DOCSLIB.ORG

Mann Note Final Draft Review

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Mann Note Final Draft Review J. INT’L L. & POL. ONLINE FORUM LEGAL CHALLENGES IN THE REALM OF CYBER WARFARE SHARONA MANN* Cyberspace is a new dominion that has emerged over the years with the advent of information technology to join the ranks of land, sea, air, and outer space as the fifth domain of warfare. War in this realm poses a threat to all nations of the world, as the remarkable increase in the number of Internet users has opened avenues for malicious entities to launch unprecedented forms of attacks with effects that reverberate around the globe. Cyber warfare has posed many legal challenges that range from the application of the existing international law of armed conflict to regulating the use of advanced cyber weapons in order to prevent incidental loss of life during cyberattacks. This note seeks to analyze five major legal obstacles in the realm of cyber warfare, which highlight the urgency for providing a binding legal framework to cover such attacks and provide mechanisms to counter them. International cooperation also plays a pivotal role in facilitating collective efforts that can prevent the risk of collateral damage during cyber warfare. I. INTRODUCTION The world has embraced cyberspace as the new battlefield of war in the twenty-first century, wherein countries use sophisticated software technologies against their foes rather than conventional weapons such as missiles or tanks. The term “cyberspace” was originally coined for a novel written by William Gibson in 1982,1 but its meaning has since expanded, such that cyberspace is now defined as “[a] global domain within the information environment consisting of the interdependent network of information technology infrastructures and resident data, including the Internet, telecommunication networks, computer systems, and embedded processors and controllers.”2 In turn, cyber warfare has emerged as a formidable threat to international peace and security because of the increasing dependence of * Sharona Mann is a law student at Amity Law School, Guru Gobind Singh Indraprastha University. Ms. Mann fosters a zeal for the intricacies of international humanitarian law. Her essay entitled Trafficking of Falsified Medicines secured second place in the 2018 Surana & Surana International Essay Competition, and her article entitled Burgeoning Realities of Corporate Social Responsibility in Achieving Global Sustainability is currently in the process of publication. She would like to extend her gratitude to her parents and Ms. Genivika Mann for their support. She would also like to appreciate Ms. Heather McAdams, Mr. Cole Rabinowitz, Mr. Jackson R. Gandour, and the entire Editorial Board of the N.Y.U. Journal of International Law & Politics for their insights and meticulous review of this note. 1 Thomas Jones, William Gibson: Beyond Cyberspace, GUARDIAN (Sept. 22, 2011), https://www.theguardian.com/books/2011/sep/22/william-gibson-beyond-cyberspace. 2 U.S. JOINT CHIEFS OF STAFF, JOINT PUBL’N 1-02, DEPARTMENT OF DEFENSE DICTIONARY OF MILITARY AND ASSOCIATED TERMS 58 (amended ed. 2016). 9 J. INT’L L. & POL. ONLINE FORUM states on computer networks that support critical infrastructure such as power grids, telecommunication networks, hospital systems, and banking systems. Such dependence increases the likelihood of attacks by “advanced persistent threats” (APTs), i.e., targeted threats undertaken to achieve a specific objective.3 These APTs can attack the infrastructure of a state, which can cause widespread devastation and give rise to a definite threat to the national security of the targeted state. Moreover, various humanitarian concerns arise when the effects of cyber operations are felt by the public at large. For instance, a cyberattack on the nuclear facility of a country could result in irrevocable damage, ranging from “widespread loss of power” to “uncontrolled release of ionizing radiation.”4 While cyber warfare has far-reaching ramifications, at the same time, many countries regard it as their preferred mode of warfare. The availability of software to conduct cyber operations and the cost of hiring proxies to carry out attacks against the enemy country demonstrate the cost-effectiveness of employing cyber warfare to accomplish substantial wartime objectives.5 Countries would certainly prefer this approach due to the involvement of fewer casualties and the reduced financial burden compared to the cost of developing or maintaining conventional weapons for kinetic operations. Furthermore, cyber warfare provides an advantage to weak and underdeveloped states that lack military primacy or are militarily weak, as they can conduct cyber warfare operations against more technologically advanced states that are increasingly dependent on Internet networks.6 In the past, small and underdeveloped countries would refrain from launching kinetic operations against their superior adversary due to a lack of sophisticated military equipment. With the advent