Editorial

Welcome to the second volume of JIW. The journal was launched a year ago in September 2001 and has gone from strength to strength. The quality of the papers presented for review has generally been excellent. This issue not only reflects this high standard but also the variety of topics covered by the Information Warfare area. They range from the technologically oriented to those more concerned with social aspects. 

The first paper is by Anchor et al who describe their research into detecting network attacks. The next six papers were first presented at the European Information Warfare and Security Conference in London during July, 2002. These amended papers were chosen out of those presented at the conference. Bigelow discusses the future of information warfare in the military context, whilst Davey and Armstrong examine the application of counter-intelligence and intelligence to cyber-warfare. Valli looks at the vulnerability of Internet connected appliances in the home to information and physical attack. Slay introduces a cultural framework for coalition operations, whilst Huhtinen and Ranatpelkonen look at the Finnish military perception management from the Russia-Finnish War to the present day. Xenitellis takes us back into the technical realm by examining the vulnerability of event driven systems to attack. 

The next three papers are technically oriented. Aslan looks at the specialist area of encryption. Ghosh describes some research carried out last year on the vulnerability of networks to cyber-criminals. Finally, Papadaki describe their study into the enhancement>of intrusion detection systems.

This diversity is the strength is this journal, so please contribute and encourage your colleagues to do the same. The editors welcome papers from both practitioners and academics. The emphasis is on quality, interest and relevance. As a reader, we hope you find the papers of significance to your employment, research, or just general curiosity.

Bill Hutchinson

October, 2002

Table of Contents

Paper 1: Detecting Computer Network Attacks Using a Multi-objective Evolutionary Programming Approach

K.P. Anchor, J.B. Zydallis, G.H. Gunsch, G.B. Lamont 

Paper 2: Forces, Targets, and Effects:  Militarising Information Warfare

Lt. Col. B. Bigelow 

Paper 3:Dominating the Attacker:  Use of Intelligence and Counterintelligence in Cyberwarfare

J. Davey, H. Armstrong

Paper 4: Personalised Information Warfare – The New Homeland Defence

C. Valli

Paper 5: A Cultural Framework for the Interoperability of C2 Systems

J. Slay

Paper 6: Perception Management in the Art of War.  A Review of Finnish War Propaganda and Present-Day Information Warfare

A. Huhtinen, J. Rantapelkonen

About The Authors

Kevin P. Anchor received a B.S. in Electrical Engineering from Clemson University in 1991 and an M.S. in Electrical Engineering from the Air Force Institute of Technology in 1995.  He is a Major in the United States Air Force and is currently a Ph.D. Candidate at the Air Force Institute of Technology.  His research interests include information system security, evolutionary algorithms, and artificial intelligence.

Dr Helen Armstrong is a Senior Lecturer within the School of Information systems at Curtin University, Perth Western Australia.  Helen’s work experience includes accounting, programming, systems analysis, project management, IS management, IS auditing, IT consulting and university lecturing.  Her interests in the area of security include computer crime, network security, Internet security, information warfare, biometrics and security management.  Helen’s doctoral studies related to the security of medical informatics.  Helen is the international chair of the IFIP WG11.8 on Information Security Education.

Heba K. Aslan is an assistant professor at the Informatics Department in the Electronics Research Institute, Egypt.  Her fields of interest include encryption protocols, key distribution, and intrusion detection systems.  She obtained a BSc, MSc, and PhD from Cairo University in 1990, 1994 and 1998 respectively.

Lieutenant Colonel Brad Bigelow currently serves as the Project Manager for the NATO Messaging System in the NATO Consultation, Command and Control Agency (NC3A) in Brussels, Belgium.  A career communications and acquisition officer, he has held a variety of operational and staff assignments, primarily in military space programs.  He served on the staff of the President’s National Security Telecommunications Advisory Committee (NSTAC) and as the Program Manager for Information Operations Systems within the US Air Force’s Electronic Systems Centre.  He is a graduate of the University of Washington and the Air Force Institute of Technology.

Jack Davey is the Assistant Director, Defence Security Authority for the Australian Department of Defence in Canberra, Australia.  Prior to joining the Department of Defence, Jack worked in electronic engineering and communications in the aviation industry.  One of Jack’s current areas of responsibility is security education within defence and the training of cyberwarriors.

Steven Furnell PhD is the head of the Network Research Group at the University of Plymouth (UK), a post-graduate and post-doctoral team currently encompassing twelve active researchers, and associated academic staff.  His current research interests include IT security, Internet and WWW technologies and mobile systems, and to date, he has published over 75 research papers in these areas.  Dr Furnell is the author of a new book, ‘Cybercrime: Vandalizing the Information Society’, published by Addison Wesley.

Ajoy Ghosh has 11 years experience in the area of computer crime, IT Security and Privacy.  After  graduating as a Computer Engineer, he spent a number of years investigating computer related crimes for law enforcement.  He joined Westpac as an IT Audit Manager and later an Information Security Manager, before becoming the Architecture Director, e-Security for Unisys Australia.  His current role is Principal Consultant, 90 East (Asia Pacific) Pty Ltd.  Ajoy advises a number of industry and government committees on information security and cyber-terrorism and is an editorial advisor to the media.  He lectures in cybercrime and forensics at the University of Technology, Sydney.

