US runs practice cyber attack
Arlington - US keyboard warriors were doing battle on Tuesday with a simulated cyber attack on government and private computer networks that undermines basic trust in the internet.
The "Cyber Storm III" exercise involves participants from seven US government departments, including the Pentagon, 11 US states, 60 private companies and 12 international partners.
The biennial exercise is being staged by the Department of Homeland Security and is the first test of the new National Cyber security and Communications Integration Centre based in an office building in this Washington suburb.
The NCCIC booted up in October 2009 to serve as the co-ordinating centre for US cyber security operations and houses US government computer experts and their private sector counterparts under one roof.
Briefing reporters ahead of "Cyber Storm III", Brett Lambo, the director of DHS's Cyber Exercise Programme, stressed that the exercise, which is expected to last three days, is "completely simulated".
"We're not attacking any real networks," Lambo said. "We're not taking down a network. We're not injecting any real malware."
The thousands of participants in the exercise will receive more than 1 500 "injects" of simulated events that they will have to react to as unknown adversaries seek to exploit known vulnerabilities in cyber infrastructure.
Potential consequences of the simulated cyber attacks could include "loss of life and the crippling of critical government and private sector functions" such as communications networks and power grids, according to the DHS.
Lambo outlined the general scenario of the exercise for reporters at the high-security NCCIC facility in Arlington but was careful not to give away too much to avoid tipping off the participants.
"In Cyber Storm III, we're kind of using the internet to attack itself," Lambo said, by compromising the system of encrypted digital certificates that verify identities on the internet.
"At a certain point the operation of the internet is reliant on trust - knowing where you're going is where you're supposed to be," Lambo said.
"We're going to try to compromise that chain of trust by attacking something that's fundamental to the operation of the internet," he said.
"We'll also be introducing issues in the DNS world," he said of the Domain Name System that assigns easily understandable website names to the string of numbers known as IP addresses.
Lambo said the Pentagon and National Security Agency, the super secret US surveillance agency, were involved in the planning process for the exercise, which will be controlled from US Secret Service headquarters in Washington.
"They'll be arm and arm in the fight with us," he said.
Lambo said there were multiple goals for Cyber Storm III, including evaluating information-sharing among the participants, assessing their preparedness and evaluating their response to the various threats.
"What we're looking to do is really stress ourselves," he said.
Randy Vickers, director of the US Computer Emergency Readiness Team, said Cyber Storm III will be the first meaningful test of the NCCIC centre intended to bring together the various components of US cyber defences.
"In the past we had bubbles of influence," Vickers told reporters in the NCCIC "watch room", which features five huge wall screens displaying threat data and other information in real-time and dozens of computer workstations.
"All of that has been integrated now into one room," he said.
The international partners taking part in the exercise are from Australia, Britain, Canada, France, Germany, Hungary, Japan, Italy, the Netherlands, New Zealand, Sweden and Switzerland.