of cyber warfare, this is no longer the case. An “inverse proportionality” has emerged “between the level of technological advancement of a state and the degree of vulnerability it has.”7 The critical issue of cyber warfare has also raised a number of legal questions. Chief among these concerns is how law applies to a country’s operations in cyberspace. Cyberspace is often considered akin to the American “Wild West,” an emanating domain in international relations wherein there are no precise rules to “govern the behavior of states”; 3 SYMANTEC, USING SYMANTEC ENDPOINT PROTECTION 12.1 TO PROTECT AGAINST ADVANCED PERSISTENT THREATS (APTS) 4 (2014), https://community.broadcom.com/HigherLogic/System/DownloadDocumentFile.ashx?D ocumentFileKey=f32e6896-b398-4241-89bc-e6be22d53a6a&forceDialog=0. 4 CAROLINE BAYLON ET AL., CHATHAM HOUSE, CYBER SECURITY AT CIVIL NUCLEAR FACILITIES 6 (2015), https://www.chathamhouse.org/sites/files/chathamhouse/field/field_document/20151005 CyberSecurityNuclearBaylonBruntLivingstone.pdf. 5 Id. at 5, 9. 6 KENNETH GEERS, STRATEGIC CYBER SECURITY 10, 98 (2011), https://www.law.upenn.edu/institutes/cerl/conferences/cyberwar/papers/reading/Geers.pd f. 7 Afroditi Papanastasiou, Application of International Law in Cyber Warfare Operations 10 (Sept. 8 2010) (unpublished manuscript) https://ssrn.com/abstract=1673785. 10 J. INT’L L. & POL. ONLINE FORUM further, “[S]uch perceptions of anarchism have bred uncertainty over what is or is not acceptable activity among governments.” 8 International humanitarian law (IHL), which consists of rules that seek to limit the effects of armed conflict for humanitarian concerns, has been applied to cyber warfare in an attempt to fill this gap, but legal gray areas have emerged, as cyber operations often do not rise to the level of armed conflict.9 The first attempt to crystallize laws concerning cyber warfare was when Professor Michael N. Schmitt, at the invitation of NATO Cooperative Cyber Defense Centre of Excellence, led a group of international law experts in writing the Tallinn Manual on International Law Applicable to Cyber Warfare (Tallinn Manual); the Tallinn Manual, published in 2013, consisted of black letter laws to be applied to cyber warfare.10 This was followed by the publication of the second edition of the manual in 2017, the Tallinn Manual 2.0 on International Law Applicable to Cyber Operations (Tallinn Manual 2.0), which was greater in scope and application compared to its first edition, expanding the amount of black letter laws to be applied to cyber warfare to 154 rules.11 Nevertheless, problems still remained. Unlike the abundant legal literature available on cyber warfare, this note will not attempt to apply existing IHL to cyber warfare, nor question its relevance to cyber warfare. Rather, it will provide a critical analysis of five pertinent legal challenges in the realm of cyber warfare. First, this note will aim to provide a distinction between cyber warfare and cybercrime, as the lack of appropriate usages can impact the legal response of states and their ability to launch countermeasures. This part will also draw a parallel between cyber warfare and information warfare, another frequently used term in cyberspace. Second, this note will focus on the difficulties encountered when applying principles of international law to cyber operations. Third, this note will return focus to the five main pertinent legal issues that have surfaced in the realm of cyber warfare. II. CYBER WARFARE AND ALLIED CONCEPTS It is undisputed that technology has become intertwined with everyday life. Almost all individuals regularly engage in a multitude of cyber activities, ranging from online banking to cyber espionage. When studying such activities, the misapplication of related terms can have untoward consequences in the rhetorical debate surrounding cyber operations. For instance, a cyberattack is not the same as cyber warfare, and can only be 8 Levi Maxey, Tallinn Manual 2.0: Stepping Out of the Fog in Cyberspace, INDIAN STRATEGIC STUD. (Mar. 9, 2017), http://strategicstudyindia.blogspot.com/2017/03/tallinn- manual-20-stepping-out-of-fog.html. 9 INT’L COMM. OF THE RED CROSS, CYBERWARFARE AND INTERNATIONAL HUMANITARIAN LAW 1 (2013), https://www.icrc.org/en/doc/assets/files/2013/130621- cyberwarfare-q-and-a-eng.pdf 10 Maxey, supra note 8. 11 Id. 11 J. INT’L L. & POL. ONLINE FORUM called so when it rises to the level of armed attack.12 Therefore, it is imperative to differentiate analogous terms in cyberspace in order to overcome the challenge of ambiguous terms in cyber warfare, and to ensure an appropriate
Load more

Recommended publications
  • A PRACTICAL METHOD of IDENTIFYING CYBERATTACKS February 2018 INDEX
