Air Force Firewall Now Designated a Weapons System (gazette.com)

← Back to Stories (view on slashdot.org)

Air Force Firewall Now Designated a Weapons System (gazette.com)

Posted by timothy on Saturday January 30, 2016 @12:33PM from the my-name-is-a-killing-word-now-pay-up dept.

An anonymous reader writes with a report from the Colorado Springs Gazette that the U.S. Air Force Space Command has declared its first cyber "weapons system" operational. The weapon, deemed fully operational this month, is basically a big firewall designed to protect the Air Force's internal 1 million-user network from hackers. It will be a hot topic at the Rocky Mountain Cyber Symposium, which is expected to draw hundreds of computer experts to The Broadmoor for a four-day confab starting Monday." More from the article about why a firewall would be called a weapon: The biggest reason for the weaponization push is financial: When it comes to budget battles, weapons, even those with a keyboard and a mouse, get cash from Congress. "Designating something as a weapons system really does help us justify our funding," Col. Pamela Wooley, who commands the Alabama-based 26th Cyberspace Operations Group, which includes the new weapon.

53 of 137 comments (clear)

Min score:

Reason:

Sort:

it's a "weapon". it gets funded. by turkeydance · 2016-01-30 12:45 · Score: 4, Insightful

profit!
1. Re:it's a "weapon". it gets funded. by sunderland56 · 2016-01-30 14:35 · Score: 1
  
  "firewall".... so it erects a wall of fire? Fund that sucker! Put one on the Mexican border!
2. Re:it's a "weapon". it gets funded. by ls671 · 2016-01-30 17:06 · Score: 1
  
  No need to fund that, don't you already know? The Mexicans will pay for it.
  
  --
  Everything I write is lies, read between the lines.
3. Re:it's a "weapon". it gets funded. by wvmarle · 2016-01-30 21:11 · Score: 1
  
  It's probably easier than finding a justification that it "keeps out them terrorists" or something like that. Had it been civilian, they'd probably asked for extra funding "to stop the kiddie porn" or otherwise "to protect the children".
"weapons... get cash from Congress" by ffkom · 2016-01-30 12:45 · Score: 1, Funny

So maybe the poor should re-define themselves as "potential suicide-bombers" to be treated just as generous?
1. Re:"weapons... get cash from Congress" by MobileTatsu-NJG · 2016-01-30 14:33 · Score: 1
  
  Oh, be serious. The poor should refer to themselves as veterans so when a suicide bomb finally does go off in the United States the Republicans will finally be interested in helping them!
  
  --
  
  "I like to lick butts!" by MobileTatsu-NJG (#32700246) (Score:5, Informative)
2. Re: "weapons... get cash from Congress" by Beeftopia · 2016-01-30 15:53 · Score: 1
  
  Suicide bombers are like viking berserkers and japanese kamakazi pilots. They are the walking, talking embodiment of courage and dedication. The fact that you are their enemy doesn't diminish that in the slightest. Oppose them or not, when you disparage them, you diminish yourself.
  It is true that suicide bombers are badass. However, they are fighting for extreme limits on freedom, fighting to take autonomy and power away from the populace and give it to the ultimate nanny state. That's regrettable. In virtually all cases, they are anti-education, anti-science, anti-technology, anti-liberty.
  
  The ones who deserve contempt are the drone pilots. They're walking, talking embodiments of cowardice, deserving of utter contempt.
  If combat were purely a dick-waving contest (war is to a certain degree, but I'm talking about actual tactical combat), then this might be true. However, combat is about winning, as quickly, efficiently and safely as possible. Very Art Of War-esque. As such, drone pilots play an important role in force protection, threat identification and threat neutralization. They save our troops' lives and advance the mission. As such, I consider them extremely effective and worthy combatants. They're a manifestation of the West's technological dominance, something suicide bombers and their handlers will never understand or achieve.
3. Re: "weapons... get cash from Congress" by whoever57 · 2016-01-30 16:03 · Score: 1
  
  Suicide bombers are like viking berserkers and japanese kamakazi pilots. They are the walking, talking embodiment of stupidity and brainwashing.
  FTFY.
  
  --
  The real "Libtards" are the Libertarians!
4. Re:"weapons... get cash from Congress" by mjm1231 · 2016-01-30 16:34 · Score: 2, Informative
  
  That won't help at all. The Republican party does a decent job of creating veterans. Helping them, not so much.
  
