General Lord: Air Force’s Cyber Command will be fully operational in October. (Courtesy of the US Air Force)
To fight future cyberbattles, Air Force recruiting part-time geeks
The Air National Guard is drawing from Microsoft, Cisco, and other high-tech firms.
By John Lasker| Contributor for The Christian Science Monitor/ June 5, 2008 edition
Reporter John Lasker describes a new type of soldier – the cyber-warrior.
Reporter John Lasker
Columbus, Ohio
The TV commercial opens with an aerial view of the Pentagon. “This building will be attacked 3 million times today,” says a concerned voice over a gloomy guitar riff. “Who’s going to protect it?”
The ad – part of the Air Force’s new “Above All” publicity campaign – is partly a not-so-subtle message to Congress: Cyberwarfare is real and the Air Force is the military branch to defend against it. It is also a recruiting tool to overcome one of the biggest challenges facing the year-old Air Force Cyber Command (AFCYBER): finding cyberwarriors to fight its 21st-century battles.
By recruiting in new places and relying heavily on the Air National Guard to find part-time, rather than full-time, employees, the Air Force is meeting with some success by seeking recruits from some of America’s most iconic tech companies.
For example, the 262nd Information Warfare Aggressor Squadron, an Air National Guard unit in Washington State, has tapped into guardsmen employed at Microsoft, Adobe, and Cisco, wrote Air Force Secretary Michael Wynne in a recent article. Based at Lackland Air Force Base in central Texas, the 688th Information Operation Wing recruits from tech-heavy Austin. The Air National Guard is also drawing from Sprint and Boeing for the Kansas-based 177th Information Aggressor Squadron, he added.
“We … must capitalize on the talent and expertise of our Guard and Reserve members who may have direct ties and long experience in high-tech industry,” Secretary Wynne wrote.
So far, AFCYBER has recruited 400 part-time personnel with no added incentives such as pay or benefits, he adds.
Air Force seeks full-time geeks, too
The Air Force is also seeking full-timers for AFCYBER. Future cyberwarriors may be more couch geek than fit flyboy – not “the same kind of folks that perhaps you want to march to breakfast in the morning,” Air Force Col. Jeff Kendall told the Council on Foreign Relations in March. The colonel also suggested the Air Force may have to make exceptions to its entry standards and recruit ex-hackers, who may have committed computer-related crimes or have a felony conviction for unlawfully cracking a network.
Whether the Air Force has already recruited such hackers remains a mystery. “Due to privacy concerns, we do not discuss the background of our employees,” wrote Major Todd White, a public affairs officer for AFCYBER, in an e-mail responding to a reporter’s questions.
The command is still searching for a permanent home but should be fully operational by October, according to Maj. Gen. William Lord, AFCYBER’s provisional commander.
The Air Force’s new emphasis on cyberwarfare is raising questions abroad. What happens if the US moves from defensive measures – protecting the Pentagon’s website from hackers, for example – to offensive operations aimed at foreign websites?
The Air Force is already hinting that it may engage in offensive actions.
“The pervasive nature of pro-jihad Web sites represents a tangible and highly visible example of how our adversaries use elements of cyberspace against us,” wrote Wynne in his recent article. “We cannot allow our adversaries to operate freely there.”
Such computer attacks can be extremely damaging. A series of cyberattacks against Estonia a year ago flooded scores of critical government and commercial websites, making them inaccessible for several days at a time.
US may have cyberwarfare advantage
The military’s new focus on recruiting America’s information-technology professionals, who build some of the world’s most popular hardware and software, is also troubling to foreign nations.
They worry that cyberwarriors from, say, Cisco could use their inside knowledge of the company’s widely used routers and switches to help bring them down in a foreign country. Military recruits from Microsoft with insider knowledge of serious vulnerabilities in the software could give the United States a decided advantage and prove devastating to the target country, says Robert Masse, a self-described reformed hacker who founded Montreal-based computer-security firm GoSecure.
Some countries – notably China – have voiced concerns that Microsoft might pack “back doors” or hidden openings into its software that a US-based insider could exploit. In an effort to curb distrust, in 2003 Microsoft signed a pact with NATO as well as China, Russia, the United Kingdom, and other nations to let them see the source code of its Windows operating system.
But the company is mum on whether it sees ethical problems in its engineers working part time for a military unit dedicated to hacking its products.
“Microsoft does not hold specifics about employees that are supporting the 262nd” Information Warfare Aggressor Squadron, says a Microsoft spokeswoman. “So to this end, there really is no comment on the types of work they are doing.” Cisco and Adobe declined to comment.
