Jan 23, 2013

Cybersecurity (and cyberbureaucracy) key for PM’s blueprint

The government's new National Security Strategy employs the same hysteria about cybersecurity that we've seen from other governments.

Bernard Keane — Politics editor

Bernard Keane

Politics editor

The Prime Minister has flagged "potentially devastating cyber-attacks" as a priority in the government's new National Security Strategy and announced the establishment of new "Australian Cyber Security Centre" to combine existing cyber security functions across Attorney-General's and its agencies the AFP, the Australian Crime Commission and ASIO, and Defence. Launching the strategy in a speech this morning, the Prime Minister warned that "malicious cyber activity will likely be with us for many decades to come, so we must be prepared for a long, persistent fight" and that the government would "work closely with industry and international partners to develop a set of global ‘norms’ for online behaviour." The strategy, posted belatedly by the Department of Prime Minister and Cabinet states:
"The growing number of malicious cyber incidents has juxtaposed the dangers of a hyper-connected world against the considerable economic and social benefits afforded by the Internet. Our national security and law enforcement agencies are now focusing more urgently on how best to combat cyber-based threats, but not at the expense of Australians’ privacy and the broader benefits the online environment brings ... "Foreign intelligence services and criminal organisations can use the Internet to infiltrate systems, extremists can more easily coordinate, communicate and radicalise, and the Internet can be a means to promote hate and division among community groups."
The establishment of a new cyber security agency in particular raises significant questions because it would combine a variety of different roles and personnel operating under different remits and laws: ASIO officers, for example, have very different functions and restrictions compared to the Australian Federal Police, while Defence's primary civilian cybersecurity role is currently provided via the Defence Signals Directorate's Cyber Security Operations Centre, which acts as the government's in-house cybersecurity watchdog and coordinates responses to major cyber attacks. The DSD is currently not permitted to gather intelligence on Australians. The strategy also speaks of "international cooperation in the investigation of cybercrime offences, including through our accession to the Council of Europe’s Convention on Cybercrime". Legislation for Australia to accede to the cybercrime convention was passed last year and, among other things, enabled foreign governments to demand the retention of information of Australians' internet usage. The government currently has over 40 proposals to expand national security laws up for consideration by a parliamentary committee, many of them revolving around increasing law enforcement and intelligence agency powers to monitor and record Australians' internet usage. The committee's report has been delayed beyond the end of 2012. Cybersecurity was one of three priorities identified by the Prime Minister in her speech. The first was effective partnerships both domestically and internationally aimed at more efficient use of resources. "The National Security Decade was a time of rapid ramp-up in resources," she said, referring to the post-9/11 period. "Now, inevitably, we are in a period of consolidation and we need to get the most value out of every dollar expended. " The third priority was "enhanced regional partnerships", though clearly anchored in our support for the United States, specifically singled out as "our ally" by Gillard, compared to "China, Indonesia, India, Japan and Korea", with whom she said we are "building deeper relationships." The strategy also flags greater information sharing across not merely government but with the private sector, saying:
"National security agencies must be able to manage and share information securely and quickly with domestic and international partner agencies. More information sharing is also needed between government and business to create a common national risk picture and focus our collective efforts."
The Prime Minister's rhetoric about cybersecurity matches increasing efforts from other western governments to portray cybercrime, "cyberwarfare" and "cyberterrorism" as imminent threats not just in economic terms, but as possible sources of mass casualty attacks. Such efforts are frequently used as justification for laws extending government control of critical infrastructure (one of the Australian government's 44 proposals) and curbing online privacy, as well as increased funding for cybersecurity companies at a time when other defence contractors are dealing with more austere fiscal environments. Examples of how claims of potential "mass casualty" cyberattacks have proven false are easy to track down. As a number of sceptics have pointed out, much of this hysteria involves conflation of a range of quite separate threats, from old-fashioned espionage, to fraud, to actual terrorism, to online activism. This also raises questions about the remit of any new cyber-bureaucracy, given it will potentially be dealing with everything from spying to credit card theft to terrorism and activism. The Prime Minister's rhetoric about developing "global norms" for online behaviour also echo the rhetoric of other governments, most notably France's then-president Nicolas Sarkozy, who in 2011 claimed the internet freedom advocates believed the internet to be "a parallel universe, freed from the rule of law". In fact, the online world has norms, and many of them; they are simply norms that governments and corporations dislike, because they are norms that reflect the reality of easy, rapid distribution of information and global interconnectedness, rather than the norms of centralised control.

Free Trial

You've hit members-only content.

Sign up for a FREE 21-day trial to keep reading and get the best of Crikey straight to your inbox

By starting a free trial, you agree to accept Crikey’s terms and conditions


Leave a comment

13 thoughts on “Cybersecurity (and cyberbureaucracy) key for PM’s blueprint


    The last sentence really sums it up: it’s a war against the paradigm shift. As the internet democratises information and throws open the possibilities of individuals and groups to communicate, governments are working hard to tamp it down, constrict it, and monitor everyone down to the last keystroke.

    As if the war on terrorism wasn’t abstract enough, now we have to have a perpetual war against ‘cyber terrorism’, something actually chimerical and unreal.

    Be alert AND alarmed, the government is here to watch you.

  2. gapot

    The PM and the AG are people who take advice from their public servants, who one would hope have no interest in giving false advice. Our MPs have very little knowledge about how the internet works so lets hope they are getting real advice.

  3. Mike Flanagan

    Chris Dunne;
    Be aware and forewarned I say and then got on with it. If the net facilitates the communication of most of the population on the earth then they will have to committ enormous amounts of IT power and resources to keep all our comments in their correct files.
    Flood them with the facts of the populaces’ perceptions of their actions and inactions.

  4. jesse mandrigorian

    or just get behind a vpn

  5. Harry Rogers

    The incredibly depressing thing about this speech is that the Liberal Party would just fall into line on this legislation. We need more clone sof Nick Xenophon please help Nick.

  6. Mike Flanagan

    Thanks jesse m, but I think they will find their way around that one (vpn).
    Even before the internet, they all had copious files on anyone that displayed a contrary attitude to their perceived norm.
    In fact I was reliably informed by one of the archivist with a badge, that they measured their interest in the file’s focus by the height of the file in inches.
    And that was before micro fish and microfilm.

  7. Mike Flanagan

    Bernard, I have enjoyed your informative articles on cyber security and your efforts to expose the overview position of all of governments and its impact on our privacy.
    But i would like to add to the discourse with the observation that the Media are major data storers of information. Their very Mast-Heads are valued by an implied assesment of the value of their library and stored intellectual value.
    Perhaps an expose of the MSM and Publishing companies treatment and protections of their own files and libraries would be in order.
    The current secrecy and privacy statement and disclaimers are really simplistic legalese to protect the provider of the statement rather public.

  8. Mike Flanagan

    Drat it! I hadn’t finished Bernard, before some command automated itself this end.
    THe last sentence should be finished with the word’..,alone’
    We have seen the impacts in Britain when the Murdoch’s infringed their responsibility to the community and thumbed their fingers at bussines and public ethics.
    Large sections of industry along with the Digitised and Aborcide sections of the media are gathering enormous amounts of data on everything and everyone.
    Keep up the good and proven Bernard.

  9. Mike Flanagan

    And Mother Superior in her dotage seems to have lost in the holy book of referral, my post at 7

  10. Apollo

    There have been times when I visited Crikey and got login someone else’s account. Total strangers’, not the people I know who use my computer.

    Weird. Data crossed over or sumfink.

Share this article with a friend

Just fill out the fields below and we'll send your friend a link to this article along with a message from you.

Your details

Your friend's details