Paper 1: Organisational Security Requirements: An Agile Approach to Ubiquitous Information Security

Dr. A.B. Ruighaver 

Business Security Research and Privacy Group
Deakin University

Email: tobias@deakin.edu.au 

Abstract: This paper proposes to address the need for more innovation in organisational information security by adding a security requirement engineering focus. Based on the belief that any heavyweight security requirements process in organisational security will be doomed to fail, we developed a security requirement approach with three dimensions. The use of a simple security requirements process in the first dimension has been augmented by an agile security approach. However, introducing this second dimension of agile security does provide support for, but does not necessarily stimulate, innovation. A third dimension is, therefore, needed to ensure there is a proper focus in the organisation’s efforts to identify potential new innovations in their security. To create this focus three common shortcomings in organisational information security have been identified. The resulting security approach that addresses these shortcomings is called Ubiquitous Information Security. This paper will demonstrate the potential of this new approach by briefly discussing its possible application in two areas: Ubiquitous Identity Management and Ubiquitous Wireless Security. 

Keywords: Security requirement engineering, agile security, ubiquitous security, ubiquitous identity management, wireless intrusion detection

Paper 2: Twitter as a Vector for Disinformation

P. R. Chamberlain 

School of Computer & Security Science

Edith Cowan University, Australia

Email:  prchamberlain@arkem.org 

Abstract: Twitter is a social network that represents a powerful information channel with the potential to be a useful vector for disinformation. This paper examines the structure of the Twitter social network and how this structure has facilitated the passing of disinformation both accidental and deliberate. Examples of the use of Twitter as an information channel are examined from recent events. The possible effects of Twitter disinformation on the information sphere are explored as well as the defensive responses users are developing to protect against tainted information. 

Keywords: Twitter, Disinformation, Social Networks, Information Operations

Paper 3: Command, Influence and Information in 3D Tactics

Chris Flaherty

E-mail: chris.flaherty@greymans.com 

 Abstract: This paper has three objectives. Firstly, critically examine the triatic relationship between ‘Command’, ‘Influence’ and ‘Information’ in three dimensional (3D) tactics. Secondly, explain how this relationship enables the 3D tactics of rhizome manoeuvre. Thirdly, explain the role of command, information and influence as a mechanism for achieving battle coordination, and operational supremacy. In undertaking addressing these questions, the paper reviews the current literature on 3D tactics, outlining how this approach has developed and its major conclusions, leading to the key question posed in this paper – How does Boyd’s OODA conception actually work in circumstances illustrated by 3D tactics scenarios? And, how do people actually communicate information to others in this complex environment? As well, the paper looks at a group of corollary issues, as to the origin and nature of the distinction between command and control (C2), and the alternative command and influence (CI). As well, with in this context the internalisation at an individual level of information concepts and the implications of these in terms of understanding the different C2 and CI paradigms. 

Keywords: 3D Tactics, Information warfare, OODA loop, C2, Counter terrorism.

Paper 4: Information Warfare, Globalism, and the Curious Case of Music

D. O. Davis, Olive Informatics

E-mail:    don@oliveinformatics.com 

 Abstract: The concept of globalism can be traced back thousands of years, most remarkably, to ancient Babylonia.  Information warfare has enabled this enchanting concept to survive into the present Age. The combined application of perception management and music is a powerful case in point. This enigmatic information warfare technique was used to influence Babylonian minds – and is being used for similar purposes today. Whether employed to advance hostility or peace, such techniques subtly redefine ages-old concepts of individual privacy and security.  Any serious efforts against their abuse must entail proactive and reactive global information security initiatives.

 Keywords: Babylonia, Globalism, Information Warfare, Music, Occult, Propaganda, Technology

Paper 5: Tactics of Attack and Defence in Physical and Digital Environments: An Asymmetric Warfare Approach

A Ahmad, Department of Information Systems,

University of Melbourne, Australia
Email: atif@unimelb.edu.au 

Abstract: Asymmetric warfare is frequently described as a conflict between two parties where the ‘weaker’ party aims to offset its comparatively fewer resources by making use of particular tactical advantages. This paper develops a concept model that captures the leverage available to the ‘weaker’ party over the ‘stronger’ party simply because the former is attacking rather than defending. Points of leverage include choice of timing, location, method of attack, best use of limited resources and time to prepare. The leverage model is then used to discuss tactics from the perspective of the defending party. In particular, a defense-in-depth approach negates much of the natural leverage available to attackers by forcing them to engage targets under conditions that maximize the defenders own advantages.  

Keywords: Asymmetric Warfare, Information Warfare, Information Security, Physical Security, Defense-in-Depth, Network Security