convore.json/groups/socal-martial-law-alerts/with-stuxnet-did-the-us-and-israel-create-a-new-cyberwar-era/messages.json

[{"user_id": 11626, "stars": [], "topic_id": 6764, "date_created": 1297922110.423609, "message": "Remember the years-long controversy about whether the U.S. or the Israel would bomb Iran\u2019s nuclear program? It appears they just did \u2014 virtually. And if they did, they also may have expanded our sense of how nations wage war in cyberspace.\r\n\r\nFor all the hype, \u201ccyberwar\u201d has been a bush-league affair so far. Websites get defaced or taken offline, or an adversary\u2019s software gets logic-bombed into a malfunctioning mess. Analysts warn that future assaults could fry an electrical grid (if it\u2019s networked too well) or cause a military to lose contact with a piece of its remotely-controlled hardware. But that\u2019s about the extent of the damage. Only the Stuxnet worm may point to a huge innovation for cyberwar: the mass disablement of an enemy\u2019s most important strategic programs.\r\n\r\nStuxnet\u2019s origin is unknown. Attributing credit for Stuxnet is rightly the subject of geopolitical intrigue. As our sister blog Threat Level has exhaustively reported, the worm eats away at a very specific kind of industrial control system: a configuration of the Siemens-manufactured Supervisory Control and Data Acquisition (SCADA) system that commands the centrifuges enriching uranium for Iran\u2019s nuclear program, the key step for an Iranian bomb. But the Stuxnet whodunit may be solved: it appears to be a joint U.S.-Israeli collaboration \u2014 and a cyberwarfare milestone.\r\n\r\nThe New York Times doesn\u2019t have definitive proof, but it has fascinating circumstantial evidence, and Threat Level\u2019s Kim Zetter will publish more on Tuesday. In 2008, Siemens informed a major Energy Department laboratory of the weaknesses in its SCADA systems. Around that time, the heart of Israel\u2019s nuclear-weapons complex, Dimona, began experimenting on an industrial-sabotage protocol based on a model of the Iranian enrichment program. The Obama administration embraced an initiative begun by the Bush administration to \u201cbore into [Iranian] computers\u201d and disable the nuclear effort. Motive, meet opportunity. By late 2009, Stuxnet was popping up globally, including in Iran.\r\n\r\nIran denies that Stuxnet did any major damage to its nuclear program. But last week, the outgoing chief of Israel\u2019s Mossad spy agency publicly asserted that Iran wouldn\u2019t be capable of making a bomb before 2015, adding four years to a fearsome nuclear schedule. It\u2019s possible that\u2019s just ass-covering spin: for years, both Israel and the U.S. have repeatedly pushed back their estimates of when Iran would go nuclear. But both countries also have long track records of covertly sabotaging Iranian nuke efforts, whether it\u2019s getting scientists to defect or\u2026 other means.  (Some scientists are getting killed in the streets by unknown assailants.) Stuxnet would be a new achievement for a long-running mission.\r\n\r\nAnd what an achievement. The early stages of cyberwar have looked like a component effort in a broader campaign, as when Georgia\u2019s government websites mysteriously went offline during its 2008 shooting war with Russia. The Navy\u2019s information chief recently suggested that jamming capabilities will be increasingly important to Chinese military doctrine. The difference between that and Stuxnet is the difference between keying someone\u2019s car and blowing up her city.\r\n\r\nWith Stuxnet, there\u2019s no broader conventional assault, but an adversary\u2019s most important military asset gets compromised.  The mission of an aerial bombardment of Iran would be to set Iran\u2019s nuclear program back; to at least some degree, Stuxnet has done precisely that. Only Stuxnet didn\u2019t kill anyone, and it didn\u2019t set off the destabilizing effect in the region that a bombing campaign was likely to reap.\r\n\r\nIn other words, Stuxnet may represent the so-called \u201chigh end\u201d of cyberwarfare: a stealthy, stand-alone capability to knock an opponent\u2019s Queen off the board before more traditional military hostilities can kick in. It wouldn\u2019t be taking out a particular ship\u2019s radar system or even a command-and-control satellite. All of that could still happen. But this would be the first instance of cyberwarfare aimed at a truly strategic target.\r\n\r\nThat\u2019s not to say we\u2019re there yet, since we don\u2019t really know how many years of a non-nuclear Iran Stuxnet provided. But it is to say that we may be getting there. North Korea\u2019s uranium enrichment efforts have similar industrial control mechanisms, and if Stuxnet couldn\u2019t take them down, a son-of-Stuxnet might. And just consider what kinds of other major cyberwar programs are out there \u2014 the ones really hidden in secrecy, not like the winks-and-nods that U.S. and Israeli officials have given to their possible authorship of Stuxnet.\r\n\r\nAll this has major implications for U.S. military doctrine. There isn\u2019t any for cyberwarfare, for instance. The new U.S. Cyber Command describes its primary mission as protecting military networks from incoming assault, and says very little about what its offensive mission might be. Writing malicious code and transmitting it into enemy networks, up to and including nuclear controls, even in advance of conventional hostilities, could be CYBERCOM\u2019s next big step. It would represent an update to the old Air Force dream of strategic bombing (.pdf), in which bombing an enemy\u2019s critical infrastructure compels him to give up the fight.\r\n\r\nThat also points to the downside. Just as strategic bombing doesn\u2019t have a good track record of success, Stuxnet hasn\u2019t taken down the Iranian nuclear program. Doctrine-writers may be tempted to view cyberwar as an alternative to a shooting war, but the evidence to date doesn\u2019t suggest anything of the sort. Stuxnet just indicates that high-level cyberwarfare really is possible; it doesn\u2019t indicate that it\u2019s sufficient for achieving national objectives.\r\n\r\nThe Times has an irresistible quote from Ralph Langner, a German expert who decoded Stuxnet. Langner wrote that \u201cStuxnet is not about sending a message or proving a concept. It is about destroying its targets with utmost determination in military style.\u201d Maybe so. But that certainly does send a message. And if it doesn\u2019t exactly prove a concept, it points a way forward to just how powerful cyberwarfare can become.\r\n\r\nUpdate, 3:15 p.m., January 17: Friend-of-the-blog Judah Grunstein, editor-in-chief of World Politics Review, sends along this typically thoughtful reaction:\r\n\r\n    What hasn\u2019t yet been mentioned in this discussion is the question of strategic uncertainty that this new era of cyberwar introduces. You obliquely suggested as much when you used a worm targeting nuclear weapons launch and guidance control systems as an example. Given Stuxnet\u2019s ability to cover its tracks, the variables it introduces into all computer-controlled systems are inherently \u201cunknown unknowns.\u201d That means the very decision to launch must now include a much broader calculus of just what will happen once the launch is executed. There was always a \u201cmargin of error\u201d calculus inherent to strategic nuclear launch, but Stuxnet has increased it to such an order of magnitude that it becomes a category difference. Before, we might have launched and missed Moscow. Today, we might launch and hit NY or Washington, or nothing at all. The Mutual Assured Destruction formula of nuclear deterrence is inoperative if the assured part is removed from the equation.\r\n\r\n    Nuclear control systems are the most graphic illustration, but not the only one. Hopefully the folks in Tehran aren\u2019t the only ones worrying about the integrity of their control infrastructure, and what the implications of that essentially unanswerable question are.\r\n\r\nhttp://www.wired.com/dangerroom/2011/01/with-stuxnet-did-the-u-s-and-israel-create-a-new-cyberwar-era", "group_id": 3920, "id": 129544}]