Back
About RSIS
Introduction
Building the Foundations
Welcome Message
Board of Governors
Staff Profiles
Executive Deputy Chairman’s Office
Dean’s Office
Management
Distinguished Fellows
Faculty and Research
Associate Research Fellows, Senior Analysts and Research Analysts
Visiting Fellows
Adjunct Fellows
Administrative Staff
Honours and Awards for RSIS Staff and Students
RSIS Endowment Fund
Endowed Professorships
Career Opportunities
Getting to RSIS
Research
Research Centres
Centre for Multilateralism Studies (CMS)
Centre for Non-Traditional Security Studies (NTS Centre)
Centre of Excellence for National Security
Institute of Defence and Strategic Studies (IDSS)
International Centre for Political Violence and Terrorism Research (ICPVTR)
Research Programmes
National Security Studies Programme (NSSP)
Social Cohesion Research Programme (SCRP)
Studies in Inter-Religious Relations in Plural Societies (SRP) Programme
Other Research
Future Issues and Technology Cluster
Research@RSIS
Science and Technology Studies Programme (STSP) (2017-2020)
Graduate Education
Graduate Programmes Office
Exchange Partners and Programmes
How to Apply
Financial Assistance
Meet the Admissions Team: Information Sessions and other events
RSIS Alumni
Outreach
Global Networks
About Global Networks
RSIS Alumni
Executive Education
About Executive Education
SRP Executive Programme
Terrorism Analyst Training Course (TATC)
International Programmes
About International Programmes
Asia-Pacific Programme for Senior Military Officers (APPSMO)
Asia-Pacific Programme for Senior National Security Officers (APPSNO)
International Conference on Cohesive Societies (ICCS)
International Strategy Forum-Asia (ISF-Asia)
Publications
RSIS Publications
Annual Reviews
Books
Bulletins and Newsletters
RSIS Commentary Series
Counter Terrorist Trends and Analyses
Commemorative / Event Reports
Future Issues
IDSS Papers
Interreligious Relations
Monographs
NTS Insight
Policy Reports
Working Papers
External Publications
Authored Books
Journal Articles
Edited Books
Chapters in Edited Books
Policy Reports
Working Papers
Op-Eds
Glossary of Abbreviations
Policy-relevant Articles Given RSIS Award
RSIS Publications for the Year
External Publications for the Year
Media
Cohesive Societies
Sustainable Security
Other Resource Pages
News Releases
Speeches
Video/Audio Channel
External Podcasts
Events
Contact Us
S. Rajaratnam School of International Studies Think Tank and Graduate School Ponder The Improbable Since 1966
Nanyang Technological University Nanyang Technological University
  • About RSIS
      IntroductionBuilding the FoundationsWelcome MessageBoard of GovernorsHonours and Awards for RSIS Staff and StudentsRSIS Endowment FundEndowed ProfessorshipsCareer OpportunitiesGetting to RSIS
      Staff ProfilesExecutive Deputy Chairman’s OfficeDean’s OfficeManagementDistinguished FellowsFaculty and ResearchAssociate Research Fellows, Senior Analysts and Research AnalystsVisiting FellowsAdjunct FellowsAdministrative Staff
  • Research
      Research CentresCentre for Multilateralism Studies (CMS)Centre for Non-Traditional Security Studies (NTS Centre)Centre of Excellence for National SecurityInstitute of Defence and Strategic Studies (IDSS)International Centre for Political Violence and Terrorism Research (ICPVTR)
      Research ProgrammesNational Security Studies Programme (NSSP)Social Cohesion Research Programme (SCRP)Studies in Inter-Religious Relations in Plural Societies (SRP) Programme
      Other ResearchFuture Issues and Technology ClusterResearch@RSISScience and Technology Studies Programme (STSP) (2017-2020)
  • Graduate Education
      Graduate Programmes OfficeExchange Partners and ProgrammesHow to ApplyFinancial AssistanceMeet the Admissions Team: Information Sessions and other eventsRSIS Alumni
  • Outreach
      Global NetworksAbout Global NetworksRSIS Alumni
      Executive EducationAbout Executive EducationSRP Executive ProgrammeTerrorism Analyst Training Course (TATC)
      International ProgrammesAbout International ProgrammesAsia-Pacific Programme for Senior Military Officers (APPSMO)Asia-Pacific Programme for Senior National Security Officers (APPSNO)International Conference on Cohesive Societies (ICCS)International Strategy Forum-Asia (ISF-Asia)
  • Publications
      RSIS PublicationsAnnual ReviewsBooksBulletins and NewslettersRSIS Commentary SeriesCounter Terrorist Trends and AnalysesCommemorative / Event ReportsFuture IssuesIDSS PapersInterreligious RelationsMonographsNTS InsightPolicy ReportsWorking Papers
      External PublicationsAuthored BooksJournal ArticlesEdited BooksChapters in Edited BooksPolicy ReportsWorking PapersOp-Eds
      Glossary of AbbreviationsPolicy-relevant Articles Given RSIS AwardRSIS Publications for the YearExternal Publications for the Year
  • Media
      Cohesive SocietiesSustainable SecurityOther Resource PagesNews ReleasesSpeechesVideo/Audio ChannelExternal Podcasts
  • Events
  • Contact Us
    • Connect with Us