Gregg Gunsch (Lt Col, USAF, retired) has a BSEE from the University of North Dakota (1979), MSEE from the Air Force Institute of Technology (1983), and a PhD in Electrical Engineering from the University of Illinois at Urbana-Champaign (1991).  He is an Assistant Professor of computer Engineering, currently responsible for the information systems security/assurance (information warfare) curriculum at the Air Force Institute of Technology.

Aki Huhtinen, Major G.S., PhD works in the Department of Management and Leadership Studies, at the National Defence College in Helsinki, Finland.  In 1989, he graduated as a signals officer at the Military Academy of Finland.  In 1996, he obtained his PhD at the University of Tampere Finland.  The topic of his thesis was theoretical philosophy and information management.  In 2000, he graduated as a General Staff Officer at the Finnish National Defence College.  Presently, he is responsible for military leadership, especially in the area of information warfare.

Gary B. Lamont is Professor of Electrical and Computer Engineering, Department of Electrical and Computer Engineering, Graduate School of Engineering and Management, Air Force Institute of Technology,  WPAFB, Dayton, OH, 45433, USA, B. of Physics, 1961; MSEE, 1967, PhD, 1970; University of Minnesota.  His research interests include parallel and distributed computation, evolutionary computation, artificial immune systems, combinatorial optimisation problems, formal methods, software engineering, digital signal processing, intelligent an distributed control systems, computational and numerical methods, and computer aided design.  Dr. Lamont has authored various textbooks and book chapters, and was also an engineering systems analyst for the Honeywell Corporation. 

Shih-Yao (Jim) Lee holds an MSC in Integrated Services and Intelligent Networks Engineering from University of Plymouth.  His Masters project, entitled ‘Methods of Response to IT System Intrusions’, was conducted in association with the Network Research Group.  Since completing the project, Jim has become a researcher at the TamKang University in Taipei, where he is working with Bluetooth Technologies.

Benn Lines Ph.D has 21 years industrial experience in commercial networking and telecommunications projects with British Telecom and the World Bank, and has lectured in related topics for 25 years at both MSc and undergraduate levels.  His principal research interests are focused around Quality of Service issues for Internet systems, but he is also involved in the supervision of IT security projects in the areas of intrusion detection and authentication.  Dr Lines publishes in international journals and conferences, and is also significantly involved in network-related consultancy work for industry.

Maria Papadaki was born in Iraklio of Crete, Greece and studied Informatics in the Technological Educational Institute (T.E.I.) of Athens.  After her graduation in November 1997, she worked for two years for the Library and the Network Operating Centre of the Athens School of Fine Arts.  Funded by the State Scholarships Foundation (SSF) of Engineering at University of Plymouth, UK, and is currently a PhD student within the Network Research Group of the University.  Current interests include intrusion detection and methods of automated system response. 

Maj. Jari Rantapelkonen is a career officer in the Finnish Defence Forces, currently assigned to the Information Warfare Sector in defence staff.  He has held a variety of command and staff positions as a signal and information officer in Finland.  He has also served in the peacekeeping mission (UNDOF) in the Middle East and the first ever preventive peacekeeping mission (UNPREDEP) in Macedonia Balkans.  He has written and lectured widely on the theory and practice of Information Warfare and Information Operations, and participated in numerous IO conferences around the world.  He has published several articles on information warfare in the Finnish military journals Viestimies, Sotilasaikakauslehti and Kylkirauta.  He has also written and published many books on military science.  He is co-author of Imagewars, Beyond the Mask of Information Warfare and Psychological Operations, and From Propaganda to Information Operations.  He is a graduate of Finnish Cadet School and Finnish War College.

Paul Reynolds Ph.D is currently Orange’s technical specialist in Internet based mobile telecommunications and a Visiting Professor at the University of Plymouth, UK.  Prior this he led European Community funded research into distributed computing for mobile telecommunications. His previous research focused upon network design and modelling techniques in which he has a PhD.  He has published numerous technical papers, has presented many tutorials and short courses in various countries.  Paul has also been the technical leader of the Mobile Wireless Internet Forum and is internationally recognised as an expert in ‘mobilising the Internet’.  In 1994 he was elected as a Fellow of the IEE for his contributions within the field of Mobile Telecommunications.

J. Slay is a Senior Lecturer in the School of Computer and Information Science at the University of South Australian and the Course Coordinator for Secure and High Integrity Systems.  She is currently Director of International Programs within the school and manages the Offshore programs taught in various parts of Asia.  She has an interest in IT security, and is publishing in this area as well as in information systems, particularly C2 systems.  She is also carrying out research in e-commerce and adaptive web-based multimedia systems and supervising research in the technical and pedagogical design of online and multimedia learning environments.  She leads the cross-disciplinary Technology in Higher Education Research Group within the Advanced Computing Research Centre.

Craig Valli is a computer  security lecturer and researcher in the School of Computer and Information Science at Edith Cowan University. His research interests are in the areas of network security, defensive network deception, network intrusion detection, firewall, SOHO security and beowulf computer clustering.  Craig consults to industry on network management and network security issues and holds several industry level networking certifications.

Symeon (Simos) Xenitellis is a postgraduate student at Information Security Group for Royal Holloway, University of London, United Kingdom.  His research interests include security in event driven systems, software security and static analysis.  He has an M. Sc in Information Security from Royal Holloway, University of London, United Kingdom.

Jesse B. Zydallis received the B.S. and M.S. degrees in computer engineering from the New Jersey Institute of Technology in 1997 and 1998, respectively.  He is a Captain in the United States Air Force and has had assignments in engineering and program management positions.  He is currently a Ph.D candidate at the Air Force Institute of Technology.