  --
  Ideology: A tool used primarily to avoid the bother of thinking.
5. Re: "weapons... get cash from Congress" by KGIII · 2016-01-30 17:09 · Score: 1
  
  I describe things only as they are. In war, there is no honor - thus no contempt for the drone pilots. Your job is not to die for your country but to make the other son of a bitch die for his. The idea of honor (so quaintly also included in the Geneva Convention) is gone in war. Chivalry died its final death (even if it ever was there) in WWI.
  That does not mean that some acts are not honorable and some acts are not deserving of contempt. It's not cowardice to not want to give up your life if it can be trivially prevented. Are we cowards for having everyone charge, woman and children, on the hill with rocks when we have rifles?
  I guess we could say it's cowardly but I'm not sure I agree. Where does that line get drawn? Is it static? How far down the rabbit hole do you want to go? Are you a coward for flying higher than FLAC or an ARM? Are you a coward for shooting from a distance? Are you a coward for wearing clothing? How mano y mano do you need to go, needlessly, before it's not cowardice?
  I'd say it's smart to hang out in the drone cave instead of wanting to needlessly risk additional lives. I'd not call them heroic for doing so but I'd not call them cowards either. If there's no need to risk a life of your own, why do it? What the hell? That's not even a good moral code. If you can do the same task with fewer lives of your own side lost then, by all means, do it. You don't needlessly risk lives just out of some sense of chivalry.
  
  --
  "So long and thanks for all the fish."
6. Re: "weapons... get cash from Congress" by whoever57 · 2016-01-30 17:47 · Score: 1
  
  If combat were purely a dick-waving contest (war is to a certain degree, but I'm talking about actual tactical combat), then this might be true. However, combat is about winning, as quickly, efficiently and safely as possible. Very Art Of War-esque
  George S Patton expressed this very well:
  
  The object of war is not to die for your country but to make the other bastard die for his.
  
  --
  The real "Libtards" are the Libertarians!
7. Re: "weapons... get cash from Congress" by Dog-Cow · 2016-01-30 19:31 · Score: 1
  
  You are an idiot.
  Being civilized has never meant being "more" moral (whatever that means). That's a fairy-tale idiots such as yourself spout to feel better about having to live behind a wall.
8. Re: "weapons... get cash from Congress" by SuricouRaven · 2016-01-30 20:58 · Score: 1
  
  Civilisation is self-defining: It means having the characteristics of the culture of the speaker.
  There's a good line from one of the ancient Greek philosophers, I forget which, contrasting the funerary practices of Greeks with those of a far-off people in Africa. He concluded that both of them would consider the practices of the other to be savage, offensive and an abominable practice - and questioned if either can be said to be more right.
9. Re: "weapons... get cash from Congress" by SuricouRaven · 2016-01-30 21:00 · Score: 1
  
  Stupidity and courage can manifest in the same way externally.
  As for brainwashing, it's unavoidable. Basic human nature from childhood - copy the ambient tribal views.
10. Re: "weapons... get cash from Congress" by Dogers · 2016-01-31 03:37 · Score: 1
  
  REAL wars are fought butt naked in the dirt, last man standing wins.
  
  --
  I am a viral sig. Please copy me and help me spread. Thank you.
11. Re:"weapons... get cash from Congress" by Curunir_wolf · 2016-01-31 06:10 · Score: 1
  
  Oh, be serious. The poor should refer to themselves as veterans so when a suicide bomb finally does go off in the United States the Republicans will finally be interested in helping them!
  I hope they do better than the VA under the Democrats - helping them right into the grave!
  
  --
  "Somebody has to do something. It's just incredibly pathetic it has to be us."
  --- Jerry Garcia
12. Re:"weapons... get cash from Congress" by MobileTatsu-NJG · 2016-01-31 10:07 · Score: 1
  
  Actually the Republicans cut their funding in 2015.
  
  --
  
  "I like to lick butts!" by MobileTatsu-NJG (#32700246) (Score:5, Informative)
Hack Back Attack AUTHORIZED! by brian.stinar · 2016-01-30 12:51 · Score: 5, Funny

Unless this has some ridiculous hack-back-attack capabilities, complete with a nerdy looking airman typing as fast as humanly possible to "execute" the hack back attack, Congress may have to start looking a bit closer at these "weapons systems."
We need more toilet paper for the bathroom.
Here you go.
WTF? Why does this toilet paper have pictures of guns on it?
This is weaponized toilet paper. It helps with allocating funding...
1. Re:Hack Back Attack AUTHORIZED! by p0p0 · 2016-01-30 13:13 · Score: 1
  
  Hey as long as it's a 2-ply weapons system I'm all for wide-scale deployment.
2. Re:Hack Back Attack AUTHORIZED! by Velox_SwiftFox · 2016-01-30 14:28 · Score: 1
  
  It's dual-use. One side sandpaper, the other toilet tissue. Reading the instructions is highly recommended.
3. Re:Hack Back Attack AUTHORIZED! by AHuxley · 2016-01-30 15:58 · Score: 1
  
  Yes all that cyber cash is starting to spread wide and deep.
  The back part has been on the books for a while now.
  
