Stories
Slash Boxes
Comments
Search

News for nerds, stuff that matters

Slashdot Log In

Log In

Create Account  |  Retrieve Password

Ask the Air Force Cyber Command General About War in Cyberspace

Posted by Roblimo on Fri Feb 29, 2008 02:44 PM
from the play-the-ultimate-MMORPG dept.
The Military
We ran an article about the new Air Force Cyber Command and its recruiting efforts on February 13, 2008. Now Major General William Lord, who is in charge of this effort, has agreed to answer Slashdot users' questions. If you're thinking about joining up -- or just curious -- this is a golden opportunity to learn how our military is changing its command structure and recruiting efforts to deal with "cyberspace as a warfighting domain." Usual Slashdot interview rules apply.
+ -
story

Related Stories

[+] Air Force Seeking Geeks For 'Cyber Command' 524 comments
An anonymous reader writes "Wired reports that the two-star general in charge of the US Air Force's new Cyber Command is looking for hacker-types to beef up its cadre of cyber warriors — no heavy lifting required. 'We have to change the way we think about warriors of the future,' General William Lord says. 'So if they can't run three miles with a pack on their backs but they can shut down SCADA system, we need to have a culture where they fit in.' The Cyber Command is the Air Force's first new Major Command since the early 1990s. Its purpose is to be able to win an electronic war with China and other potential adversaries."
[+] Air Force Cyber Command General Answers Slashdot Questions 543 comments
Here are the answers to your questions for Major General William T. Lord, who runs the just-getting-off-the ground Air Force Cyber Command. Before you ask: yes, his answers were checked by both PR and security people. Also, please note that this interview is a "first," in that Generals don't typically take questions from random people on forums like Slashdot, and that it is being watched all the way up the chain of command into the Pentagon. Many big-wigs will read what you post here -- and a lot of them are interested in what you say and may even use your suggestions to help set future recruiting and operational policies. A special "thank you" goes to Maj. Gen. Lord for participating in this experiment, along with kudos to the (necessarily anonymous) people who helped us arrange this interview.
[+] IT: US Cyber Command Reveals Plans To Hit Back At Cyber Threats 95 comments
CNet News.com is reporting that the Air Force's Cyber Command has just as much interest in offense as defense. "Air Force Cyber Command (AFCYBER), a US military unit set up in September 2007 to fight in cyberspace, is due to become fully operational in the autumn under the aegis of the US Eighth Air Force. Lieutenant general Robert J. Elder Jr., who commands the Eighth Air Force's Barksdale base, told ZDNet.co.uk at the Cyber Warfare Conference 2008 that Air Force is interested in developing its capabilities to attack enemy forces as well as defend critical national infrastructure. "
[+] Technology: Air Force Suspends Cyber Command Program 166 comments
AFCyber writes "The Air Force on Monday suspended all efforts related to development of a program to become the dominant service in cyberspace, according to knowledgeable sources. Top Air Force officials put a halt to all activities related to the establishment of the Cyber Command, a provisional unit that is currently part of the 8th Air Force at Barksdale Air Force Base in Louisiana, sources told Nextgov. An internal Air Force e-mail obtained by Nextgov said, 'Transfers of manpower and resources, including activation and re-assignment of units, shall be halted.' Establishment of the Cyber Command will be delayed until new senior Air Force leaders, including Chief of Staff Norton Schwartz, sworn in today, have time to make a final decision on the scope and mission of the command."
This discussion has been archived. No new comments can be posted.
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.

Ask the Air Force Cyber Command General About War in Cyberspace 25 Comments More /

 Full
 Abbreviated
 Hidden
More
Loading... please wait.

  • Already in, how can I help? (Score:4, Interesting)

    by whereizben (702407) on Friday February 29 2008, @02:50PM (#22603082) Journal
    General Lord, I am currently a member of the VT Air National Guard, and I have a bachelor's degree in computer science and work in IT for my civilian job - is there a good way that someone like me can be put to use in this effort without having to go onto active duty and relocate? Thanks - Ben

  • War on blogs? (Score:4, Interesting)

    by KarMann (121054) <karmannjro AT yahoo DOT com> on Friday February 29 2008, @02:54PM (#22603158) Homepage
    So, what's up with that war on blogs [slashdot.org] we read about recently? You know, the one "so utterly stupid, it makes me want to scream." Not quite your area of responsibility directly, I believe, but certainly of interest to the crowd here.

