Slashdot Mirror
Bush Wants an Unhackable Private Network
Slur points out an article at the New York Times which says that the "Bush administration is considering the creation of a secure new government communications network separate from the Internet that would be less vulnerable to attack and efforts to disrupt critical federal activities," writing "It seems to me money would be better spent getting the next-generation Internet going, for the government to fund more of the existing research and standards boards to create protocols that are invulnerable to the kinds of attacks the government seems to fear, namely massive DOS attacks. Or is there something else a 'net terrorist' could do to 'disrupt the vital flow of information'?" Isn't hard-to-disrupt communication the reason that DARPA got involved in this "Internet" business anyhow? Update: 11/19 22:48 GMT by T : This was mentioned before a little while ago when USA Today wrote about the same concept, but apparently a Digital Pearl Harbor is still being flogged.
Bruce Schneier has an informative story about this in the November 15 CRYPTO-GRAM, including some of the pros and cons. Basically, he says it would be better than what they have now, but still not all that great (he points out that the government already has several separate, secure internets, for various purposes, and they were still infected by Melissa and LoveLetter). And that this is one of the few cases where security and convenience might really be inversely proportional.
-- Some things are to be believed, though not susceptible to rational proof.
Bush may not know it, but these already exist in the form of SIPRNET, and INTELNET.
SIPRNET
SECRET INTERNET PROTOCOL ROUTER NETWORK
SIPRNET will replace the DSNET-1 during the migration to DISN. It operates at the SECRET Collateral level and can interface with the TROJAN network. It provides higher and selectable data rates at a much lower O&M recurring cost. Inter-site data rates are 512 Kbps and in some cases T-1. Users can connect to the network at selectable data rates that meet the need.
INTELNET
NAVAL INTELLIGENCE COMMUNICATIONS SYSTEM
The NICS is designed to consolidate Naval Intelligence communications systems. The system has three parts. INTELCAST plan calls for each FOCIC or Facility to consolidate up to 12 different message traffic circuits, including OPINTEL, MUSIC, FIST, and DODIIS through INTELDATA extended in an SCI LAN Extension and Stand Alone capability configuration. The SCI LAN encompasses a full suite of SOCRATES equipment, including workstations, secondary imagery dissemination systems, and a mapping and graphics capability. The Stand Alone capability provides a workstation with tailored data bases specific to unit operational orientation. Stand Alone capabilities are being provided to Guard and Reserve units as well as to certain active, lower-echelon units.
NIPRNET
UNIFORM INTERNET PROTOCOL ROUTER NETWORK
The NIPRNET is the consolidation of several service/agencies networks (AFNET, NAVNET, MILNET) with common protocols and standards. It is a product of the DISN near Term Program, which sought a reduction in cost of operation through interoperability and standardization. Connectivity over high-speed trunking is supported by the NIPRNET. It operates at the unclassified level, while the SIPRNET supports classified networks in a similar manner.
It seems to me this would evolve just the way the Internet did before; it would at first be used just by government agencies, next given to the large defense contractors, eventually adopted by the research universities, and then swallowed whole by Joe Public. This, IMHO, is the best way to get the next-gen Internet.
Wouldn't creating a wholly separate network for restricted traffic be a bit counterproductive?
I mean and spy/hacker who found a physical location to hack into it (i.e. tapping into a line on a phone pole or at a phone company switch) would find *everything* on that network to be of interest. In essence they would have hit the jackpot for illicit information. We're kind enough to organise it away for them.
True it would probably prevent 15 year old script kiddies from casually hacking in at home, but it would make any break into that 'other' network all the more catostrophic prospect.
The problem is that much of the 'vital information' in today's society flows over the public internet - by definition. Sure, take military command and control comms out of band - that makes perfect sense anyway, which is probably why there are several separate, highly secure military and governmental IP internetworks that are supposed to be completely separate from the public Net. (Although, as Bruce Schnier points out in the latest Cryptogram, ILoveYou made it onto the 'secure' network within 48 hours...
