- The Strategist - https://www.aspistrategist.org.au -
ASPI’s decades: Cybersecurity
Posted By Graeme Dobell on September 20, 2021 @ 06:00
The real cybersecurity threat is not from a single weapon of mass destruction but from the persistent and pernicious combination of online crime and espionage that is undermining financial systems, compromising the identity of individuals and stealing important intellectual property rights from corporations and governments. The classic deterrence theory of holding at risk the things that an adversary values fails in the cyber world because would-be attackers operate with an assumed level of deniability that changes their risk calculus.
[T]here’s an important blurring between espionage and attack in cyberspace that doesn’t exist in the physical space. The same intrusion method that’s used to extract information from a network can also be exploited to conduct an attack to disrupt that network. This is a critically important distinction that policymakers must be aware of and account for. While every cyberintrusion can’t be labelled as an ‘attack’ per se, it’s critically important to assess whether or not an intrusion has exploited a vulnerability that could also be used to disrupt or destroy networks.
There are two such debates: one at an often very highly classified government level, and one that encompasses a wider group in civil society but is often limited to those with deep specialist knowledge about information technology and security. There’s a need for a broader dialogue among people interested in many aspects of the impact of cyber issues on public policymaking.
These efforts will be at the national and international levels and look to enhance the cybersecurity of Australia and the region. There’s currently no centre in Australia or Asia that provides a focused research and strategic outreach program on the national and international development of the ‘rules of the road’ and confidence building measures for the cyberdomain.
One of the ASPI International Cyber Policy Centre’s core principles will be to ensure that both private sector and public sector voices are heard and considered. The internet is mainly in the hands of the private sector and civil society, so their opinions are essential if we’re to build lasting cyber norms that don’t constrain innovation and commerce, and that make cyberspace a secure place.
[R]esources must be pooled and expertise and information shared. In the online world, Australia faces a strategic picture filled with foes constantly rewriting the rule book as to what can be achieved though disruption and disinformation online. But governments are not the exclusive targets. States looking to gain a competitive economic advantage are targeting the private sectors of other nations in pursuit of the nugget of information or intellectual property that will guarantee a domestic payday.
Article printed from The Strategist: https://www.aspistrategist.org.au
URL to article: https://www.aspistrategist.org.au/aspis-decades-cybersecurity/
[1] “time” and “space”: https://www.themediumisthemassage.com/the-book/
[2] threats and responses: https://s3-ap-southeast-2.amazonaws.com/ad-aspi/import/SR26_Cyber-security.pdf?VersionId=sXW3Sf9DSfWb7Plm6Ukhjo4M0dVrpDv1
[3] after the event: https://s3-ap-southeast-2.amazonaws.com/ad-aspi/import/Policy_Analysis80_Cyber_security.pdf?VersionId=AGvNXt84ACkj3YvVMkW0_BqrV25r2H4.
[4] extended into cyberspace: https://2009-2017.state.gov/r/pa/prs/ps/2011/09/172490.htm
[5] classic deterrence: https://s3-ap-southeast-2.amazonaws.com/ad-aspi/import/Policy_Analysis94_National_Security_Note4.pdf?VersionId=q42VCqmiN.fb_rSSErITVli68eFXvR2r
[6] cyberattack: https://s3-ap-southeast-2.amazonaws.com/ad-aspi/import/SR46_cybersecurity_v2.pdf?VersionId=mGKhH3DYOyXo0InbmaWuBuj7bCfZ_pL_
[7] International Cyber Policy Centre: https://www.aspi.org.au/program/international-cyber-policy-centre
[8] a wider remit: https://www.aspi.org.au/video/launch-aspi-international-cyber-policy-centre
[9] pressing need: https://s3-ap-southeast-2.amazonaws.com/ad-aspi/import/SR51_agenda_cybersecurity.pdf?VersionId=iM9f3lwsLwUiNR0mhk46eFXX3Moa4XBT
[10] Cyber Security Dialogue: https://pmtranscripts.pmc.gov.au/release/transcript-40165
[11] first dialogue: https://s3-ap-southeast-2.amazonaws.com/ad-aspi/import/SR101_Australia_US_dialogue.pdf?VersionId=rpxz0ToeGXw5jQ7VFC1MKxXKljy3F7Wk
[12] two allies realised: https://pmtranscripts.pmc.gov.au/release/transcript-40466
[13] cyber affairs: https://www.dfat.gov.au/about-us/our-people/homs/ambassador-for-cyber-affairs
[14] An informed and independent voice: ASPI, 2001–2021: https://www.aspi.org.au/report/informed-and-independent-voice-aspi-2001-2021