Monthly Archives: November 2021

This piece by General Joseph Votel (Ret.) and Lt. Gen. Michael K. Nagata (Ret.) and was first published by our friends at the Middle East Institute.

Lt. Gen. (ret.) Michael K. Nagata is a distinguished senior fellow on national security at MEI. He retired from the U.S. Army in 2019 after 38 years of active duty, with 34 years in US Special Operations. His final position was director of strategy for the National Counterterrorism Center from 2016 to 2019.

Gen. (ret.) Joseph L. Votel is a distinguished senior fellow on national security at MEI. He retired as a four-star general in the U.S. Army after a nearly 40-year career, during which he held a variety of commands in positions of leadership, including most recently as commander of CENTCOM from March 2016 to March 2019. 

OPINION – The United States and Pakistan have had a complex and often disappointing “love-hate” relationship since 1947 — one severely tested during the 20-year U.S.-led intervention in Afghanistan. We believe the time has come for serious policy consideration of whether and how both nations can achieve a more strategically beneficial and sustainable post-intervention relationship between the American and Pakistani governments and their populations.

As we consider a new policy, the U.S. military withdrawal from Afghanistan after two decades of leading the international coalition is almost complete. Early indications are that Afghanistan is increasingly likely to descend into significant instability and possibly serious fracture, which will have unwelcome consequences for the Afghan people and all of Afghanistan’s neighbors. It is already clear that international terrorist groups like al-Qaeda and Islamic State-Khorasan Province will continue to enjoy and probably grow their safe havens.

Whatever U.S. strategic concerns may be about the future of Afghanistan, the course and direction of Pakistan’s strategic choices in coming years will also matter to the United States. There are a variety of reasons for this.

First, Pakistan is a nuclear weapon state. Decades of investments in nuclear weapons by Pakistan and India, compounded by unrelenting and mutual historical, religious, cultural, and political antagonism between them, make this one of the world’s most dangerous flashpoints.

Second, all of the countries Pakistan borders are consequential for the U.S. Pakistan also has significant religious, cultural, and economic ties to other Muslim states such as Turkey and Saudi Arabia. In an era of “great power competition,” while Pakistan may not be one of the principal players, its network of relationships can be of strategic benefit to any of the great powers now involved, including the U.S. and China.

Third, despite its significant political and economic difficulties, Pakistan has a growing technology sector. Its youthful population and worldwide diaspora of Pakistani doctors, scientists, academics, and other professionals have become an increasingly important part of the global community.

The Cipher Brief hosts private briefings with the world’s most experienced national and global security experts.  Become a member today.

As long-time veterans of South Asia, both of us understand the sources of “weariness and wariness” that U.S. policymakers, in both Democratic and Republican administrations, often associate with strategic discussions of Pakistan. We have both seen the U.S. government’s reluctance toward undertaking any kind of strategic interaction or rapprochement with Pakistan because of previous disappointments or perceived betrayals. Understanding the enormous complexities of Pakistan’s relationships, influence, and strategic choices in the South Asia milieu can be intellectually challenging and draining.

Yet, we have both concluded that the only thing harder than establishing a functional and mutually beneficial relationship with Pakistan is living without one. Given unstable borders, a nuclear standoff with India, the continued presence of terrorist organizations, and the high potential for all of this to further disrupt our interests, there is no better alternative.

Among those areas that we believe worth exploring with the Pakistanis are these:

First, the possibility of planning, along with other like-minded international actors (both state and non-state), to manage the consequences of significant political instability and human suffering emerging from Afghanistan, including the possibility of substantial refugee flight into Pakistan. Indeed, the Pakistanis have long and miserable memories of the surge of Afghan refugees after the Kabul government collapsed in the 1990s and have consistently expressed deep concerns about a possible repeat resulting from the U.S. withdrawal now nearing its completion.

Second, the possibility of counterterrorism cooperation against any terrorist threat that emerges from Afghanistan and prevents it from sowing further instability across the region. We do not consider it likely that Pakistan will allow any positioning of U.S. intelligence or counterterrorism elements within its borders. Still, there may be other ways (e.g., working groups, forums, or exchanges) to foster better cooperation if a threat emerges from Afghanistan that is of concern to our mutual interests.

Third, the possibility of enlisting Pakistan cooperation, and that of India, toward some type of partial de-escalation of tensions along their common border and, with it, even a slight amelioration of the nuclear weapons threat. It is instructive to recall that, before 9/11, Pakistani President Pervez Musharraf and Indian Prime Minister Atal Bihari Vajpayee initiated a dialogue about the de-escalation of tensions that included the highly emotional issue of Kashmir. However, talks broke down without significant agreement. While we recognize this is an extraordinarily complex and fraught issue for the U.S. to embrace, given all of its other strategic challenges, the specter of a potential nuclear conflict in South Asia should at a minimum prompt us to ask ourselves, “why not at least try?” Indeed, U.S. antagonists such as China would probably take a dim view of such efforts, and we believe that might be a reason for doing so rather than a reason to flinch from it.