  "U.S. spy agencies mounted 231 offensive cyber-operations in 2011, documents show" (August 30, 2013)
  https://www.washingtonpost.com...
  under GENIE for "“.. covert implants,” sophisticated malware transmitted .."
  
  For first time, US military says it would use offensive cyberweapons (Mar 14, 2013)
  http://arstechnica.com/securit...
  "This is an offensive team"
  
  --
  Domestic spying is now "Benign Information Gathering"
extra benefit by frovingslosh · 2016-01-30 13:13 · Score: 1

Plus, if we call it a weapon and we catch you with one, we'll just ignore all of your rights and treat you with "extreme prejudice". And no second amendment bullshit, the second amendment does not say that you have the right to own a firewall.

--
I'm an American. I love this country and the freedoms that we used to have.
Obviously by penguinoid · 2016-01-30 13:30 · Score: 3, Informative

weapon [wep-uh n]
noun
1. any instrument or device for use in attack or defense in combat, fighting, or war, as a sword, rifle, or cannon.
2. anything used against an opponent, adversary, or victim:
the deadly weapon of satire.
3. Zoology. any part or organ serving for attack or defense, as claws, horns, teeth, or stings.
It's no more surprising than storing weapons in an armory.

--
Don't waste your vote! Vote for whoever you want, unless you live in a swing state it won't matter anyways
1. Re:Obviously by Fire_Wraith · 2016-01-30 14:03 · Score: 1
  
  "Gentlemen, you can't fight in here - this is the War Room!"
2. Re:Obviously by quenda · 2016-01-30 21:57 · Score: 1
  
  weapon [wep-uh n]
  noun
  3. Zoology. any part or organ serving for attack or defense,
  
  Or love.
3. Re:Obviously by HiThere · 2016-01-31 11:43 · Score: 1
  
  Esp. if you're a snail. (Look it up.)
  
  --
  
  I think we've pushed this "anyone can grow up to be president" thing too far.
Weaponize TETRAS by Required+Snark · 2016-01-30 13:37 · Score: 1

1. Weaponize Tetras
2. ???
3. Profit!!!
Note: ??? == Congressional Funding, for all values of ???

--
Why is Snark Required?
firewall a weapon? by no-body · 2016-01-30 14:00 · Score: 1

Do i need a weapon license now?
military targets by sittingnut · 2016-01-30 14:10 · Score: 2

so people working on such 'weapons' are now legitimate military targets?
1 million is wrong by Anonymous Coward · 2016-01-30 14:18 · Score: 1

According to Wikipedia:
308,016 active personnel
180,084 civilian personnel
71,400 reserve personnel
106,700 air guard personnel
That is only 666,000 people.
1. Re:1 million is wrong by sunderland56 · 2016-01-30 14:40 · Score: 1
  
  Maybe they counted the 350,000+ wannabees that walk around the shopping mall dressed in camo?
2. Re: 1 million is wrong by cfalcon · 2016-01-30 15:59 · Score: 1
  
  In fairness, reality itself is making a lot less sense than usual. Did you catch them girls at the Trump rally singing "Deal from strength or get crushed every time?"
  Cracked (reasonably liberal site) has a summary, but the mere fact that it is happening is a pretty serious glitch in the Matrix.
  http://www.cracked.com/video_1...
3. Re:1 million is wrong by Whorhay · 2016-02-01 03:11 · Score: 1
  
  The civilian count is likely only counting Civil Servants. Contractors could very easily make up the difference.
The firewall is next to useless .. by tetraverse · 2016-01-30 14:34 · Score: 1

"The weapon .. is basically a big firewall designed to protect the .. network from hackers."