    In Collaboration With A PRACTICAL METHOD OF IDENTIFYING CYBERATTACKS February 2018 INDEX TOPICS EXECUTIVE SUMMARY 4 OVERVIEW 5 THE RESPONSES TO A GROWING THREAT 7 DIFFERENT TYPES OF PERPETRATORS 10 THE SCOURGE OF CYBERCRIME 11 THE EVOLUTION OF CYBERWARFARE 12 CYBERACTIVISM: ACTIVE AS EVER 13 THE ATTRIBUTION PROBLEM 14 TRACKING THE ORIGINS OF CYBERATTACKS 17 CONCLUSION 20 APPENDIX: TIMELINE OF CYBERSECURITY 21 INCIDENTS 2 A Practical Method of Identifying Cyberattacks EXECUTIVE OVERVIEW SUMMARY The frequency and scope of cyberattacks Cyberattacks carried out by a range of entities are continue to grow, and yet despite the seriousness a growing threat to the security of governments of the problem, it remains extremely difficult to and their citizens. There are three main sources differentiate between the various sources of an of attacks; activists, criminals and governments, attack. This paper aims to shed light on the main and - based on the evidence - it is sometimes types of cyberattacks and provides examples hard to differentiate them. Indeed, they may of each. In particular, a high level framework sometimes work together when their interests for investigation is presented, aimed at helping are aligned. The increasing frequency and severity analysts in gaining a better understanding of the of the attacks makes it more important than ever origins of threats, the motive of the attacker, the to understand the source. Knowing who planned technical origin of the attack, the information an attack might make it easier to capture the contained in the coding of the malware and culprits or frame an appropriate response. the attacker’s modus operandi.
    [Show full text]
  • Information Assurance Situation in Switzerland and Internationally
    Federal Strategy Unit for IT FSUIT Federal Intelligence Service FIS Reporting and Analysis Centre for Information Assurance MELANI www.melani.admin.ch Information Assurance Situation in Switzerland and Internationally Semi-annual report 2009/II (July – December) MELANI – Semi-annual report 2009/II Information Assurance – Situation in Switzerland and Internationally Contents 1 Focus Areas of Issue 2009/II .........................................................................................3 2 Introduction.....................................................................................................................4 3 Current National ICT Infrastructure Situation ..............................................................5 33.1.1 FDFA targeted by malware.................................................................................5 33.2.2 Website defacements after adoption of minaret ban initiative ............................5 33.3.3 DDoS attacks against Swisscom and Swisscom clients ....................................6 33.4.4 Fraud with fake domain registrations..................................................................7 33.5.5 Purported free offers against viruses, scareware, rogueware and ransomware 8 33.6.6 New top level domains (TLD) and high security zones in the Internet .............10 33.7.7 Revision of provisions implementing the Telecommunications Act ..................10 33.8.8 Skype wiretap published as source code .........................................................11 4 Current International ICT
    [Show full text]
  • North Dakota Homeland Security Anti-Terrorism Summary
    UNCLASSIFIED NORTH DAKOTA HOMELAND SECURITY ANTI-TERRORISM SUMMARY The North Dakota Open Source Anti-Terrorism Summary is a product of the North Dakota State and Local Intelligence Center (NDSLIC). It provides open source news articles and information on terrorism, crime, and potential destructive or damaging acts of nature or unintentional acts. Articles are placed in the Anti-Terrorism Summary to provide situational awareness for local law enforcement, first responders, government officials, and private/public infrastructure owners. UNCLASSIFIED UNCLASSIFIED NDSLIC Disclaimer The Anti-Terrorism Summary is a non-commercial publication intended to educate and inform. Further reproduction or redistribution is subject to original copyright restrictions. NDSLIC provides no warranty of ownership of the copyright, or accuracy with respect to the original source material. QUICK LINKS North Dakota Energy Regional Food and Agriculture National Government Sector (including Schools and Universities) International Information Technology and Banking and Finance Industry Telecommunications Chemical and Hazardous Materials National Monuments and Icons Sector Postal and Shipping Commercial Facilities Public Health Communications Sector Transportation Critical Manufacturing Water and Dams Defense Industrial Base Sector North Dakota Homeland Security Emergency Services Contacts UNCLASSIFIED UNCLASSIFIED North Dakota Three wildfires scorch parts of western North Dakota. While North Dakota has, for the most part, escaped the large-scale wildfires garnering national headlines and burning the landscapes of neighboring South Dakota and Montana, three fires have caused havoc in the western part of the State. The Bureau of Indian Affairs reported September 21 that the Little Swallow fire had grown to consume 6,000 acres and was just 40 percent contained. Northwest of Dickinson, visitors to Bennett Campground on the Dakota Prairie Grasslands were evacuated after the Trail Side fire broke out.
