22 juillet 2020 | International, C4ISR

The new ways the military is fighting against information warfare tactics

One of the clearest examples of how the military wants to defeat adversaries using information warfare is by publicly disclosing what those enemies have been doing and what capabilities they have.

Information warfare can be abstract, combining cyber, intelligence, electronic warfare, information operations, psychological operations or military deception as a way to influence the information environment or change the way an adversary think.

“At our level, the most important thing we can do is to be able to expose what an adversary is doing that we consider to be malign activity, in a way that allows that to be put in the information environment so that now more scrutiny can be applied to it,” Lt. Gen. Timothy Haugh, commander 16th Air Force, the Air Force's newly established information warfare organization, told reporters during a media round table in late February.

One of the first ways the Department of Defense has sought to test this is through U.S. Cyber Command's posting of malware samples to the public resource VirusTotal. Malware samples discovered in the course of operations by the Cyber National Mission Force are posted to the site to inform network owners. It also helps antivirus organizations of the strains build patches against that code and helps identify the enemies' tools being used in ongoing campaigns.

Haugh, who most recently led the Cyber National Mission Force, explained how these cyber teams, conducting what Cyber Command calls hunt forward operations, were able to expose Russian tactics.

U.S. military teams deploy to other nations to help them defend against malign cyber activity inside their networks. “Those defensive teams then were able to identify tools that were on networks and publicly disclose them, [and] industry later attributed to being Russian tools,” he said. “That was a means for us to use our unique authorities outside the United States to be able to then identify adversary activity and publicly disclose it.”

Officials have said this approach changes the calculus of adversaries while also taking their tools off the battlefield.

“Disclosure is more than just revealing adversary intent and capabilities. From a cyberspace perspective, disclosure is cost imposing as it removes adversary weapons from the ‘battlefield' and forces them to expend resources to create new weapons,” Col. Brian Russell, the commander of II Marine Expeditionary Force Information Group, told C4ISRNET in June. “Disclosure forces the adversary to ask: ‘How were those capabilities discovered?' It causes them to investigate the cause of the disclosure, forcing them to spend time on something other than attacking us. If I can plant a seed of doubt (messaging) that the disclosure might have been caused by someone working on the inside, it makes them question the system's very nature, perhaps spending more time and resources to fix the system.”

The NSA has demonstrated a similar tactic when it created its cybersecurity directorate in late 2019. The entity was formed in part, due to the fact that adversaries were using cyberspace to achieve strategic objectives below the threshold of armed conflict. Now, the directorate uses its intelligence and cyber expertise to issue advisories to the network owners of cybersecurity threats so they can take the necessary steps to defend themselves.

One recent advisory had direct bearing on a nation state's malicious activity, according to a senior intelligence official. In late May, the agency issued an advisory regarding a vulnerability in Exim mail transfer agent, which was being widely exploited by a potent entity of Russia's military intelligence arm the GRU called Sandworm.

“Quickly thereafter, we saw five cybersecurity companies jumped on it and really used that to deepen and expand and publish information about the GRU's infrastructure that they use to conduct their cyberattacks and further information as well,” the official told reporters in early July. “That was terrific because we felt that that had a direct impact on a major nation state in terms of exposing their infrastructure ... and we saw significant patch rates go up on a vulnerability that we knew they were using. That's the kind of thing that we're looking for.”

The military has had to think differently to combat for how adversaries are operating.

“A central challenge today is that our adversaries compete below the threshold of armed conflict, without triggering the hostilities for which DoD has traditionally prepared,” Gen. Paul Nakasone, commander of Cyber Command, wrote in prepared testimony before the House Armed Services Committee in early March. “That short-of-war competition features cyber and information operations employed by nations in ways that bypass America's conventional military strengths.”

These disclosures or efforts to call out malign behavior have also taken the forms of media interviews and press releases.

For example, Gen. Jay Raymond, the head of U.S. Space Command and the commandant of Space Force, said in a February interview in which he detailed what he deemed unacceptable behavior by Russia in space, a surprising charge given how tight lipped the U.S. government typically is about its satellites.

“We view this behavior as unusual and disturbing,” he said of Russian satellites creeping up to American ones. “It has the potential to create a dangerous situation in space.”

Or consider that leaders from Africa Command on July 15 issued a press release detailing the activities of the Wagner Group, a Russian security company, as acting on behalf of the Russian state to undermine the security situation in Libya.

“U.S. Africa Command (AFRICOM) has clear evidence that Russian employed, state-sponsored Wagner Group laid landmines and improvised explosive devices (IEDs) in and around Tripoli, further violating the United Nations arms embargo and endangering the lives of innocent Libyans,” the release said. “Verified photographic evidence shows indiscriminately placed booby-traps and minefields around the outskirts of Tripoli down to Sirte since mid-June. These weapons are assessed to have been introduced into Libya by the Wagner Group.”

Moreover, Africa Command's director of operations called out Russia, noting that country's leaders have the power to stop the Wagner Group, but not the will.

Sixteenth Air Force, at the request of C4ISRNET, provided a vignette of such behavior from Russia in the form of how it covered up the explosion of a radioactive rocket, dubbed Skyfall.

According to the service, Russia took extreme steps to curb monitoring of the site where the explosion took place and sought to conceal the true nature of the explosion potentially hindering surrounding civilian populations from receiving adequate medical treatment and guidance.

With new forces integrated under a single commander, using unique authorities to collect intelligence and authorities to disclose, 16th Air Force is now better postured to expose this type of malign activity, which previously the U.S. government just didn't do.