      rsis.ntu
      rsis_ntu
      rsisntu
      rsisvideocast
      school/rsis-ntu
      rsis.sg
      rsissg
      RSIS
      RSS
      Subscribe to RSIS Publications
      Subscribe to RSIS Events

      Getting to RSIS

      Nanyang Technological University
      Block S4, Level B3,
      50 Nanyang Avenue,
      Singapore 639798

      Click here for direction to RSIS

      Get in Touch

    Connect
    Search
    • RSIS
    • Publication
    • RSIS Publications
    • CO18166 | Evolving Nature of Cyber Conflict
    • Annual Reviews
    • Books
    • Bulletins and Newsletters
    • RSIS Commentary Series
    • Counter Terrorist Trends and Analyses
    • Commemorative / Event Reports
    • Future Issues
    • IDSS Papers
    • Interreligious Relations
    • Monographs
    • NTS Insight
    • Policy Reports
    • Working Papers

    CO18166 | Evolving Nature of Cyber Conflict
    Tan E Guang Eugene

    11 October 2018

    download pdf

    Synopsis

    The understanding of the nature of cyber conflict is evolving and expanding, even as Singapore recognises the threat of deliberate online falsehoods. States need to develop holistic responses to keep up with these changes, and to protect the resilience of their systems and society.

    Commentary

    FOR DECADES cyber conflict has been understood by western governments, practitioners and scholars, to include protection of critical infrastructure and computer networks from breaches of confidentiality, integrity, and availability – otherwise known as ‘hacking’. This understanding has been the basis of international discussions on the applicability of international law to cyber conflict, cyber norms of behaviour, and deterrence of cyberattacks. The focus has been on the technology – networks, hardware and software – instead of on the information carried by the technology.

    There is however an alternative view, led by Russia and China, that traditionally has seen information as an inalienable part of cyber conflict. Russia introduced a draft resolution on information security in the First Committee of the United Nations General Assembly 20 years ago in 1998, and has continued to press for information security to be part of the international conversation on cyber conflict, including submitting a letter in January 2015 (together with China, Kazakhstan, Kyrgyzstan, Tajikistan, and Uzbekistan) to the UN calling for an international code of conduct for information security.

    Focus on Technology

    While the letter was noted by the 2015 UN Group of Governmental Experts (UNGGE), the recommendations proposed by the group squarely focused on the protection on critical information and communications technology (ICT) infrastructure, which was reflected in the norms proposed in the consensus report.

    One reason for this focus on technology instead of information has been the philosophy of many western democracies that any controls over the flow of information would infringe the fundamental right to freedom of expression. Incidentally, respect for the freedom of expression, right to privacy, and other human rights was one of the norms proposed by the 2015 UNGGE.

    This position appears to have shifted ever since the alleged Russian interference in the US presidential Elections in 2016. At various international conferences this year, including the landmark Conference on Cyber Conflict (CyCon) organised by the NATO Cooperative Cyber Defence Centre of Excellence (CCDCOE), keynote speeches addressed how the use of information operations through cyber means is now an important part of cyber conflict.