Some information-warfare experts praise the Air Force efforts.
“The whole idea of an offensive information-warfare unit, particularly a computer network attack unit, is to build capabilities for possible exploitation down the road,” says Richard Forno, a cybersecurity consultant based in Washington and author of “The Art of Information Warfare.” “It just so happens the US is lucky that the companies building the world’s most popular and widely used IT products are based in the United States.”
( More stories )
Comments
2. Joe | 06.09.08
I hope that us “older geeks” will not be left out of the cyber fight just because we are too old to join the reserves. We may not be able to pass the PFT anymore but our brains are still razor sharp.
3. infosec | 06.11.08
Obviously, the AFCYBER is not really going to protect US network infrastructure (ISPs not mentioned, as well as IDS/IPS plans), but rather planning to make it possible to carry out network attacks. We may see botnet wars very soon then.
4. Nick | 06.11.08
Greg: Not sure what you mean by the AF dumbing down. Sorry if you’ve had bad experiences, but my airmen (who are all 3C0s and first in line as cyber shreds) are sharp as tacks. Regarding skill set obsolescence, I believe that’s exactly what they’re addressing now with the 3C/2E/33S and EWO career field transitions. There is certainly plenty to say about our sister services’ ability to train their comm/electronic personnel, but I believe CYBER is in good hands with the AF.
5. Joe | 06.14.08
I am absolutely ashamed my service has decided to consider hiring felons. And for those officers and DAF civilians who think this is acceptable – maybe you should ponder the long list of disgraced leaders who have since left the ranks. Maybe the AF needs to reconsider the stated but oft ignored core values – integrity, service before self, and excellence in all we do. I guess when it comes to IT we dump integrity and service in favor of pragmatism. Of course most hackers are sloppy too so really all three “values” are dumped in favor of pragmatism.
6. Jaye | 06.17.08
Unless the USAF has a couple of hundred 12 to 16 year old hackers, my money is on the Chinese and the Indians who have a couple of hundred 12 to 16 year old master hackers and are paying them for their successes! Aim High, Above all and they got the whole world in their hands!
7. puzzleboy | 06.30.08
“I am absolutely ashamed my service has decided to consider hiring felons”
Our adversaries have no problem hiring criminal mindsets. The best of the best place priority on gaining a strategical advantage, on winning, not on wasting time pondering the legality or morality of their actions. They think and win with cold logic. Period. It’s only natural that some elite hackers have delved in criminal behavior.
That being said, I don’t believe the AF is hiring felons. At least to my knowledge.
8. xybyrgy | 07.06.08
Of course, the best candidates would be hackers who are smart enough to avoid getting caught and convicted.
9. Solego | 07.25.08
I’m rather offended by that comment, Joe. I am most definitely considered a hacker, though certainly not a convicted felon. However, I hold all three core values very dearly. I would suggest you keep from making such broad, sweeping comments. In regards to hiring felons, we wouldn’t be the first service to do it, and reformed criminal hackers are used by nearly every IT company to test the security of their software anymore, so it’s not a new practice by any means. I would prefer we hire only non-felon computer techs, but the black hat hackers have experience cracking code, plain and simple. They did it for the wrong reasons, sure, but they have real world experience that you just won’t find elsewhere. If we want a lead on our enemies, that is precisely the experience we not only want, but truely need to have. Who else could teach the people without that kind of experience as effectively? If you can come up with a better, practical solution that isn’t purely ideals and opinions, I am certainly willing to listen, and I know others would be too.
Trackbacks/Pingbacks
Leave a Comment
We do not publish all comments, and we do not publish comments immediately. The comments feature is a forum to discuss the ideas in our stories. Constructive debate – even pointed disagreement – is welcome, but personal attacks on other commenters are not, and will not be published.
Please do not post any comments that are commercial in nature or that violate copyrights.
Finally, we will not publish any comments that we regard as obscene, defamatory, or intended to incite violence.
1. greg | 06.07.08
I have been with the Air Force for over 10 years and in the military for over 22 years and while i am always hopeful for the best, It is my experience that the Air Force has been “dumbing-down” for a number of years now. In doing so they are in the process of becoming obsolete and the skill sets of the modern Army continually are increasing the Two services will have to once again become one as manned flight is already falling to the wayside of history. We must seek to balance the force in a manner that will lead to the most effective types of units and exploit the specialized and unique capabilities that an Air Force of the future will bring to the fight.
AF Cyber Command clearly is a step in recognizing this facet of the evolving Battle field best of luck to the bases competing for this new HQ’ers and training site.