    [Show full text]
  • Cyber Warfare: Implications for Non-International Armed Conflicts
    Cyber Warfare: Implications for Non-international Armed Conflicts Robin Geiss 89 INT’L L. STUD. 627(2013) Volume 89 2013 Cyber Warfare and Non-international Armed Conflicts Vol. 89 Cyber Warfare: Implications for Non-international Armed Conflicts Robin Geiss* I. INTRODUCTION C yberspace is considered by many to be a new warfighting domain.1 Le- gal discussions concerning warfare in this domain have primarily focused on the level of the ius ad bellum2 and international armed conflicts.3 With the exception of action on cybercrime, especially the 2001 European Conven- tion on Cybercrime and tentative attempts to design a similar instrument * Professor at the Faculty of Law, University of Potsdam, Potsdam, Germany. 1. U.S. DEPARTMENT OF DEFENSE, QUADRENNIAL DEFENSE REVIEW REPORT 37 (2010) [hereinafter QUADRENNIAL DEFENSE REVIEW REPORT]. 2. Matthew C. Waxman, Cyber-Attacks and the Use of Force: Back to the Future of Article 2(4), 36 YALE JOURNAL OF INTERNATIONAL LAW 421 (2011); HEATHER H. DINNISS, CYBER WARFARE AND THE LAWS OF WAR 37 (2012); Duncan B. Hollis, An e-SOS for Cy- berspace, 52 HARVARD INTERNATIONAL LAW JOURNAL 373 (2011); Marco Roscini, World Wide Warfare: Jus ad Bellum and the Use of Cyber Force, 14 MAX PLANCK UNITED NATIONS YEARBOOK 85 (2010). 3. Michael N. Schmitt, Wired Warfare: Computer Network Attack and Jus in Bello, 84 IN- TERNATIONAL REVIEW OF THE RED CROSS 365 (2002); Sean Watts, Combatant Status and Computer Network Attack, 50 VIRGINIA JOURNAL OF INTERNATIONAL LAW 392 (2010). 627 International Law Studies 2013 on the global level,4 the focus of contemporary discussions has primarily been on inter-State issues and State-sponsored cyber operations.
    [Show full text]
  • Cyber Conflicts in International Relations: Framework and Case Studies
    Cyber Conflicts in International Relations: Framework and Case Studies Alexander Gamero-Garrido Engineering Systems Division Massachusetts Institute of Technology [email protected] | [email protected] Executive Summary Overview Although cyber conflict is no longer considered particularly unusual, significant uncertainties remain about the nature, scale, scope and other critical features of it. This study addresses a subset of these issues by developing an internally consistent framework and applying it to a series of 17 case studies. We present each case in terms of (a) its socio-political context, (b) technical features, (c) the outcome and inferences drawn in the sources examined. The profile of each case includes the actors, their actions, tools they used and power relationships, and the outcomes with inferences or observations. Our findings include: • Cyberspace has brought in a number of new players – activists, shady government contractors – to international conflict, and traditional actors (notably states) have increasingly recognized the importance of the domain. • The involvement of the private sector on cybersecurity (“cyber defense”) has been critical: 16 out of the 17 cases studied involved the private sector either in attack or defense. • All of the major international cyber conflicts presented here have been related to an ongoing conflict (“attack” or “war”) in the physical domain. • Rich industrialized countries with a highly developed ICT infrastructure are at a higher risk concerning cyber attacks. • Distributed Denial of Service (DDoS) is by far the most common type of cyber attack. • Air-gapped (not connected to the public Internet) networks have not been exempt from attacks. • A perpetrator does not need highly specialized technical knowledge to intrude computer networks.
