Cyberwarfare

Reports emerged today that over the weekend computers in North Korea initiated denial of service attacks against targets in South Korea and the United States. For better or worse, these kinds of attacks will probably raise many questions about cyberwarfare in the weeks and months ahead. Should cyberwarfare and cyberterrorism be a top security priority for the United States? What is an appropriate response?

It seems most of the cyberwarfare attacks can be divided into either denial of service attacks (where a website is blocked for a period of time, but no information is stolen), propaganda (distribution of political/religious ideology), or cyber espionage (where sensitive information is compromised or stolen).

The first two appear to be more annoying than anything else. They don't really pose any security threat to the United States. And remember this is through the public domain. What does North Korea gain if public citizens can't access the State Department's website for a couple of hours? Inconveniencing Americans, if anything.

Look at one of the most well known instances of cyberwarfare, the 2007 Cyberwar between Estonia and Russia. The only result of this "war" was the spamming of Estonian websites and denial of service. No deaths, no destruction. Why are we to think cyberwarfare should be anywhere near the top of our national security priorities?

Cyber espionage sounds dangerous, and by all means, sensitive information within the government's servers should be secured using advanced technology. But government servers are going to have a higher level of security than anything in the public domain, so the notion that North Koreans, Chinese, or anybody else could hack into DoD and steal all of our nation's secrets is implausible at best. Much like terrorists acquiring and using nuclear weapons, there seems to be a lot of Cheney's "1% Doctrine" in discussions about cyberwarfare.