  • Unplugging (Score:4, Interesting)

    by The AtomicPunk (450829) on Friday February 29 2008, @02:56PM (#22603178)
    Why has the DoD not simply disconnected from the Internet in light of all the threats and (apparently somewhat successful) attacks from abroad?

      • Re:Already done (Score:5, Informative)

        by bleh-of-the-huns (17740) on Friday February 29 2008, @03:33PM (#22603728)
        Actually, the SIPR net runs on top of the nipr net, the nipr net is the internet that is connected to the general internet, so technically, the SIPR net is connected to the general internet, but well secured... think of it as a giant closed VPN....

  • How do we prevent "mission creep" (Score:5, Insightful)

    by Jeremiah Cornelius (137) * on Friday February 29 2008, @02:56PM (#22603184) Homepage Journal
    It appears that the military is increasingly involved in areas who's jurisdiction was once considered to be wholly in the civil domain. Use of jargon like "cyberspace" seems only to obfuscate and distract from the core issue. This appears an effort to recruit public opinion and defuse the deeper questions that strike at the heart of a free and civil society. I think that if we had a statement that "The private mails are a warfighting domain" would generate a fair amount of debate on the role of the military as opposed to the police, the function of constitutional protection of liberties, and the question of what actually constitutes a state of war.

    What are the limits on this jurisdiction? Who enforces these limits, and how is the public informed of that status? How are efforts to extend being safeguarded from creating mission creep that threatens all civil discourse in the United States and abroad form targeting, suppression, propaganda and extra-legal surbeillance?

  • Cyberwarfare Doctrine (Score:4, Interesting)

    by jlaprise1 (1042514) on Friday February 29 2008, @02:56PM (#22603186)
    Dear Major General Lord, I'm an academic who has been theorizing and writing about military doctrine in in cyberspace. One problem that I have encountered is in theorizing about what conflict in cyberspace looks like, though Libicki does a fine job. How does your command develop war fighting doctrine in the absence of actual conflict for cyberspace?

  • Attacks on the US and its Allies by China (Score:5, Interesting)

    by Yahma (1004476) on Friday February 29 2008, @02:57PM (#22603194) Journal
    There have been several recent news reports that China has and is engaging in a nationally funded effort to hack into and attack US government computer systems. The German government recently announced that they traced recent aggressive cyber-attacks back to the Chinese government. What, if anything, is being done against this type of cyber-terrorism against us and our allies? Why do we still confer most-favored nation trading status onto a Nation who is actively engaged in efforts to spy on and attack our government and corporate computer systems?

  • Difference In Culture (Score:5, Interesting)

    by Chabil Ha' (875116) on Friday February 29 2008, @02:57PM (#22603196)
    Major, it seems to me (and others at /.) that the cultures that most geeks espouse run counter to the perceptions of the military. This being, for example, showing up at a consistent designated hour, opposition to wearing a standard uniform, having an overly strict form of discipline, etc.

    How do you propose to reconcile those conflicts and establish your organization with any semblance of 'geek cred' to get the real talent you sound interested in attracting? What sorts of 'carrots' will you wave to attract people?

        • Re:Major-General Stanley (Score:5, Funny)

          by jollyreaper (513215) on Friday February 29 2008, @03:52PM (#22604088)
          Oh for fuck's sake, at least do something with the song!

                  I am the very model of a modern cyber-General,
                          I've information on viruses, digital, and veneral,
                          I know the pings of the LAN, and I know the games historical
                          From Marathon to Pikachu, in order categorical;
                          I'm very well acquainted, too, with matters quite impractical,
                          I endlessly retell old jokes, both the tired and scatological,
                          About conspiracy theories I'm teeming with a lot o' news
                          My many fanciful facts pin it squarely on the Jews.

                          Though I've never touched a woman i've watched a lot of porn;
                          Gigabytes and gigabytes, a greater expert was surely never born:
                          I've information on viruses, digital, and veneral,
                          I am the very model of a modern cyber-General.

  • relaxing rules (Score:5, Interesting)

    by i.r.id10t (595143) on Friday February 29 2008, @02:58PM (#22603218)
    Is it possible that rules would be relaxed to allow the types of people that can do the job already but may not be "fit" or a "good fit" for/in military service, or is the plan to take airmen and train them to do what you want them to be able to do? Would a civilian with the proper skillset be able to act as a contractor without enlisting, etc?