Top Pentagon leaders have explained that the dynamic information warfare space requires a new way of thinking.

“We've got to think differently. We've got to be proactive and not reactive with messaging,” Lt. Gen. Lori Reynolds, the Marine Corps' deputy commandant for information, told C4ISRNET in an interview in March. “We have been very risk averse with regard to the information that we have. You can't deter anybody if you're the only one who knows that you have a capability.”

https://www.c4isrnet.com/information-warfare/2020/07/20/the-new-ways-the-military-is-fighting-against-information-warfare-tactics/

Sur le même sujet

  • UAE cleared for CH-47F Chinook buy

    11 novembre 2019 | International, Aérospatial

    UAE cleared for CH-47F Chinook buy

    By: Aaron Mehta and Jen Judson WASHINGTON — The U.S. State Department has cleared the United Arab Emirates to purchase 10 CH-47F Chinook cargo helicopters, with an estimated price tag of $830.3 million. The potential deal was announced Thursday on the website of the Defense Security Cooperation Agency, or DSCA. Such notifications are not guarantees of final sale; should the request be approved by Congress, quantities and dollar figures can change during negotiations. This request represents the 10th Foreign Military Sales request from the UAE since the start of fiscal 2017, for a total approximate worth of $10.5 billion. It is also the first Foreign Military Financing request cleared by the DSCA since the Trump administration declared a regional emergency in order to get several weapons packages pushed through Congress despite opposition on Capitol Hill, leading to bipartisan criticism of the move. The UAE bought its first lot of CH-47Fs — 16 aircraft for estimated total of $2 billion — in 2009. Boeing said earlier this year that it was relying on foreign military sales, including “30 helicopters or less” to the UAE, to shore up a delta between the production of its Block I version of the F-model and its Block II version. The company needs FMS deals like the one with the UAE even more now that the U.S. Army is planning not to buy the Block II version for the active force. The service still plans to produce Block II aircraft for Army special operators. Top Army officials have said they are working hard to mint FMS deals to help make up for the huge production gap left open following the service's decision to not buy Block II F-models for the active force. But Boeing told Defense News that it expected FMS deals would not lessen the blow and, so far, none of the anticipated sales are for Block II versions. The UAE's order, according to Boeing, was not for Block II, and the only other possible F-model sale to the United Kingdom is for extended range versions of the Block I version. It is unclear which countries might actually be interested in Block II aircraft, but the service won't be ready to offer those to foreign customers until after the variant's qualification testing is completed in 2021. The proposed sale “will expand the UAE's helicopter fleet,” per the DSCA announcement. “Further, it will enhance the UAE's operational and defensive capabilities to better defend U.S. and UAE national security interests in the region, and increase the UAE's contributions to any future joint or coalition efforts requiring helicopter support.” In addition to the helicopters themselves, the proposed package would include 26 T55-GA-714A engines; 24 embedded global positioning systems with inertial navigation system; 20 M134D-H mini-guns; and 20 M240H machine guns, as well as various transmitters and other equipment. Up to 10 U.S. government or contractor representatives will be needed in the UAE to help prepare the Chinooks for operations. Primary work will be done at Boeing's Ridley Park, Pennsylvania, facility, Honeywell Engine's Phoenix, Arizona, location, and Science and Engineering Services in Huntsville, Alabama. https://www.defensenews.com/global/mideast-africa/2019/11/08/uae-cleared-for-ch-47f-chinook-buy/

  • Airbus to help determine path forward for Tiger helo upgrade, missile options

    1 octobre 2018 | International, Aérospatial

    Airbus to help determine path forward for Tiger helo upgrade, missile options

    By: Pierre Tran PARIS — A European arms procurement agency has chosen Airbus Helicopters to conduct de-risking studies for the Tiger attack helicopter's upgrade to the MK 3 standard, the company said. “OCCAR (Organisation for Joint Armament Cooperation) has commissioned Airbus Helicopters, on behalf of the French, German and Spanish armament agencies DGA, BAAINBw and DGAM, to perform de-risking studies aimed at providing the Tiger with next-generation battlefield capabilities,” the company said Sept. 27. The studies will help in development and retrofit preparation of avionics and mission and weapon systems for the Tiger, the company said. Electronics specialist Thales and missile-builder MBDA will take part in the studies. “We are proud to be preparing the future of the Tiger as it represents a major program for the European defense cooperation initiative,” said Bruno Even, CEO of Airbus Helicopters. French Armed Forces Minister Florence Parly said she is trying to persuade her German counterpart to opt for the same missile as France for the Tiger, rather than make its own order for the the Rafael Spike missile. The de-risking studies may consider various options, such as Spike, Brimstone and MMP missiles, and will note the changes that might be required, such as fitting an antenna for radio data link to deliver pictures to the cockpit right up to impact, an industry executive said. The French Army is drawing up requirements for a future tactical air-to-surface missile, dubbed MAST-F, which would arm the upgraded Tigers. Rafael has pitched its extended-range Spike ER2 missile to Germany for the Tiger, hoping Berlin will follow the flight path of Spain, which arms its Tiger helicopters with the Israeli weapon. https://www.defensenews.com/air/2018/09/28/airbus-to-help-determine-path-forward-for-tiger-helo-upgrade-missile-options

  • Boom Supersonic and Northrop Grumman team up to build superfast US military aircraft

    21 juillet 2022 | International, Aérospatial

    Boom Supersonic and Northrop Grumman team up to build superfast US military aircraft

    Boom Supersonic and Northrop Grumman plan to deliver variants of Boom's Overture aircraft for military and emergency response missions.

Toutes les nouvelles