WELCOME

Capella has been designated a National Center of Academic Excellence in Information Assurance Education (CAEIAE) by the National Security Agency and the U.S. Department of Homeland Security. Capella’s information security curriculum meets the NSA Committee on National Security Systems standards 4011, 4013, 4014.

This center provides access to resources, tools, and the latest information regarding information assurance as a way to enhance understanding in this field of study.

CNSS Certification

The NSA’s Information Assurance Courseware Evaluation (IACE) Review Committee has validated that Capella’s information security curriculum meets the Committee on National Security Systems (CNSS) National Standards 4011, 4013, (and 4014 coming). Learn what this means to a Capella learner.

ARCHIVES

Current Topics

« Cybersecurity Czar Candidate = Federated Identity?
More Zombies »


Cyber Warfare Alpha Testing?

From Mary Brown | July 9th, 2009

 MSNBC is one of many news sources that today reported on a widespread and sophisticated set of denial of service attacks that interrupted service for a number of South Korean and US government and business related Web sites.  The South Koreans are reported to believe that the source of the attacks is coming from North Korea however that has not yet been proven conclusively.  The attack itself appears more designed to annoy and interfere with public Internet sites than as a serious threat to secure assets.  It does point out however, that these attacks suggest a focused, concentrated and serious effort, possibly backed by some governments, including  the US, to coordinate resources with the objective of using Internet interruptions as a way of disabling or putting another country at a disadvantage.   

Let us know what you think of these activities and what should be done about them, if anything? 

 

Tags: , , , , ,

You can leave a response, or trackback from your own site.

2 Responses to “Cyber Warfare Alpha Testing?”

  1. Julio Font says:
    July 9th, 2009 at 5:37 pm

    This is very scary!

    This attacks perpetrated are another example of how dangerous is to keep corporate networks uncovered on the wild.

    1. Lack of Network definition by design.
    2. Poor routing definition of each network access point.
    3. Lack of packet filtering by protocols.
    4. Poor IDS rules definition

    With this 4 principles of Information Security; DDOS attacks can be drastically reduced by 99.9 %.

    Since these attacks are frequently perpetrated against website or servers that runs them knocking them down via port 80, it must be implemented a great IDS to drop packets malformation; or packets size to keep you server running free of DDOS.

    For more info visit: http://antivirus.about.com/od/whatisavirus/a/ddosattacks.htm

  2. Mary Brown says:
    July 10th, 2009 at 7:40 am

    Having a large number of coordinated nodes or bots hone in on a particular target is not a simple problem to solve for organizations that need to balance resources and that do not have unlimited capacity to spread around. It is fortunate that these attacks were directed at public websites rather than critical infrastructure systems.

    I agree with you that being aware of the issue and doing what is possible to avoid DDOS is a good first step in trying to get our arms around the problem.

Leave a Reply

Let us know what you think. All comments will be reviewed prior to going live. Comments that are profane or obscene, or unrelated to the topic of the post will not be published.

Categories

RESOURCES

NEWS FEEDS

META

CAPELLA CONNECTION

Capella University offers several degree programs which specialize in the information assurance and security field. Visit one of the links below for more information.

To learn more about Capella, please visit http://www.capella.edu or call 1.888.CAPELLA, option 2, to speak to an enrollment counselor.

Capella University