    Keynotes at CyCon by Alex Stamos (then Chief Security officer of Facebook) and Camille Francoise (Principal Researcher at Google Jigsaw) highlighted how social media is used in state-sponsored information operations, citing numerous examples of how states have used tools to influence elections and promote questionable content to destabilise incumbent governments.

    Protection For Social Media Platforms?

    They also called for cooperation and a common approach to misinformation and manipulation of social media. This leads to the conclusion that social media platforms need protection as much as critical infrastructure like power plants and airports. However, including information operations in the discussion of cyber conflict is not straightforward, because the threats faced by social media platforms are different from those faced by traditional cyber targets.

    First, in information operations, the networks of social media platforms are not being breached, but are being used for their built purpose: spreading information. The challenge is to curb the spread of misinformation without hindering freedom of expression.

    Second, information operations are designed to exploit vulnerabilities not in the technology but in the society being targeted. Tackling them requires expertise in socio-political issues, psychology, communications, and other humanities.

    Third, states can build resilience to cyberattacks through building strong technical defences and conducting exercises and drills. But resilience to information operations is built through institutional trust-building, media literacy education, independent fact-checking, and transparency in communication.

    Fourth, while the international community has already found it difficult to develop international norms of behaviour in cyber operations, where those norms only considered technology, it will be even more complex if information is included in the discussion, because of different states’ differing philosophies on the control of information versus freedom of expression.

    Need for New Policies, New Organisations

    Singapore has also recognised the national security threat that information operations, or deliberate online falsehoods, can pose to society. The Report of the Select Committee on Deliberate Online Falsehoods has provided 22 recommendations for responding to them. Many of the recommendations reflect the multi-faceted nature of information operations as explained in the foregoing paragraphs.

    As the international community begins to recognise information operations as part of cyber conflict, states like Singapore will have to develop new policies and possibly even new organisations to respond to information operations alongside the more traditional cyber security challenges.

    These new policies and organisations will need expertise in a range of areas such as public education, fact checking, and international relations. Cyber conflict will continue to evolve at a rapid rate, and states will need to produce timely and effective measures to prevent these conflicts.

    About the Author

    Eugene EG Tan is Associate Research Fellow at the Centre of Excellence for National Security (CENS), a constituent unit of the S. Rajaratnam School of International Studies (RSIS), Nanyang Technological University, Singapore.

    Categories: RSIS Commentary Series / Country and Region Studies / Cybersecurity, Biosecurity and Nuclear Safety / Non-Traditional Security / Singapore and Homeland Security / South Asia / Southeast Asia and ASEAN / Global
    comments powered by Disqus

    Synopsis

    The understanding of the nature of cyber conflict is evolving and expanding, even as Singapore recognises the threat of deliberate online falsehoods. States need to develop holistic responses to keep up with these changes, and to protect the resilience of their systems and society.

    Commentary

    FOR DECADES cyber conflict has been understood by western governments, practitioners and scholars, to include protection of critical infrastructure and computer networks from breaches of confidentiality, integrity, and availability – otherwise known as ‘hacking’. This understanding has been the basis of international discussions on the applicability of international law to cyber conflict, cyber norms of behaviour, and deterrence of cyberattacks. The focus has been on the technology – networks, hardware and software – instead of on the information carried by the technology.

    There is however an alternative view, led by Russia and China, that traditionally has seen information as an inalienable part of cyber conflict. Russia introduced a draft resolution on information security in the First Committee of the United Nations General Assembly 20 years ago in 1998, and has continued to press for information security to be part of the international conversation on cyber conflict, including submitting a letter in January 2015 (together with China, Kazakhstan, Kyrgyzstan, Tajikistan, and Uzbekistan) to the UN calling for an international code of conduct for information security.

    Focus on Technology

    While the letter was noted by the 2015 UN Group of Governmental Experts (UNGGE), the recommendations proposed by the group squarely focused on the protection on critical information and communications technology (ICT) infrastructure, which was reflected in the norms proposed in the consensus report.

    One reason for this focus on technology instead of information has been the philosophy of many western democracies that any controls over the flow of information would infringe the fundamental right to freedom of expression. Incidentally, respect for the freedom of expression, right to privacy, and other human rights was one of the norms proposed by the 2015 UNGGE.

