Access member only content, take part in discussions with comments on blogs, news and reviews and receive all the latest security industry news directly to your inbox. Join now for free.
Processing registration... Please wait.
This process can take up to a minute to complete.
A confirmation email has been sent to your email address - SUPPLIED EMAIL HERE. Please click on the link in the email to verify your email address. You need to verify your email before you can start posting.
If you do not receive your confirmation email within the next few minutes, it may be because the email has been captured by a junk mail filter. Please ensure you add the domain @scmagazine.com.au to your white-listed senders.
The Stuxnet attack on Iran's nuclear enrichment program has propelled warfare into a new era of private sector attacks, according to US defence consultant James Farwell.
One of several specialists addressing the second national cyber warfare conference in Canberra this week, Farwell argued that a dominantly tactical approach to cyber warfare at a state level was flawed.
"It’s an era where cyber weapons can achieve the same kinds of effects that traditional weapons such as bombs or missiles can achieve without necessarily achieving the collateral damage such as the loss of life or damage to property," he said.
According to Farwell, all cyber attacks since 2005 were mounted by a “non-state actor”, although they may have the implicit sponsorship or backing of a rogue state.
They fell outside the purview of the Charter of the United Nations, which theoretically regulated the actions between states, the use of force and how rogue states are held accountable.
“But what do you do about a Mafia operation?" Farwell said. "What do you do about the black hat Chinese hackers who have been accused of pirating trade and defence secrets from different countries?
“It’s a real issue when you look at the law of armed conflict, which the Chinese do not agree applies to cyber warfare”.
The Chinese Government had to date denied any complicity in, or responsibility for, the attacks.
However, the targets of cyber attacks had become an area of increasing concern, exacerbated by the governments seeking cyber capabilities from civilian contractors.
While attacks on military targets were permissible under international law, attacks on innocent civilians or non-military targets are prohibited.
“Do you lose your status as a civilian and become a military target?” Farwell said.
Speed was a little-understood feature of the cyber warfare era, he said.
“When you use cyber you can wind up in an escalatory regime in which one side attacks someone with a cyber weapon, the other guy responds, and this happens at lightning speed," he said.
Farwell's counsel is “look before you leap".
To begin commenting right away, you can log in below or register an account if you don't yet have one. Please read our guidelines on commenting. Offending posts will be removed and your access may be suspended. Abusive or obscene language will not be tolerated. The comments below do not necessarily reflect the views or opinions of SC Magazine, Haymarket Media or its employees.