    [Show full text]
  • “Reducing Systemic Cybersecurity Risk”
    IFP/WKP/FGS(2011)3 MULTI-DISCIPLINARY ISSUES INTERNATIONAL FUTURES PROGRAMME OECD/IFP Project on “Future Global Shocks” “Reducing Systemic Cybersecurity Risk” Peter Sommer, Information Systems and Innovation Group, London School of Economics Ian Brown, Oxford Internet Institute, Oxford University Contact persons: Pierre-Alain Schieb: +33 (0)1 45 24 82 70, [email protected] Anita Gibson: +33 (0)1 45 24 96 27, [email protected] 14th January 2011 This report was written by Peter Sommer and Ian Brown as a contribution to the OECD project ―Future Global Shocks‖. The opinions expressed and arguments employed herein are those of the authors, and do not necessarily reflect the official views of the OECD or of the governments of its member countries. TABLE OF CONTENTS EXECUTIVE SUMMARY ............................................................................................... 6 SYSTEMIC CYBER SECURITY RISK .......................................................................... 9 SYSTEMIC CYBER SECURITY RISK ........................................................................ 10 DESCRIPTION AND HISTORICAL CONTEXT ......................................................... 15 Early days of business and government computing ..................................................... 15 1970s and 1980s: changing patterns of risk ................................................................. 15 Routes to democratisation ............................................................................................ 16 The emergence
    [Show full text]
  • “Reducing Systemic Cybersecurity Risk”
    IFP/WKP/FGS(2011)3 MULTI-DISCIPLINARY ISSUES INTERNATIONAL FUTURES PROGRAMME OECD/IFP Project on “Future Global Shocks” “Reducing Systemic Cybersecurity Risk” Peter Sommer, Information Systems and Innovation Group, London School of Economics Ian Brown, Oxford Internet Institute, Oxford University This report was written by Peter Sommer and Ian Brown as a contribution to the OECD project ―Future Global Shocks‖. The opinions expressed and arguments employed herein are those of the authors, and do not necessarily reflect the official views of the OECD or of the governments of its member countries. Contact persons: Pierre-Alain Schieb: +33 (0)1 45 24 82 70, [email protected] Anita Gibson: +33 (0)1 45 24 96 27, [email protected] 14th January 2011 TABLE OF CONTENTS EXECUTIVE SUMMARY ............................................................................................... 5 SYSTEMIC CYBER SECURITY RISK .......................................................................... 9 DESCRIPTION AND HISTORICAL CONTEXT ......................................................... 15 Early days of business and government computing ..................................................... 15 1970s and 1980s: changing patterns of risk ................................................................. 15 Routes to democratisation ............................................................................................ 16 The emergence of the Internet ...................................................................................... 17
    [Show full text]
  • Cisco 2009 Midyear Security Report
    Cisco 2009 Midyear Security Report An update on global security threats and trends 1 Introduction 4 Online Security Risks 16 Vulnerabilities Cause for Concern: Technical Innovation and Trends The Weak Links in Social Networking of Online Criminals Malware: Conficker Combines Old Mac OS: Online Criminals Move Beyond Windows Cause for Concern: Criminal Sophistication and New Threats Cloud Computing: Protecting Data in the Cloud and Collaboration Prolific Spammers Caught and Indicted Productivity Applications: Targets of Cause for Optimism: Organizations Collaborate “Spamdexing”: SEO for Online Criminals Zero-Day Exploits to Shut Down Online Threats Financial Information Targeted by Top Alerts: January–June 2009 DNS Poisoning Web 2.0 Security: Filtering Dangerous Content Recent Social Engineering Spam Campaign: Swine Flu Conversations with a Botmaster 20 Data Loss and Compliance Botnets: The Rise — and Fall — of Data Loss Srizbi/Reactor Mailer Identity Theft The Takedown of Srizbi/Reactor Mailer Data Breaches Waledac: Storm 2.0 Insiders Battling the Botnets Web 2.0 Collaboration Quandaries and Mobile Device Threats: Text Message Scams Mobile Device Dilemmas U.S. Government: A New Administration, Compliance a New Focus on Cybersecurity HIPAA Gets HITECH The President’s Smart Phone “Addiction” New “Red Flags” Rules Technology: An Engine of U.S. Growth for the Securing Data Next “New Economy” Policies Geopolitical: Twitter Users Are Broadcasting the Revolution Economic Instability and Online Security 25 Conclusion and Recommendations Conclusion Security Community Making Strides Trends to Watch Spam to Return to Record High Levels More Attacks on Legitimate Websites Social Networking Attacks to Continue Recommendations Cisco Security Intelligence Operations All contents are Copyright © 2009 Cisco Systems, Inc.