    This position appears to have shifted ever since the alleged Russian interference in the US presidential Elections in 2016. At various international conferences this year, including the landmark Conference on Cyber Conflict (CyCon) organised by the NATO Cooperative Cyber Defence Centre of Excellence (CCDCOE), keynote speeches addressed how the use of information operations through cyber means is now an important part of cyber conflict.

    Keynotes at CyCon by Alex Stamos (then Chief Security officer of Facebook) and Camille Francoise (Principal Researcher at Google Jigsaw) highlighted how social media is used in state-sponsored information operations, citing numerous examples of how states have used tools to influence elections and promote questionable content to destabilise incumbent governments.

    Protection For Social Media Platforms?

    They also called for cooperation and a common approach to misinformation and manipulation of social media. This leads to the conclusion that social media platforms need protection as much as critical infrastructure like power plants and airports. However, including information operations in the discussion of cyber conflict is not straightforward, because the threats faced by social media platforms are different from those faced by traditional cyber targets.

    First, in information operations, the networks of social media platforms are not being breached, but are being used for their built purpose: spreading information. The challenge is to curb the spread of misinformation without hindering freedom of expression.

    Second, information operations are designed to exploit vulnerabilities not in the technology but in the society being targeted. Tackling them requires expertise in socio-political issues, psychology, communications, and other humanities.

    Third, states can build resilience to cyberattacks through building strong technical defences and conducting exercises and drills. But resilience to information operations is built through institutional trust-building, media literacy education, independent fact-checking, and transparency in communication.

    Fourth, while the international community has already found it difficult to develop international norms of behaviour in cyber operations, where those norms only considered technology, it will be even more complex if information is included in the discussion, because of different states’ differing philosophies on the control of information versus freedom of expression.

    Need for New Policies, New Organisations

    Singapore has also recognised the national security threat that information operations, or deliberate online falsehoods, can pose to society. The Report of the Select Committee on Deliberate Online Falsehoods has provided 22 recommendations for responding to them. Many of the recommendations reflect the multi-faceted nature of information operations as explained in the foregoing paragraphs.

    As the international community begins to recognise information operations as part of cyber conflict, states like Singapore will have to develop new policies and possibly even new organisations to respond to information operations alongside the more traditional cyber security challenges.

    These new policies and organisations will need expertise in a range of areas such as public education, fact checking, and international relations. Cyber conflict will continue to evolve at a rapid rate, and states will need to produce timely and effective measures to prevent these conflicts.

    About the Author

    Eugene EG Tan is Associate Research Fellow at the Centre of Excellence for National Security (CENS), a constituent unit of the S. Rajaratnam School of International Studies (RSIS), Nanyang Technological University, Singapore.

    Categories: RSIS Commentary Series / Country and Region Studies / Cybersecurity, Biosecurity and Nuclear Safety / Non-Traditional Security / Singapore and Homeland Security

    Popular Links

    About RSISResearch ProgrammesGraduate EducationPublicationsEventsAdmissionsCareersVideo/Audio ChannelRSIS Intranet

    Connect with Us

    rsis.ntu
    rsis_ntu
    rsisntu
    rsisvideocast
    school/rsis-ntu
    rsis.sg
    rsissg
    RSIS
    RSS
    Subscribe to RSIS Publications
    Subscribe to RSIS Events

    Getting to RSIS

    Nanyang Technological University
    Block S4, Level B3,
    50 Nanyang Avenue,
    Singapore 639798

    Click here for direction to RSIS

    Get in Touch

      Copyright © S. Rajaratnam School of International Studies. All rights reserved.
      Privacy Statement / Terms of Use
      Help us improve

        Rate your experience with this website
        123456
        Not satisfiedVery satisfied
        What did you like?
        0/255 characters
        What can be improved?
        0/255 characters
        Your email
        Please enter a valid email.
        Thank you for your feedback.
        This site uses cookies to offer you a better browsing experience. By continuing, you are agreeing to the use of cookies on your device as described in our privacy policy. Learn more
        OK
        Latest Book
        more info