  • Older recruits? (Score:5, Interesting)

    by rolfwind (528248) on Friday February 29 2008, @02:59PM (#22603232)
    It seems that in the military traditionally it was always looking for people fresh out of highschool for EMs and if you wanted to get anywhere in the military you had to be either college educated or, to really have a high end military career, start really young in something like the Valley Forge Military Academy and work from there.

    In a traditional branch of the army/navy/airforce that is probably as it should be.

    But in this area people have to be trained for years, still not know as much as the older hands in the private industry, and before they really know enough their enlistment would be over. Also, it would be unacceptable for an older IT person to join but take a pay cut to a Private's level or perhaps even a Lieutenant's -- so I imagine this branch would have to be somewhat different.

    Is the military going to do to reach out toward the older folks who have extensive experience and knowledge outside the military?

  • A question about requirements (Score:5, Interesting)

    by downix (84795) on Friday February 29 2008, @02:59PM (#22603236) Homepage
    A great portion of the minds you would need in order to facilitate this are not of what is traditionally classified as "fit for service." Would those requirements be altered in order to cast a larger net for a talent pool?

  • Which acts of war should be illegal in cyberspace? (Score:5, Interesting)

    by cohomology (111648) on Friday February 29 2008, @02:59PM (#22603240)
    War is never clean.

    In conventional warfare, certain actions such as hiding among civilian populations are forbidden. These actions are considered war crimes because of the collateral damage they are likely to cause. What actions in cyberspace do you think should be outlawed? How about intentionally bringing down hospital IT systems, or destroying undersea cables without regard to the effects on civilian populations?

  • General, You were recently quoted in Wired as having said "So if they can't run three miles with a pack on their backs but they can shut down a SCADA system, we need to have a culture where they fit in." Is this an accurate quote? As a former member of the US Army I must say that passing a PT test is not very difficult and the suggestion that some soldiers should be exempt from basic minimum requirements is rather upsetting. Are you actually advocating the relaxation of military physical fitness standards for 'cyber warriors'? Would this not create a double standard and animosity between the cyber command and other sections of the military? Surely there must be other recruitment incentives that can be applied to attract the talent you need.

    - Space Rogue

  • Are you prepared for this? (Score:5, Interesting)

    by djcapelis (587616) on Friday February 29 2008, @03:09PM (#22603370) Homepage
    Security professionals thrive in an environment where authority is questioned, basic assumptions are always challenged and diversity of thought is critical. Even the idea of uniforms is going to drive away the professionals you need to set up this type of institution. Do you believe that setting up this type of institution within the military is even a good idea? Do you think that perhaps there's a more appropriate environment for it? Are you entirely aware of what kinds of challenges you face in recruiting top-notch people for this type of thing? Would you even know a top-notch security professional if you saw one? They're not easy to identity unless you're another security professional. Are you? Do you really have what it takes to try and lead this type of organization?

    If so, can you tell me why you chose ASP to run your website? Won't you have enough trouble recruiting as is without alienating some open-source loving folks right off the bat?

    So far everything I've seen about this organization is riddled with basic mistakes. I wish you the best of luck but I'm just not convinced you have any idea what you're getting yourself into with this initiative.

  • It is good war is so terrible... (Score:5, Insightful)

    by MozeeToby (1163751) on Friday February 29 2008, @03:12PM (#22603432)
    I wise man once said "It is good that war is so terrible, lest we grow too fond of it". If cyberwarfare ever becomes a reality, how do we respond to the fact that is isn't "terrible"?

    The direct damage from such warfare would be primarily economic or data security related (rather than a cost in human lives) how do you feel we can prevent it from becoming a monthly, yearly, or daily occurance?

  • Criminal vs Warlike Actions (Score:5, Interesting)

    by florescent_beige (608235) on Friday February 29 2008, @03:13PM (#22603446) Journal

    General Lord,

    Does the AFCC have a mandate to pursue criminals that use information infrastructure to commit crimes, or is your group intended to defend against warlike attacks only?

    If the latter is true, how would you distinguish between criminal activity and warlike activity in cyberspace?

  • Legal Hacking... (Score:5, Funny)

    by JeanBaptiste (537955) on Friday February 29 2008, @03:17PM (#22603514)
    Just post a list of the stuff you want hacked and the more patriotic hackers will enjoy doing it for free.

