*** new AA6YQ comments below

--- In digitalradio@yahoogroups.com, "DuBose Walt Civ AETC CONS/LGCA" 
<[EMAIL PROTECTED]> wrote:

>snip<

>>>Walt, what would make an HF-based system constucted by amateurs 
invulnerable to cyber-attack? 

### If you are NOT connected to the Internet and don't use 100% 
Internet protocols, it would be almost impossible to attack the 
network except at the RF level and if that is done 1) you and you 
enemy lose use of the frequency and 2) you can be DFed and 
your "jamming station/site" be "taken out."

***Two comments:

1. If you have new protocols that are invulnerable to cyber-attack, 
it would be much more practical to deploy these on the existing 
internet than to construct a backup network. 

2. If it were possible to pinpoint the source of a cyber-attack in 
realtime, the internet's routers could dump packets from that source  
into the bit bucket. The problem is that attack payloads are very 
difficult to distinguish from valid payloads. The use of RF links in 
no way simplifies this problem, and could well make it harder.

>snip<

>>>Several times in this thread, I have agreed that overcoming local 
internet outages would be a reasonable objective. Its your 
insistence that we must cover for the loss of the entire internet 
that remains completely unjustified.

### No insistance that we must do anything.  I am only saying that it 
is very possible according to "experts" that the Internet could be 
attacked at the software level and rendered inoperatable.  Then 
providing local Internet capability is of no great use if the local 
area does not have connectivity outside the local area.  

***Your proposed solution -- an independent message passing network 
based on HF links -- would be every bit as vulnerable as the current 
internet, as I've pointed out above. What attacker would be foolish 
enough to reveal itself by bringing down the internet but leave its 
backup running? We're not talking script kiddies here, Walt.


### Local law enforcement and governments might not be able to 
contact their state counterpart and states might no be able to 
contact the federal government.  And in many cases, local governments 
and law enforcement need contact at the federal level.  Thus there is 
a need for the local area to connect to the entire Internet.  If the 
Internet does not exist, how do a local area connect to the state of 
federal government?

***That's a fine question, Walt, but your proposed solution does not 
answer it. If attackers bring down the internet, they will also bring 
down its backup.

>snip<

>>>So are you suggesting that this amateur-built HF world-wide 
messaging system should not employ software?

### Not at all.  I am saying that it is the software that is attacked 
not the hardware.  And that the software is attacked because it is 
running on the Internet.  

***The software on your proposed backup network would be equally 
vulnerable to attack. RF links have no magical ability to separate 
attack payloads from valid payloads.


### Speaking of hardware, if you are aware of the public documents on 
the Internet that show the physical location of major backbone 
hubs...physical connections, then you would realize that 21 well 
placed and well times explosive events (attacks) on those physical 
locations could disconnect the Internet for several days, perhaps 
weeks, until the connections could be rerouted.

***Yes. It would be far more practical and less expensive to mitigate 
this risk by replicating these installations -- perhaps in hardened 
sites -- than to assemble an HF-based backup network. Doing so would 
would have the side benefit of increasing overall internet capacity; 
in contrast, why would anyone use your proposed backup network if the 
internet was running?

>snip<

>>>I agree that there's cause for concern, but I don't see how the 
approach you're suggestion would come anywhere close to addressing 
this problem.

### It approaches the problem in that it can be a small part of the 
solution.  THe DHS had envisioned using an amateur radio national 
messaging system for delivery of critical loss of life and properity 
messages to various NGOs (non-govermental organizations).  Where 
information from one remote Zipcode could be delivered to another 
Zipcode (large area not specifically individual Zipcodes) and then 
the USPS would deliver the messages.

***So in 24 hours, Walt, your rationale for a concerted effort to 
build a worldwide HF message-passing system has gone from

"because we CAN do it"

to

"this will provide backup message-passing in the event of a cyber-
attack that brings down the entire internet"

to

"it can be a small part of the solution".

If you're having trouble getting developers excited about this 
mission, it should be obvious why.

   73,

       Dave, AA6YQ 






Need a Digital mode QSO? Connect to  Telnet://cluster.dynalias.org

Other areas of interest:

The MixW Reflector : http://groups.yahoo.com/group/themixwgroup/
DigiPol: http://groups.yahoo.com/group/Digipol  (band plan policy discussion)

 
Yahoo! Groups Links

<*> To visit your group on the web, go to:
    http://groups.yahoo.com/group/digitalradio/

<*> To unsubscribe from this group, send an email to:
    [EMAIL PROTECTED]

<*> Your use of Yahoo! Groups is subject to:
    http://docs.yahoo.com/info/terms/
 



Reply via email to