A basic firewall blocks connecting based on a table of IP address and port combinations. If the 'firewall' can't identify malicious connections then it's next to useless. So called 'stateful inspection firewalls' utilize a man-in-the-middle hack, only work by installing a fake cert on the client browser, decrypts passing data and supposedly identifies malicious code. Which begs the question, if the MITM firewall can decryption your communications, what's stopping some malicious third part doing the same. So basically here we have someone diluting security in order to increase security. If the 'firewall' can't identify malicious code then it's next to useless. Most of todays rich web applications can't function without running embedded code. Clicking on a URL that downloads and runs someone else's code makes the firewall next to useless.

stateful inspection firewall
1. Re:The firewall is next to useless .. by Livius · 2016-01-30 15:41 · Score: 1
  
  Maybe 'firewall' is a metaphor and it really is something different.
  (I doubt it, but it is possible.)
2. Re:The firewall is next to useless .. by dbIII · 2016-01-30 16:17 · Score: 1
  
  That's only one subset (there's a lot of traffic that is not encrypted) and IMHO an incredibly stupid thing to do but people still do it. I'm waiting for the obvious to happen and someone in charge of one of the devices with fake certs running off with a pile of credit card details resulting in a bank suing the criminals employer into oblivion. Those increasingly common firewalls with the MITM attack are mostly just there to keep people off facebook on work time and few have worked out how much of a liability they are.
  Change your employee computer usage agreement to include "we will spy on all your credit card transactions" and see how they react, because that is exactly what these things do. If you deploy them you need very good reasons (eg. classified info upstream), need to be able to trust anyone with access to the system and need the users to be aware that everything they send "securely" now has extra people with access to it. Most things like this fail on all counts and do not have a good reason to be there other than somebody read about them in Forbes.
ITAR by PPH · 2016-01-30 14:45 · Score: 1

If it's classified as a weapon, it is covered by ITAR and can't be easily exported. So other nations can't install one of their own from a regulated vendor (country) and block attacks from Pentagon cyber warfare systems or probes by the NSA.

--
Have gnu, will travel.
Re:Nonsense by jc42 · 2016-01-30 15:25 · Score: 1

pgp encryption was classified as munitions so that they could limit its export
Hey, I've still got my t-shirt with the 3-line perl implementation of pgp, and the explanation on the back that it's legally a "munition". I still wear it once or twice a year to some inappropriate event where I know there'll be lots of them furriner types. ;-)
(So far I've never been arrested for wearing it to public events, and none of my acquaintances who also have one have been arrested either. I've been disappointed to not be able to follow the fun that would follow if they actually tried to punish someone for wearing such dangerous t-shirts.)

--
Those who do study history are doomed to stand helplessly by while everyone else repeats it.
Firewall is a weapon system? GOOD by Anonymous Coward · 2016-01-30 15:45 · Score: 4, Interesting

Fair warning/full disclosure: I"m an Airmen in the USAF.
A 'weapon system' is a special designation. Lots of things are weapon systems. A truck is a weapon system. Every weapon system gets a System Program Office (SPO) that is responsible for developing, managing, updating/upgrading/improving the weapon system. Weapon systems have full certification processes that the SPO oversees. Think change management on steroids.
Want to modify the weapon system? Better clear it with the SPO. If you don't, it just became de-certified and you can't deploy it. If it were a plane, that would mean its grounded.
Without knowing more details other than their is a weapon system that is a firewall, that would mean that the hardware and software gets certified before it is deployed (turned on/plugged in). Chances are there are standard configurations that are then mandated.
This also means that its going to be heavily vetted. Chances are its not a commercial-off-the-shelf device., but if it is they'd be taking it apart looking for backdoors and other exploits.
So personally I'm excited by this, but then I know what it means...
Re:Nonsense by cfalcon · 2016-01-30 15:54 · Score: 2

Well, much like you aren't allowed to build a bomb, but you ARE allowed access to gasoline, you're of COURSE permitted the PERL implementation. You're much more likely to self immolate than do damage to anything else, after all...
Re:Trump will save this country by Tulsa_Time · 2016-01-30 16:00 · Score: 1

Never... you are an idiot.

--
5 out of 6 people enjoy Russian Roulette & 6 out of 7 Dwarfs are not Happy
Blaming janitors for shit they clean up? by dbIII · 2016-01-30 16:00 · Score: 1

The ones who deserve contempt are the drone pilots. They're walking, talking embodiments of cowardice, deserving of utter contempt.
If anyone ever deserves contempt it's the people giving the drone pilots contemptible orders. The pilots don't set the missions or pick targets.
Do you also think pilots flying in a clear sky with no risk of anti-aircraft fire are also cowards?
Would you like to play a game? by mdsolar · 2016-01-30 19:03 · Score: 1

How about global thermonuclear war?
bash>
Re:Firewall is a weapon system? GOOD by SuricouRaven · 2016-01-30 21:03 · Score: 1

So the misunderstanding, as so often happens, is because a word has a specific meaning within a certain community that differs from the meaning of that word in the general population?
What will they call it? by haruchai · 2016-01-30 22:28 · Score: 1

After all, they can't call it FW-1 or , if you prefer, Firewall One.