"None are more hopelessly enslaved than those who falsely believe they are free." -- Goethe
What he's asking for is like asking for poison-free food. Sure, the ovens can be locked and the food can be tested over and over, but the cook is still there.
The only concievable way to do this is to either:
a) Eliminate Government Data Access to All But the Highest Officials (which still poses the same problem, in theory) or
b) Eliminate the network altogether.
Bush is asking for something that isn't possible because social engineering and the "inside job" is the oldest way to hack any system of anything. Hacking didn't start with computers, bank vaults, locks, jewelry stashes... they were all done in the past with inside work.
It's impossible because of human error and human presence.
Feel free to hack into my home network. It's IP range is 192.168.0.1 - 192.168.0.13.
Running drywire or some other method of lines as long as they are physically seperated from the rest of the internet (think of the way the bank systems do this via verifone boxes) does make it unhackable and private
Of course, it relies upon physical security and not so much bit-based security. Before flaming our president understand it is a real concept. And I'm sure he has quite a few people that know a lot more than you do on the matter; never try to know everything just know people who do.
Note, he didn't say an "internet based private unhackable network" but a private network. My guess in the private IP range. Considering all the secure channels (via satellite, or some other method of communication) I'm sure that this can easily be achieved. Granted all that, I do think it's a stupid idea... but realistic none-the-less.
Dacels Jewelers can't be trusted.
I've been wondering just how susceptible Mae West and it's ilk are to terrorist attacks.
It seems to me that it wouldn't take a whole lot of bang to bring the internet to it's knees.
Funny how it was originally designed to be immune to this sort of stuff.
Perhaps in the spirit of bipartisan cooperation, he could contract Al Gore to invent one?
None of the major backbones are willing to provide IPv6 connections. The U.S. Government contracts out almost all of its long-haul communication requirements. They used to get AT&T to build underground bunkers for them, but now they get nothing. Why not start by requiring IPv6 in all government RFPs/RFQs for long-haul comm? That should provide an instant market to kick-start IPv6, complete with all the security features that have already been designed.
But somehow that all went to hell when it got commercialized. How many people here remember the splash made by that first infamous piece of broadcast spam from that lawyer in Arizona?(or was it California?) Or the September that never ended with the advent of Internet access via AOL.
As soon as all these commercial interests got into it, wham. And this is the information superhighway invented by algore. The bloody mess of spam and commercial jerks. Not Darpa
"It is a greater offense to steal men's labor, than their clothes"
But then again, it will result in some interesting technological develpments, so I can think of things that could be worse wastes of taxes.
Yeah. Too bad that any interesting technology would probably not be released to the public domain in the name (rather, under the guise) of national security. We can wave the FIA (Freedom of Information Act) in their face, but "our" government seems to have no problem overturning other legislation under the guise of national security; I doubt this will be any different.
--
#nohup cat
If the current telco and internet infrastructure is any example, their efforts will do no good. A dozen terrorists with rented (or commandeered) backhoes in select locations could cause massive disruptions in the Internet (and therefore the economy). Miss Utility could even be an unwitting accomplice.
Don't even start with "physical diversity blah blah blah". The fact that your physically diverse circuits aren't has been proven time and again by the mighty backhoe/flaming hazmat car/junior achiever.
Of course some improvements to BGP wouldn't hurt either.
Yes. And the internet itself is hard-to-disrupt.
However, a single server can be the target of an attack, and this is what they want to secure against now. The idea of the internet was to be able to communicate even if lots of nodes failed (i.e. got physically destroyed). The idea was not to secure every single node against destruction. Also note that the internet was designed with physical rather than digital attacks in mind.
The government certainly does have a point here, but I think you can reach security for each individual node only by securing those nodes, not by simply seperating them. How will they make sure that, for example, no email can get in from the internet? Have two computers at each user's desk?
Sig (appended to the end of comments I post, 54 chars)
AFAIK AUTODIN is still where the "serious business" happens.
