Home
×

About AFIT

Mission & Vision
Leadership
Organizational Structure
Institutional Data
News
Videos
History
Icarus Memorial Statue
Accreditation
×

Graduate Education

Civilian Institution Programs Graduate School of Engineering & Management
×

Continuing Education

The Civil Engineer School School of Strategic Force Studies
School of Systems & Logistics
×

Featured Topics

Artificial Intelligence Technology Research and Education Consortium Cyber Education Digital Literacy Hypersonics Education
×

Research

Research Resources

Office of Research & Outreach
Research Reports

Centers of Excellence

Air Force Cyberspace Technical Center of Excellence (CyTCoE)
Digital Innovation & Integration Center of Excellence (DIICE)
Scientific Test & Analysis Techniques Center of Excellence (STAT CoE)

Research Centers

Autonomy & Navigation Technology (ANT) Center
Applied Research Center for Hypersonics (ARCH)
Center for Cyberspace Research (CCR)
Center for Directed Energy (CDE)
Center for Space Research and Assurance (CSRA)
Center for Technical Intelligence Studies and Research (CTISR)
Nuclear Expertise for Advancing Technologies Center (NEAT) Homeland Security Community of Best Practices (HS COBP)
×

Consulting

The Civil Engineer School Consulting Services
School of Systems & Logistics Consulting Services
Expertise & Faculty Search
×

Students

Prospective Students
Current Students International Students
×

Alumni

Alumni
×

Search

×

Resources

Contact AFIT
Canvas
Leadership, Faculty, & Staff Directory
Military & Civilian Personnel
D'Azzo Research Library
AFIT News
AFIT Videos
eInvitations Facilities Reservations
Officer Education Record Updates/Corrections
WIFI Registration
AFIT Webmail
Related Links
Center for Cyberspace Research (CCR)

New book explores risk of cyber attacks

Posted Monday, January 26, 2009

 

By John Nolan

Staff Writer, Dayton Daily News

Sunday, January 25, 2009

DAYTON — It could come in the form of electronic attacks on computer systems in banks, credit-card agencies, electric or water utilities, military or civilian government offices.

Or, it could quietly take over even an individual's computer at home, making it a so-called "zombie" computer used in a surreptitious attack on a target selected by hackers motivated by a grudge, political fervor or sympathy for another country.

Whatever the motivation, cyber attacks are increasing in frequency, experts say. They can be costly to defend against and difficult to stop. Finding those responsible can be an extreme challenge, since attacks can be directed through computer servers in a country other than the nation of origin.

In 2007, a wave of electronic data bombardments by computer hackers shut down government and business Web sites in Estonia for a time, causing business losses and disrupting legitimate electronic commerce and communication. The United States needs to step up its efforts to defend against such attacks, said Susan Brenner, a University of Dayton law and technology professor who wrote a new book called "Cyberthreats: The Emerging Fault Lines of the Nation State."

"We don't want to make the country paranoid. But I think we have to think about this," Brenner said in a telephone interview. "My laptop, sitting on a desk, is a border. Somebody can get into the country through that border.

"There really is no border in cyberspace. Every computer is a portal."

In her book, she suggests that the nation should consider encouraging citizens and corporations to report apparent computer shenanigans to law enforcement, so that investigators can move quickly to detect the patterns and scope of cyber attacks. Cyber attacks may not be limited to any one region or nation, so political boundaries that separate civil response authorities may be meaningless, Brenner said.

Attacks on personal, government and business networks are increasing, according to Rusty Baldwin, associate director of the Center for Cyberspace Research, part of the Air Force Institute of Technology at Wright-Patterson Air Force Base. Many attacks are automated, rather than backed by a human operator.

"Basic computer security measures such as virus protection, firewalls, choosing passwords that are not easy to guess, and not opening e-mails from unknown senders goes a long way against certain kinds of attacks," Baldwin, an AFIT associate professor of computer engineering, wrote in an e-mail response to questions. "However, the only completely secure way to protect a computer from a network attack is to disconnect it from the network. Of course, if the attacker's intent was to get the system off the network, his purpose has been accomplished."

The U.S. Chamber of Commerce has been working with the U.S. Department of Homeland Security to offer regional meetings on computer security issues. A meeting in Boston in October 2008 is to be followed by others in Bellevue, Wash., in February and Ann Arbor, Mich., in March.

The Chamber of Commerce would be concerned about making it mandatory for businesses to report computer attacks to law enforcement, but would support tax incentives to encourage such reporting, said Matthew Eggers, a manager in the chamber's Washington office.

 

More news...

Return to the top of the page
AETC
AFIT
Air University

Air Force Institute of Technology
2950 Hobson Way
Wright-Patterson Air Force Base, OH 45433-7765
Commercial: 937-255-6565 | DSN: 785-6565
AFIT on Facebook
AFIT on YouTube
AFIT on LinkedIn

Connect with AFIT