Go beyond the headlines with expert perspectives on today’s news with The Cipher Brief’s Daily Open-Source Podcast.  Listen here or wherever you listen to podcasts.

We have long heard U.S. policy and operational practitioners cite phrases such as “never underestimate the Pakistanis’ ability to disappoint us.” But, unfortunately, most American policymakers do not understand how often we have heard the Pakistanis say the same thing about Americans. Thus, both sides have longstanding “neuralgias” about the other. As we end our Afghan campaign, now is the time to move beyond our neuralgias and carefully weigh the strategic costs of whether trying to somehow partner with Pakistan is more, or less, than the cost of failing to do so. We believe, in the long run, it is likely to be less costly.

The views expressed in this piece are those of the authors.

Read more expert-driven national security insights, perspective and analysis in The Cipher Brief

The post OPINION: The Future of US Cooperation with Pakistan appeared first on The Cipher Brief.

find more fun & mates at SoShow now !

Germany has been plunged into a “nationwide state of emergency” because of its current high level of Covid infections, acting health minister Jens Spahn has said. He also refused to rule out further lockdowns.

Read more

FILE PHOTO © Reuters / Kai Pfaffenbach
Germany sets ‘grim’ Covid record & eyes new curbs

The situation is serious, the dynamic is unbroken,” Spahn told a press conference Friday.

The incidence has increased fivefold in four weeks. We see sadly high values in the death rate. We are in a national emergency.”

Spahn refused to rule out the possibility of another lockdown, saying that, in such a drastic health situation, “we can’t rule anything out.”

The head of the Robert Koch Institute (RKI), Lothar Wieler, added to the gloomy picture by saying that “all of Germany is one big outbreak,” with an estimated half a million active Covid cases in the country – and numbers rising. For the third day in a row, more than 50,000 cases have been registered in the country, while the death toll in Germany since the start of the pandemic is above 98,700, according to figures compiled by the RKI.

Wieler added that, with many hospitals already overwhelmed, more should be done to tackle the spread of the virus. Besides obvious measures such as vaccination and wearing masks, he also suggested closing poorly ventilated bars.

On Thursday, lawmakers in the Bundestag approved new measures in the fight against coronavirus, including requirements to prove vaccination status, a negative test, or proof of recovery from infection before employees can access communal workspaces or use public transport. The measures will have to be passed by the upper house before they can take effect.

Neighboring Austria announced on Friday that it would enter full lockdown as of Monday, November 22.

Think your friends would be interested? Share this story!

find more fun & mates at SoShow now !

A strike of more than 20,000 metal workers in Cadiz, Spain has halted the operations of key manufacturing plants, including Airbus and Alestis, with barricades erected, roads blocked, and vehicles burned.

Cadiz, the capital of the southernmost province of the country, has become one of the main sites of protests over working conditions. The Avenida de Astilleros is currently closed to traffic, with protesters burning vehicles.

Picket lines also blocked access to major shipbuilding and industrial sites of key local companies, such as Airbus, Navantia, Dragados, Alestis, and Acerinox, causing their work to be interrupted. 

Protesters also cut off access to major industrial zones in Puerto Real and Campo de Gibraltar with barricades and bonfires. Rail traffic is also being obstructed, with pipes thrown onto the tracks.

The national police have been deployed to bring the situation under control and to protect the industrial sites. At one point on Tuesday, the strike turned into a full-scale confrontation, with protesters throwing rocks and screws at police, who reacted by firing rubber bullets. One person was arrested. 

The Federation of Metal Entrepreneurs (FEMCA), which represents major employers in the region, reiterated earlier its offer for dialogue with the workers, while stressing that the union’s requests were “unjustified” and “disproportionate.”

The workers say they will continue the strike until FEMCA provides them with an acceptable agreement.

Think your friends would be interested? Share this story!

find more fun & mates at SoShow now !

As infections are rising again, scientists all around the world are rushing to fight the danger, offering a choice of new treatments and unusual variants of vaccines.

Levels of contagion are setting new records, hospitals are overwhelmed, governments are starting to introduce lockdowns, and not only for unvaccinated people ​​– the picture of the fight against Covid-19 looks quite disappointing. However, there’s still a place for good news: Research teams report positive results while trialling new medicines and vaccine types.

Nasal vaccines 

Vaccination will remain one of the most effective tools against Covid-19. As Professor David Dockrell, from the Center for Inflammation Research of the University of Edinburgh, told RT, “vaccines will continue to be a central part of how we control the virus.”

