Retour aux nouvelles

22 janvier 2020 | International, C4ISR, Sécurité

What new documents reveal about Cyber Command’s biggest operation

Mark Pomerleau

New documents provide insight into the growing pains U.S. Cyber Command faced in building a force while simultaneously conducting operations.

The documents, which were released as part of a Freedom of Information Act request from the National Security Archive at George Washington University and later shared with journalists, are a series of internal briefings and lessons from the Defense Department's most complex cyber operation at the time, Operation Glowing Symphony.

That operation was part of the larger counter-ISIS operations — Joint Task Force-Ares — but specifically targeted ISIS's media and online operations, taking out infrastructure and preventing ISIS members from communicating and posting propaganda.

While Cyber Command described the operation, which took place in November of 2016, as a victory in the sense that it “successfully contested [ISIS] in the information domain,” the documents demonstrate the extent to which the command was still learning how to conduct operations and the exact steps to follow.

“Process maturation is something they pull out a lot. Obviously, as CYBERCOM was standing up, it was pulling together plans for how they were going to operate. They actually hadn't operated that much,” Michael Martelle, cyber vault fellow at the National Security Archive, told reporters. “A lot of these frameworks were formed in theory. Now they go to try them out in practice.”

Cyber Command leaders have stressed in public remarks for years that the command was building its force while operating. But the extent of those operations has been limited. Officials in recent years have explained that the command didn't undertake many offensive operations. One official said last year he could count on less than two fingers the number of operations, Cyber Command conducted in the last decade or so. One member of Congress said DoD didn't conduct an offensive cyber operation in five years.

But when they were in action, in this case with Operation Glowing Symphony, Martelle said the documents show cyber leaders did not anticipate the amount of data they would access.

“They actually weren't prepared for the amount of data they were pulling off of ISIS servers ... CYBERCOM was not set up for an operation of this magnitude from day one,” he said. “They had to learn on the fly, they had to acquire on the fly, they had to grow on the fly.”

The documents note that Cyber Command's capability development group, is “developing USCYBERCOM data storage solutions.”

The capabilities develop group, now known as the J9, serves as the advanced concepts and technology directorate and worked to plan and synchronizing cyber capability development and developed capabilities to meet urgent operational needs.

Experts had noted that in the past the CDG/J9 had been stressed in recent years by a limited staff and burdened by developing tools for operational needs, namely Joint Task Force-Ares.

Another example of potential growing pains the documents point to was the fact that updates to operations checklists were not made available readily to the team.

Finally, the documents note that authorities and processes the command was operating under that the time were restrictive in some cases.

“Absent of significant policy changes from [the office of the secretary of defense], USCYBERCOM is limited in its ability to challenge ISIS [redacted]. As a result, USCYBERCOM has [redacted] to achieve our objectives,” the executive summary of a 120-day assessment of Operation Glowing Symphony says.

Those authorities and processes have been streamlined by the executive branch and Congress in recent years.

Commanders now follow a process that defaults toward action, Maj. Gen. Dennis Crall, deputy principal cyber adviser and senior military adviser for cyber policy, said during an event Jan. 9. He explained the updated process provides continuity, tempo, pace and timing.

Ultimately, Martelle noted that the real importance behind Operation Glowing Symphony is that Cyber Command used the experience from those events and Joint Task Force-Ares more broadly as a template for future operations.

Cyber Command's top official, Gen. Paul Nakasone, who was also led Joint Task Force-Ares, has noted that the task force laid the foundation for the Russia Small Group, which was created to combat election interference in the 2018 midterms.

“This concept of a task force lives on. A lot of that thinking came from what we were doing in 2016,” he told NPR.

That task force has now evolved to be more all encompassing covering election threats more broadly.

https://www.fifthdomain.com/dod/cybercom/2020/01/21/what-new-documents-reveal-about-cyber-commands-biggest-operation/

Sur le même sujet

  • Threat Prevention & Detection in SaaS Environments - 101

    16 juillet 2024 | International, C4ISR, Sécurité

    Threat Prevention & Detection in SaaS Environments - 101

    Learn about the growing identity-based threats in SaaS applications and how to mitigate them with ITDR and robust identity security measures

  • Army Halts Apache Helicopter Deliveries

    19 octobre 2020 | International, Aérospatial, Naval

    Army Halts Apache Helicopter Deliveries

    For the second time in two years, the Army had to stop accepting Boeing's attack helicopter. The exact reason remains unknown. Marcus Weisgerber The U.S. Army has stopped accepting Apache helicopters from Boeing after the company found that an employee kept “improper” records concerning parts installed on the aircraft. It's the latest quality-control issue to bedevil America's largest planemaker, which is trying to shift its company's culture and repair its public image after two deadly airliner crashes and a production line that left tools and trash inside new tanker aircraft. “At this time the Army is still conducting a comprehensive review of a number of Boeing processes, production, and manufacturing plans for critical safety items applicable to all AH-64E aircraft production,” Lt. Col. Brandon Kelley, an Army spokesman, said in an emailed statement. When it learned of “improper record keeping” at its AH-64 Apache factor in Mesa, Arizona, Boeing “immediately notified the Army,” Steve Parker, vice president and general manager of Boeing Vertical Lift, said in a statement provided by a company spokesman. “Boeing and the government are jointly reviewing our Mesa quality management processes and procedures,” Parker said. “Flight operations and deliveries will resume when Boeing and the Army are satisfied this issue has been resolved and appropriate corrective action plans have been implemented.” Boeing no longer employs the worker who kept the improper records, according to a person with knowledge of the issue. Boeing's Mesa operation builds new Apaches and overhauls old ones with more modern equipment — a process known as remanufacturing. The company continues to build aircraft amid the delivery stoppage, an industry source said. “The Army will begin acceptance of aircraft once conditions have been satisfied to ensure production processes meet standards for safety and quality and the potential for future quality escapes has been fully mitigated,” Kelley said. “The Army will continue to work with Boeing in reviewing their quality processes and manufacturing of critical safety items and recommend changes as necessary to prevent future delivery of non-conforming product.” Kelley said that soldiers' lives were not put at risk by the issues. It's not the first time the Army has suspended Apache deliveries. From March to August 2018, the service halted acceptances after finding a flaw in a part that holds the helicopter's rotors to the aircraft. Boeing quality-control practices have been called into question by both the commercial industry and the military. The Federal Aviation Administration is investigating potential manufacturing issues on 787 Dreamliner aircraft. The U.S. Air Force had to halt deliveries of KC-46 tankers on numerous occasions after military inspectors found trash, parts, and tools left inside the aircraft. In March 2019, Will Roper, the head of Air Force acquisition, blamed the company's assembly line culture for the issues. The coronavirus pandemic has only made things worse for Boeing and its suppliers as air travel evaporates and airlines cancel plane orders. Earlier this year, executives said the company's $34 billion defense business would outperform its typically lucrative commercial business for the first time in more than a decade. Coronavirus-related factory shutdowns and production slowdowns started taking a toll on Boeing's defense business in the spring. Boeing delivered 54 fewer military aircraft and satellites so far this year when to the first three quarters of 2019, a 31 percent decline, according to company data. This year, Boeing has delivered 10 KC-46 tankers, less than half of the 21 delivered through the third quarter of 2019. https://www.defenseone.com/business/2020/10/army-halts-apache-deliveries-after-boeing-finds-improper-record-keeping-helicopter-factory/169332/

  • US to send Ukraine air defense missiles in next aid package-officials

    30 juin 2024 | International, Terrestre

    US to send Ukraine air defense missiles in next aid package-officials

Toutes les nouvelles