AUTODIN is an ancient, circuit switched network. It's a real bear to operate (I spent four years operating it) but it is genuinely secure. AFAIK the whole "packet switched so it can't be decapitated" thing that the APRANET was supposed to solve was supposed to be an answer to AUTODIN.
I hope they get something going so they can retire AUTODIN.
-Peter
Alas, they don't seem to have any mp3s or warez that I don't already have. Bummer.
All it takes is one idiot to install PCAnywhere and throw a dialup modem on their office computer so they can work from home. Or someone who dials out to the net from their office computer and runs something like Go to my PC.
According to The American Institute of Physics in their Physical Review Letters journal article "Resilience of the Internet to random breakdowns" (19 Oct 2000) [a copy of this article is available in .pdf from my personal web page on the left side bar for your reading pleasure.] stated that the Internet could lose 99% of its nodes, and still maintain routability. The content lost in those 99% of nodes is another matter, but the Internet would not segment until over 99% of the routing nodes were removed. That's pretty impressive.
Somehow this whole discussion would be a lot funnier if it was Al Gore saying that he wanted his own private internet.
How wonderful, someone who still thinks NAT equals security!
I'm not going to spell it out to you, but I suggest you:
1. tighten up your firewall rules immediately. (You ARE running
a firewall, aren't you?)and
2. Start checking your IDS logs closely for the next few days.
(You ARE running an IDS, aren't you?)
OK, if you want further hints for your googling: firstly, look for `arp poisoning Dug Song MitM'. Then search the Bugtraq, and perhaps the sec-focus Pen-testing list archives, for info about how to own the OS/platform you're NATing with (ie if you're NATing thru Linux, I mean the Linux box.) Remember to check for known vulnerabilities in the services that show up when you nmap your external interface. Yeah, of course you're completely up to date with all current patches, but I bet that there was a window of vulnerability before you applied each one...
In general, boasting on Slashdot about how secure one's network is, is a BAD idea.
"None are more hopelessly enslaved than those who falsely believe they are free." -- Goethe
The notion of a secure private network for the government seems like a decent idea. To think that through such a private network we can avoid some sort of internet peral harbor is absurd. Why? Real simple: was the world trade center a government building?
Why would any terrorist waste their time and resources trying to take down the FBI when it could go after banks, airports, power grids, and a whole host of other things that are on the public Internet? All of those things are far more visible and have a far more significant immediate impact on the lives of US citizens. Remember, terrorism isn't about taking out strategic assets, but creating a sense of fear in the every day lives of normal unassuming people.
Now, one might say that the answer to this quandry is to put corporations on that network. Of course then you are expanding the base of users and increasing the likelyhood that a few terrorists (or those easily bribed or fooled by them) will be able to breach that network. I suspect that even putting large swaths of the government on that network already risks that compromise within the government itself but that just amplifies it.
Why don't we take that money and put it into developing policies and technologies that will make the current networks more secure? I know that this doesn't look as impressive to the public, but in the long run it will probably do more to prevent an Internet Perl Harbor.
This sig has been temporarily disconnected or is no longer in service
Building a private network isn't a big deal. I think the government could build an encrypted WAN without much effort. I think the biggest challenge to security is going to be on the physical front... meaning that every piece of network equipment must be in a secure location. This includes every router and bridge in every network shack along the WAN lines. Wouldn't want any 1337 hax0r5 to come along with a patch cable and bring down the government network. Since guarding every inch of wire is impossible, point to point connections must be made with fiber line so it can't be tapped like copper.
None of this even begins to consider the physical local machine security... government workers shouldn't be alowed to bring any media from home, no incoming modem lines, etc.
Lots to think about. If GB wants to cut me a check, I'll begin the engineering work tomorrow.
Skiers and Riders -- http://www.snowjournal.com
Well, since the intent is to physically separate this network from other networks, it would indeed not by "hackable" by the common definition fo the term. The only way to penetrate it would be to breach the physical security (i.e. break into a building and tap a cable), which is more "breaking and entering" than "hacking."