“If we can dampen down the number of infections, and the severity of infections, and also the extent to which the virus can replicate in people when they become infected, then we are slowing down the ability of the virus to change and to mutate,” he explains. 

So I think the vaccines still will be a very important part of the preventive strategy. It’s vital that they are available to all the world’s population, irrespective of where people live, and the wealth of the country in which they live. 

However, vaccination doesn’t always mean you have to get an injection. For instance, several intranasal Covid-19 vaccines are currently being developed. As the virus gets into the body through the nose, a nasal spray or drops are aimed to produce mucosal immune response and prevent it from getting into the lungs.

In India, a vaccine of this type is already completing Phase 2 of clinical trials. In Russia, a nasal vaccine is undergoing a clinical trial on volunteers. In Thailand, a home-developed product is expected to be trialed on humans next spring. In the US, Universities of Houston and Stanford recently reported good results of their experiments carried out on mice.

Read more

A security guard checks vaccination certificates outside a business in Athens, Greece, November 6, 2021.
Another EU state to ban unvaccinated from indoor spaces

Intranasal vaccines can have several potential benefits compared to inoculation. 

“They would be easier to use, because they can be self-administered. They wouldn’t need a nurse or clinical settings,” Swedish professor emeritus of epidemiology Marcello Ferrada de Noli explained to RT. As a result, he says, there’s hope that fewer people will be reluctant to be immunized. Not so many of us find it pleasant to get a jab ​​– and after all, there are those who are just afraid of needles. Also, it would be much easier to vaccinate children with nasal substances. 

However, what concerns Prof. de Noli the most is the duration of the effect of a vaccine of this type. Still, scientists can’t say for sure whether a nasal substance may completely replace a shot. According to Alexander Gintsburg, the head of Moscow’s Gamaleya Center biomedical research institute, which created the Sputnik V vaccine, the nasal version they are working on would serve for an additional protection against the virus, but would not replace the injections.

Chew the virus away? 

A nasal vaccine is not the only one being developed. In summer, it was revealed that Russian Defense Ministry scientists were creating a ‘chewing gum’ vaccine, also targeting the mucosal immune response. Meanwhile, a UK firm announced this month that it would conduct a human trial of a skin patch that uses T-cells to confront the virus. Developers hope it would offer longer-lasting immunity than the existing vaccines. Work on a similar project is being done in the University of Queensland, Australia.

While it all looks so promising, Prof. de Noli warns that it would still take a lot of time until these products become available to the public. “I think that discoveries in this field are a very good thing. But if we say ‘We discovered a new type of vaccine’, people will say ‘Aha, so I’m going to wait’. But we need to vaccinate people now,” he points out.

Improving Covid treatment

Vaccines are not a silver bullet, unfortunately, given the not-so-high level of global immunization and the constantly emerging new strains of the virus. “People might get infected despite having had a vaccine, but I still think the vaccine strategy is going to be central to how we manage this kind of virus going forward,” Prof. Dockrell says. “But we will have other strategies that will be very important. We will have other elements. When we put them all together, it gives us the best opportunity that people can live with coronaviruses, and hopefully, the mortality can be limited to much lower extense than what we’ve sadly seen in the last eighteen months.”

Read more

© Don Emmert/AFP
Pfizer widens access to its anti-Covid pill

Monoclonal antibodies will be central to the ongoing vaccine strategy, Prof. Dockrell explains. These are the antibodies similar to those the body uses to fight the virus. They are produced in labs and given via infusion or injection to boost the patient’s response against certain diseases. Monoclonal antibody treatment is used for people under a high risk of developing severe infection (including older patients 65+ years old or those with chronic medical conditions). It’s already being used in the US, following last year’s FDA approval. Earlier in November, the European Medicines agency recommended authorizing two monoclonal antibody medicines.

In October, UK’s AstraZeneca reported positive results of a Phase 3 study of its antibody combination, which, according to developers, is highly effective in both prevention and treatment of coronavirus.

Researchers are also working on a possibility to save Covid-infected patients from the so-called ‘cytokine storm’ – a situation when the immune system reacts so intensely that kills not only the virus, but the whole organism itself. A drug to ‘calm the storm’ was registered in Russia this year, and it’s already being used on patients.

Another way to fight Covid-19 is to use antiviral drugs. When the pandemic started, medics had to use something already existing (like anti-influenza Favipiravir) or something being authorized for emergency use (like remdesivir). Now, more than a year on, the work to create a special drug to specifically cure Covid-19 is giving its results. This month, Russia registered its first injectable anti-Covid medicine. A bit earlier, the UK became the first country to approve an antiviral pill produced by the US-based companies Merck and Ridgeback Biotherapeutics. Another American firm, Pfizer, got positive results from trials of its drug of the same kind. Both firms hope that with a drug in the form of a pill it would be easier to treat people at home.

