I've been chatting with some folks in infosec about the escalation of 'cyber attacks' sponsored by governments which target other governments, and private corporations. There's uneasyness in the security industry about possible overeactions and restrictions of freedom as a result of this growing concern. This entry will attempt to break down some of these concerns, and relate them to differences to physical warfare and how responding to them requires
Identifying a threat level
In the infosec world, there are vulnerability ranking systems such as CVSS that can be used to identify the seriousness of a particular flaw. Prior to any type of government response, a incident ranking system will likely need to be created, and from there a possible reaction level.
Identifying an attack source
Identify the appropriate level of response to a cyber attack
Reactive Considerations
- Ensuring an attack is from the right source: proxies, etc
- The level of tolerence: Discuss CVSS
Proactive Considerations (giving up safety for security)
<V for Vendetta image goes here>
- More blatent/in depth packet inspection : Think shipping containers
- Restriction of cyber war tools
There are many assumptions above that are probably wrong, the goal of this rant isn't to predict the outcome, merely open discussion to the issue and how it may impact us individually, and as a country.