10 PRINT CHR$(205.5+RND(1)); : GOTO 10
The problem is that open networks evolve so much faster than closed, secure networks, that users become frustrated with the later and start moving files surrepticiously between them. Thats what Prof Deutch of MIT did while head of the CIA and Wenho Lee of Los Alamos.
We alreayd have such a network. Its called milnet and is used by the US millitary who funded the original inetrnet research.
As soon as the internet was working they built their own, secure network, and got the hell off of the publicly acessible one.
Maybe Colin won't let Georgie play with his toys, so Georgie wants his own....
Even with a private network that isn't connected to the Internet, there is still at least one big security issue: A false sense of security. Government employees may think that because their private network is so secure and separate from the big bad Internet, they can relax and give computer security a low priority. What most folks don't understand is that computers are like any machine: They require constant maintainence for reliable operation. Security is a large part of that maintainence, and cannot be set aside while other things take place. On the contrary, security must proactively be part of everything that goes on in a computer and network. This is partly why a false sense of security is dangerous.
Besides, intruders could still access the network through such techniques as war-dialing, to name one example off the top of my head.
And I'm saying, and Bruce Schneier is saying, for that matter George Bush is saying that we're not talking about four computers and a hub. We're talking about a relatively large network of computers, pretty much all of which are likely to have floppy drives, network cards, modems, and various connector ports. You might be able to guarantee that the hardware is minimally secure -- take out the modem, ban use of the floppy drive, etc -- but I can absolutely guarantee that you can't get the users to be 100% vigilant about never transferring data to & from the open public internet, and that only has to happen once to violate the integrity of this so called isolated network. Your reduction to absurdity is, as advertised, absurd.
DO NOT LEAVE IT IS NOT REAL
KG-84
Secure telephones
The NSA has some really smart people to rip this stuff apart and certify it to be secure before it goes into production. These products are usually designed to a higher standard than software programmed by people in their spare time or microsoft.
I love it how the /. editors always have an excuse as to why they post dupes. Either it's witty, or dodgy, or it's "this is important enough to read twice." Please.
Is it THAT IMPOSSIBLY HARD to use your OWN search tool before posting dupes?
python -c "x='python -c %sx=%s; print x%%(chr(34),repr(x),chr(34))%s'; print x%(chr(34),repr(x),chr(34))"
Hahahahahahahahahahaha. That's rich. Oops, no pun intended.
-Legion
It's more like a DoD wide transition from Unix to WinNT/2k. It's all the DoD networks - not just the classified ones.
I think it's a mistake personally, but I've never researched the reasoning behind the decision. The difficulty in finding unix admins shouldn't matter that much, since the military tends to grown their own anyhow.
Remeber JINTACCS? I doubt it, it was a messageing system, actualy kinda like XML. It allow an Army soldier to do things like call it Naval gunfire. On the lowest level it was a fill in the blank paper, then read over voice radios, at the higher levels a computerized intercomunications protocol.
Actualy it was a good system, not perfect but good, but it was murdered. They did this by teaching it. They didn't start with the easiest and work to the hardest, they tought the hardest first so the average pvt Joe Snuffy got hopelessly lost. They actualy tought me how to report the laying of a naval mine field, I was in an light infantry organisation at the time, that report was for Naval ships Captains. This happened because the middle management types realy didn't want to lose their turf. I think the same thing is going to happen here.
To us its easy, blow some fiber, install some routers between facilities, gateway to some secure sattalites and maybe change the networking code enough to make the civilian stuff incompatable. Add in an armor plated authetication, distr the software to authorized users and your done right? Well the Army won't like working with the Marines, DOD won't like working with DOJ, and Intell won't even like working with themselves.
The only good thing I see from this is sonner or later some of the reasearch is going to trickle down to us and be usefull.
Apocalypse Cancelled, Sorry, No Ticket Refunds