    [Show full text]
  • An E-SOS for Cyberspace
    \\jciprod01\productn\H\HLI\52-2\HLI202.txt unknown Seq: 1 7-JUN-11 9:37 Volume 52, Number 2, Summer 2011 An e-SOS for Cyberspace Duncan B. Hollis Table of Contents Introduction .............................................. 374 R I. Defining the Problem: Cyberthreats & Their Origins ............................................. 379 R A. Direct & Indirect Effects: What Can Cyberthreats Do? ... 380 R B. How do Cyberthreats Arise?.......................... 383 R C. Who Creates Cyberthreats and Why? .................. 387 R II. The Inadequacy of Existing Legal Responses ...... 391 R A. The Existing Rules on Cybercrime and Cyberwar and their Attribution Assumptions ............................. 391 R B. The Attribution Problem ............................. 397 R 1. Architectural Anonymity in Cyberspace ............. 397 R 2. Difficulties with Using Presumptions for Attribution .................................... 400 R 3. And Vested Interests Will Keep It This Way ........ 401 R C. The Consequences of the Attribution Problem ............ 404 R 1. The Existing Laws are Insufficient ................ 404 R 2. The Existing Laws are Dangerous ................. 405 R 3. Alternative Legal Responses to Cyberthreats ......... 406 R III. A Duty to Assist Victims of Cyberthreats ......... 408 R A. The SOS and the DTA at Sea ........................ 409 R B. A Sea of Cyberthreats: Similarities to the Ocean Environment ....................................... 412 R C. Other DTAs as Examples for Cyberspace ................ 414 R D. Why Should States Agree to an e-SOS? ................ 417 R E. What Would an e-SOS Look Like?.................... 418 R 1. Which Cyberthreats? ............................ 418 R 2. Who Can Call for Assistance? ................... 421 R 3. How to Call for Help ........................... 422 R 4. Who Must Assist? ............................. 422 R 5. What Assistance Gets Rendered? .................. 424 R F. How to Develop a DTA for Cyberspace ................
    [Show full text]
  • 2001-2013: Survey and Analysis of Major Cyberattacks Arxiv
    2001-2013: Survey and Analysis of Major Cyberattacks Tavish Vaidya Georgetown University Abstract Widespread and extensive use of computers and their interconnections in almost all sectors like communications, finance, transportation, military, governance, education, energy etc., they have become attractive targets for adversaries to spy, disrupt or steal information by presses of keystrokes from any part of the world. This paper presents a survey of major cyberattacks from 2001 to 2013 and analyzes these attacks to understand the motivation, targets and technique(s) employed by the attackers. Observed trends in cyberattacks have also been discussed in the paper. 1 Introduction Cyberattacks are computer-to-computer attacks undermining the confidentiality, integrity, and/or availability of computers and/or the information they hold[1]. Computer networks have no geo- graphical borders that need to be crossed for an attacker to steal information. This grants freedom to any attacker to pick his target anywhere in the world and carry out a cyberattack. Therefore, se- curing computer systems is as important as securing physical entities from being attacked. In terms arXiv:1507.06673v2 [cs.CY] 1 Sep 2015 of money, Ponemon Institute[2] estimated the average cost of cyberattacks to be $11.6 million per organization for 2013, which was 26 percent more than 2012. Cyberattacks have not only caused losses in billions of dollars[3], but also had psychological impact on human psyche. As an example, in August 2004, fear of cyberattacks during Olympic games in Greece kept people from attending the Olympic events[4]. With Internet of Things1 al- ready here, securing computer networks and end devices becomes a paramount concern to prevent cyberattacks from disrupting and hijacking them for malicious purposes.
