11/03/2011

China a minimal cyber security threat: Paper


Despite having an Information warfare strategy since the mid '90s China's offensive cyber-warfare capabilities are “fairly rudimentary”


Tim Lohman (Computerworld)31 October, 2011 11:51


Despite growing concern about China’s cyber-warfare capabilities, Australia and other Western nations have little to worry about when it comes to their national security.

That’s the view of Desmond Ball, a professor in the Strategic and Defence Studies Centre at the Australian National University, who in a recent journal paper argues China's offensive capabilities are limited and its own Internet security has notable deficiencies and vulnerabilities.

According to Ball, China had carried out a number of high-profile and successful hacks, denial of service attacks and website defacements in recent years. However, its offensive cyber-warfare capabilities were “fairly rudimentary.”

[ With the increasing threat of cyber crimes, protect yourself and stay informed on the latest news with Computerworld's Security newsletter ]

“[China has] evinced little proficiency with more sophisticated hacking techniques,” the paper reads. “The viruses and Trojan Horses they have used have been fairly easy to detect and remove before any damage has been done or data stolen. There is no evidence that China’s cyber-warriors can penetrate highly secure networks or covertly steal or falsify critical data.

“They would be unable to systematically cripple selected command and control, air defence and intelligence networks and databases of advanced adversaries, or to conduct deception operations by secretly manipulating the data in these networks.”

According to Ball, the capability gap in anti-virus and network security applications between China and other nations was immense.

China’s cyber-warfare authorities must despair at the breadth and depth of modern digital information and communications systems and technical expertise available to their adversaries,” the paper reads.

In Ball’s view, and despite having an information warfare (IW) plan since 1995 and conducting cyber exercises since 1997, China’s cyber-warfare capability was not expected to better rivals for several decades.

“At best, [China] can employ asymmetric strategies designed to exploit the (perhaps relatively greater) dependence on IT by their potential adversaries…” the paper reads.

China’s cyber-warfare capabilities are very destructive, but could not compete in extended scenarios of sophisticated IW operations. In other words, they function best when used pre-emptively, as the PLA now practices in its exercises. In sum, the extensive Chinese IW capabilities, and the possibilities for asymmetric strategies, are only potent if employed first.”

In the Australian Security and Intelligence Organisation’s (ASIO) 2010-11 Annual Report, the agency noted that espionage by cyber means was emerging as a serious and widespread concern.

“ASIO is seeing increasingly both foreign state and non-state actors taking advantage of the access, relative anonymity and global reach of the internet,” the report reads. “From the comfort of wherever their computer terminal may be, they probe Australian information systems and data holdings for vulnerabilities and mine for valuable commercial, diplomatic and military intelligence — sometimes with success.

“Despite the rise of espionage through cyber means, ASIO has not seen any reduction in the intensity of other, more traditional forms of espionage — human spies are still being recruited and run and foreign intelligence agencies are still interfering covertly in the Australian community. Indeed, effective coordination between traditional, human-based espionage and computer network operations represents a potent threat to our most sensitive data and networks that are not connected to the Internet."

In July 2010, ASIO established a Cyber Espionage Branch to provide advice to government and business on the threat of cyber-espionage and to investigate increasingly sophisticated and frequent cyber-intrusions into computer networks.

For its part, Australia has worked during the past year to raise cyber security as a foreign policy issue on the international agenda and has moved to better secure its cyber borders.

In the Department of Foreign Affairs and Trade’s (DFAT) 2010/11 Annual Report, the department said it had worked with the Department of the Prime Minister and Cabinet and other agencies on a framework for Australia’s international engagement on cyber.

“The department took the lead for Australia in contributing to the development of international cyber norms by under taking work on messaging, principles to underpin norms, and mapping international activity,” the report reads.

“The department also worked with the Department of Defence to strengthen cooperation with the US and the United Kingdom on cyber in AUSMIN and AUKMIN consultations and contributed to planning for the United Kingdom’s London conference on international cyber norms, scheduled for November 2011."

(http://www.computerworld.com.au/article/373798/aukmin_talks_lead_cyber_security_commitment/)

In a sign of the growing government acceptance of cyber-attacks as genuine threats to national security, the Australian government said it June that it would develop its first Cyber White Paper.

http://www.computerworld.com.au/article/388907/australia_draft_cybersecuity_strategy_paper/

Read more:

http://www.computerworld.com.au/article/405767/china_minimal_cyber_security_threat_paper/