of 1999 the Washington Times published a front page story entitled "China Plots Winning Role in Cyberspace."
The hypothetical scenario of catastrophe was produced.
"China could launch a devastating computer-run sabotage operation by attacking U.S. oil refineries, many of which are grouped closely together in areas of Texas, New Jersey and California... A [Chinese] computer attacker could penetrate the electronic 'gate' that controls refinery operations and cause fires or toxic chemical spills," it was said.
For close to ten years, there has been a constant parade of characters peddling this manner of paranoid threat-assessment. Older names like John Hamre, Richard Clarke, James Adams or Michael Vatis have drifted away, replaced by younger characters, functionally equivalent. It has always been apparent that many were and are involved in a process which included fear-mongering and shakedowns for funding. It was a bipartisan activity, a constant small collective of experts and officials more accurately, if impolitely, described as mischief-makers and eccentrics massaging a part of the government/private sector security collaborative. The mainstream media has generally been a compliant enabler of them.
But what if in the space of ten years, it has just been a coincidence that we've been plagued by whispering pests from the professional doom industry? What if China actually has stolen a march and made fantasy into reality? Let's conduct a thought excursion and pretend it's all real, every last word, and the infrastructure is in danger of being torched, the lights turned out.
The cyber bomber gap
What would the United States do? Start carpet-bombing? Carpet-bombing, in this case, means having a force of cybermen and their own vast military botnet to launch DDOS attacks.
In "Carpet-bombing in Cyberspace," an article from the Armed Forces Journal, Col. Charles W. Williamson III writes "America needs the ability to carpet bomb in cyberspace to create the deterrent we lack."
There is a carpet-bombing gap in cyberspace, it is said. "We are in [a new arms race] and we are losing," asserts Williamson. China has the greatest capability for cyber carpet-bombing because "analysts think China has the worlds largest denial-of-service capability."
The US can offset this by investing in its own military botnet, sort of like not allowing the Russkis to take the lead in mineshaft digging in Dr. Strangelove.
When it comes to carpet-bombing a foreign country's cyberspatial infrastructure, the proper intelligence will be important, reasons Williamson. But no capability should be particularly restricted by details. If the US blows some puny country off the Internet and it turns out that their computers were only being used by others, the retaliation will have had, in any case, a warning effect. After all, a weapon has no deterrence if you keep it a secret. And besides, they'll probably have had it coming.
"Brute force has an elegance all its own," the man says.
Script fragment from a hypothetical remake of Strangelove: "Now, if we can speak freely, sirs, we think the Chinese flash a big game but, frankly, they're short on know-how. You can't take a bunch of ignorant peasants and expect them to understand a machine like one of our boys. If you see one of our cybermen from the Air Force - their slogan's "Above All" - they're really sharp. They'll barrel our DDOS attack in so low, you've just got to see it sometime!" (Manic stare, chomps cigar) ®
George Smith is a senior fellow at GlobalSecurity.org, a defense affairs think tank and public information group. At Dick Destiny, he blogs his way through chemical, biological, and nuclear terror hysteria, often by way of the contents of neighbourhood hardware stores.
Sponsored: Fast data protection ROI?