    [Show full text]
  • Global Research Trend on Cyber Security: a Scientometric Analysis
    University of Nebraska - Lincoln DigitalCommons@University of Nebraska - Lincoln Library Philosophy and Practice (e-journal) Libraries at University of Nebraska-Lincoln Winter 11-2019 Global Research Trend on Cyber Security: A Scientometric Analysis Somesh Rai Department of Library and Information Science, Banaras Hindu University, [email protected] Kunwar Singh Dr Department of Library and Information Science, Banaras Hindu University, [email protected] Akhilesh Kumar Varma Department of Library and Information Science, Banaras Hindu University Follow this and additional works at: https://digitalcommons.unl.edu/libphilprac Part of the Computer Engineering Commons, Computer Sciences Commons, and the Library and Information Science Commons Rai, Somesh; Singh, Kunwar Dr; and Varma, Akhilesh Kumar, "Global Research Trend on Cyber Security: A Scientometric Analysis" (2019). Library Philosophy and Practice (e-journal). 3769. https://digitalcommons.unl.edu/libphilprac/3769 Global Research Trend on Cyber Security: A Scientometric Analysis Somesh Rai1, Dr. K. Singh2 & A. K. Varma3 ABSTRACT Scientometrics is a quantitative analysis of scholarly literature related to a particular subject or area (well defined by some limits, scope and coverage), which helps to understand different aspects about the scholarly literature’s growth in various dimensions of knowledge. Similarly, this study is a quantitative analysis of the Global research trends in cyber security. Some works related to scientometrics of ‘deception, counter-deception in cyberspace’ had been published in 2011, but we have focused on ‘cyber security’ as the topic of research. For analysis we have utilised the published data available in Scopus database, which is directly related to ‘cyber security’. The data of 2720 documents published on ‘cyber security’ for the period of 2001-2018, have been retrieved from the Scopus database.
    [Show full text]
  • Cybersecurity of Civil Nuclear Facilities: Assessing the Threat
    Cybersecurity of Civil Nuclear Facilities: Assessing the Threat, Mapping the Path Forward Appendices to the Policy Memo Prepared by PIR Center in collaboration with the Centre russe d’etudes politiques, Genève within the Workstream on Cybersecurity of Nuclear Installations of the Nuclear Security Global Agenda Council, World Economic Forum June 2016 Moscow - Geneva List of Appendices: 1. CNF sector basic security ecosystem 2. Regulatory approaches towards CNF cybersecurity: USA and Russia cases 3. Governmental and academia initiatives on CNF cybersecurity 4. IAEA Technical guidelines and recommendations on CNF cybersecurity 5. OSCE Classification for cybersecurity incidents at non-nuclear CI objects 6. Basic reference model for CNS cybersecurity incidents 7. Reported cybersecurity incidents at CNF since 1990 8. Selected CNF cybersecurity incidents: a case-based analysis 1 2 Appendix 1. CNF sector basic security ecosystem ICS Safety CNF Cybersecurity Physical (nuclear) security Information security CNF ICS Cybersecurity 3 Appendix 2. Regulatory approaches towards CNF cybersecurity: USA and Russia cases A) Russia In Russia, the Federal Service for Technical and Export Control (FSTEC) historically has been in charge of information protection. The service issued requirements for state secrets and confidential data processed in information and automated systems. First sets of such non- classified requirements issued from 1992 did not pay and specific attention to protection of information related to CNF. Confidentiality was regarded a top priority among the C.I.A. triad. The change took place gradually in 2000s when the nuclear industry corporations, including Rosatom and its subsidiaries started to adapt FSTEC requirements as a basis for their internal documents. In 2006, the Model Guidelines for protection of information in automated systems of business entities and organizations were adopted.
    [Show full text]