--
Pain is merely failure leaving the body
Re:Firewall is a weapon system? GOOD by Cederic · 2016-01-30 22:32 · Score: 1

It's still not a fucking weapons system.
Good luck btw getting the SPO to respond quickly enough to keep the damn thing patched and properly configured.
Higher salaries by AxeTheMax · 2016-01-30 23:23 · Score: 1

Another idea for a weapons system - more pay for the top brass.
You could justify it in the same way that in many / most companies, senior management claims that higher pay and bonuses for directors motivates them to make more profit. Could you depend on a general who does not get at least, say, twenty times as much as the ordinary airman?
Re:Firewall is a weapon system? GOOD by Anonymous Coward · 2016-01-31 00:02 · Score: 2, Interesting

Disclaimer: I am US military officer (not the same AC as above), not an expert on cybersecurity or the legal details of US foreign weapons sales. I agree that firewalls are not a weapon.

That being said, I suspect that, in addition to the funding aspect mentioned in the summary, this is a legal maneuver to protect the details of this particular firewall. Generally firewalls are fair game for export worldwide (as they should be in my opinion) under the terms of the Wassenaar Arrangement (see Category 5). However that means the USAF has very little legal recourse against anyone leaking the operational details of the firewall, including the source code and what system it is deployed on, to either the intelligence apparatus of foreign powers or to the general public. Classifying the firewall as a weapon brings it under the purview of the Arms Export Control Act of 1976, which has a lot more teeth to it and can carry some pretty severe penalties. By classifying it as a weapon, the USAF blocks their firewall, and only their firewall, from being sold to foreign powers, without limiting the ability of cybersecurity companies to sell firewalls to friendly foreign powers.
Programmer's Creed by Irate+Engineer · 2016-01-31 03:14 · Score: 2

This is my computer. There are many like it, but this one is mine.
My computer is my best friend. It is my life. I must master it as I must master my life.
My computer, without me, is useless. Without my computer, I am useless. I must comment my code in detail. I must hack truer than my enemy who is trying to pwn me. I must pwn him before he pwns me. I will...
My computer and I know that what counts in war is not the darkness of the cubicle, the temperature of the coffee, nor the dust of the Doritos. We know that it is the lines of code we commit. We will commit...
My computer is human, even as I, because it is my life. Thus, I will learn it as a brother. I will learn its weaknesses, its strength, its parts, its accessories, its CPU and its memory. I will keep my computer patched and updated, even as I am patched and updated. We will become part of each other. We will...
Before God, I swear this creed. My computer and I are the defenders of my country. We are the masters of our enemy. We are the saviors of my life.
So be it, until victory is America's and there is no enemy, but peace!

--
Left MS Windows for Linux Mint and never looked back!
Vote for Bernie in 2016!
Re:Nonsense by zippthorne · 2016-01-31 06:15 · Score: 1

In 3 lines of perl.. are you actually implementing encryption, or are you just using some CPAN package and implementing the protocol only?

--
Can you be Even More Awesome?!
Re: You just know... by HiThere · 2016-01-31 11:40 · Score: 1

Perhaps some people looked into the alternatives. If you don't speak Icelandic or Norwegian they start getting iffy.

--

I think we've pushed this "anyone can grow up to be president" thing too far.
Re: Nonsense by jc42 · 2016-02-02 02:44 · Score: 1

Yup; and that's certainly 'leet perl; it looks like line noise. ;-)
But we might dispute the comment that it'd take 300 lines of C. 300 lines of readable, well-formatted C, perhaps, but C can be made nearly as cryptic and compact as perl. It's mainly things like pattern matching and table manipulation and such where C requires the use of libraries to be so succinct. For basic bit/number crunching, perl isn't really much more compact than C.
I wonder if the Obscure C folks have tackled this problem. Maybe I should google it ...

--
Those who do study history are doomed to stand helplessly by while everyone else repeats it.
Redesignate! by DriveDog · 2016-02-03 08:07 · Score: 1

So to get decent funding, we just need to redesignate our physical borders as weapons!