    Due to the nature of hacking and what many people do to acquire such skills, they may not want to 'join up' and all that.

    But if you post a list of IP's that are okay to bring down, and networks you want information stolen from, with the understanding that the US will not condemn any attacks, and I'm sure more than enough people would do it for free.

    Is there anything like this already in place? Cause I got nothing better to do this weekend. Or most any weekend.

  • Could a Cyber Attack Trigger a Real War? (Score:5, Interesting)

    by florescent_beige (608235) on Friday February 29 2008, @03:19PM (#22603548) Journal

    General Lord,

    I'm curious to know if you have have any criteria that would enable you do decide when a cyber attack is an act of war. Would it be possible for some kind of action inside a network to lead to a shooting war without some kind of overt physical threat occurring first?

  • CyberCommand Location (Score:5, Interesting)

    by Mz6 (741941) * on Friday February 29 2008, @03:33PM (#22603722) Journal
    General,

    Can you explain some about the situation developing between Barksdale AFB and Offutt AFB as they try to fight over the eventual final location for CyberCommand? My thoughts are that finding and recruiting talent, and laying the foundation for such a large wired infrastructure in the Omaha, Nebraska area may be easier to accomplish than in and around Shreveport, LA. What types of things is the DoD looking for when they choose the final location for this new Command?

  • International Development and AFCC's Tool Set (Score:5, Interesting)

    by florescent_beige (608235) on Friday February 29 2008, @03:34PM (#22603730) Journal

    General Lord,

    Some of the "hacker" types that I understand the AFCC is looking for probably will prefer to work with Linux and Linux applications.

    Due to the international nature of software like Linux that has been developed through the "free" paradigm, would this be allowed? These tools will have been produced by nationals from many different countries, perhaps even those that the United States could find itself fighting a cyber war against.

  • Accept, Retain, Solicit good people? (Score:5, Interesting)

    by Lally Singh (3427) on Friday February 29 2008, @03:44PM (#22603958) Journal
    General,

          Some of the most talented people in computer security tend to have the sort of records that prevent them from getting clearance. Maybe nothing heavily criminal, but enough of a colored background that traditional security clearance mechanisms would throw them out of the room before they get started. Often the same types of minds that are really good at computer security are also the rebel types, who'll have some history. Will you work to get these people in, or are we looking at a bunch of off-the-shelf programmers/admins who've taken a few simple courses in computer security?

          Also, how do you plan to attract/retain them? Again, rebel types are some of the best hackers, and they're not likely to go in without incentives. Not due to any lack of patriotism per se, but an unexplored understanding of it. More importantly, they're likely to be anti-establishment types who aren't comfortable in the strict traditional chain of command. Finally, usually the outside industry pays quite well for the good ones. Are you prepared to financially compete for the best?

          Finally, will there be any connections back to the research/academic community? You may find academics more happy to help than usual, as cyber warfare can often be nonviolent. Also, will the existing (and immense) capability within the NSA be properly leveraged?

          I'm glad to see our DoD taking our nation's networked security seriously. Right now it's just a bad, bad joke.

    Best of Luck!

    -Lally Singh

  • Why was the Air Force tasked with this? (Score:5, Interesting)

    by Isaac-Lew (623) <isaaclewNO@SPAMgmail.com> on Friday February 29 2008, @03:55PM (#22604154)
    Why should the US Air Force be tasked with this, instead of DISA or NSA, neither of which is tied to a specific branch of the military?

  • Question about Existing Contractors (Score:5, Interesting)

    by tachyon13 (963336) on Friday February 29 2008, @05:22PM (#22605334)
    General Lord, I currently work as the exact type of 'cyber warrior' you intend to recruit. But I already have a Top Secret clearance, already familiar with DoD systems, etc. The dynamic with what we call 'Information Assurance' is that of a constant struggle with our contractor management (stay within the contract, the budget, etc) and with our 'warfighter' higher ups (educating them on why they can't have full access from their home in the spirit of "operations are a priority, to hell with security"). So assuming you can get the type of expertise that are eligible for clearances, and that are willing to relocate to Offutt/etc, how are you going to address the core issue of security in the DoD: Operations/budget/schedule will always trump security. Or alternatively, security will always be back burner to 'hot' issues. Thank you for your time.

All trademarks and copyrights on this page are owned by their respective owners. Comments are owned by the Poster. The Rest © 1997-2009 Geeknet, Inc.