Appreciating all the efforts on the field of developing anti-Covid treatment, Prof. de Noli points out that still, the key issue now is to reduce the spreading of the virus. “The new medicines are developed for people who already got the disease,” he says.

But we need to prevent people from getting the infection, not let them get infected because we have some new medicine that can cure them.

The same idea is echoed by scientists all over the world quoted in plenty of articles dedicated to the medical gains: it’s great to have the treatment, but none of the drugs may substitute vaccination, as first and foremost, humanity has to adopt preventive measures and stop the pandemic.

If you like this story, share it with a friend!

find more fun & mates at SoShow now !

Czechia will prohibit people who have not been vaccinated from entering public spaces such as restaurants and shops from Monday. Negative Covid-19 tests will no longer be allowed.

Speaking on Wednesday, outgoing Prime Minister Andrej Babis said the country would adopt the so-called Bavarian model from Monday next week, prohibiting those who have not received a Covid-19 vaccine from entering public places. Those who have recently recovered from the virus will be allowed entry. 

Read more

(FILE PHOTO) © REUTERS/Costas Baltas
France turns to Ancient Greece for war on woke

The country will enter a partial lockdown of the unvaccinated from Monday morning, assuming the restrictions are approved by the cabinet on Thursday.   

“We will introduce the Bavarian model from Sunday to Monday. This means that entry to restaurants, service establishments, or mass events will only be allowed for vaccinated or survivors. Those vaccinated with a single dose must have a PCR test,” Babis said on local TV.

The prime minister said that self-testing would be completely cancelled, as he lamented unvaccinated people for clogging up hospitals and preventing treatment reaching those with other illnesses.  

“The death toll is rising; the situation is serious. Vaccination is the only solution, there is no other,” he added. 

The country is seeing a spike in infections, with a record 22,479 new cases reported on Tuesday. 

The Bavarian model refers to strict anti-Covid measures introduced in the southern German state. Markus Soder, the state’s premier, claimed there was no choice but to implement “a kind of lockdown for the unvaccinated,” citing increasing pressure on hospitals and medical staff. 

Meanwhile, some two million people in Austria who are yet to receive their Covid shots have been subject to the world’s first lockdown for the unvaccinated, in an effort to bring case numbers down.  

While 68% of people are vaccinated in Germany, and 65% in Austria, just over 60% are vaccinated in the Czech Republic. 

If you like this story, share it with a friend!

find more fun & mates at SoShow now !

An adviser to the EU’s top court has claimed that citizens’ information in Germany is being illegally harvested, after telecom companies challenged bulk data collection.

The German data retention law was criticized on Thursday by an adviser to the Court of Justice of the European Union (CJEU), who stated that general and indiscriminate retention of traffic and location data is only allowed in exceptional cases, such as a threat to national security.

According to the adviser, bulk collection of data generates a ‘serious risk’ of leaks or improper access. It also entails a ‘serious interference’ with citizens’ fundamental rights to privacy and the protection of personal data.

Read more

(FILE PHOTO) © REUTERS/Russell Cheyne
Google won’t pay for spying on UK iPhone users

This comes after two companies, SpaceNet and Telekom Deutschland, challenged the obligation to store their customers’ telecommunications traffic data in 2016. The Administrative Court of Cologne ruled that the two companies were not obliged to retain data because such an obligation violated Union law. Germany then appealed to the Federal Administrative Court, who asked the CJEU about the compatibility of the data retention obligation.

The CJEU has often stated that indiscriminate mass surveillance does not fit within the general principles of EU law. Over a year ago it saw a similar case involving legal challenges around national bulk data collection under UK and French law. The court then ruled that only limited data collection and temporary retention were allowed. France seeks to bypass the CJEU on data retention and has asked the country’s highest administrative court (the Council of State) not to follow the EU ruling. France is waiting for the conclusion of the procedure launched by the Council of State before “assessing to what extent” national law should be changed. 

Despite recent EU court attempts to curb surveillance powers, leaked papers from June 2021 show that the national governments of the Netherlands, France, Spain, Luxembourg, Slovakia, and Estonia are pushing for a new pan-EU data retention law. They claim that data retention is essential for safeguarding public security and ensuring effective criminal investigations.

Think your friends would be interested? Share this story!

find more fun & mates at SoShow now !

The Robert Koch Institute, Germany’s disease control agency, has warned that the country will face a “really terrible Christmas” unless steps are taken to mitigate a huge rise in Covid-19 cases.

Speaking on Thursday, the director of the Robert Koch Institute, Lothar Wieler, reiterated the case for new, strict countermeasures to prevent the spread of Covid-19.

Read more

(FILE PHOTO) © REUTERS/David W Cerny
Czechia rolls out new restrictions for unvaccinated

“We are currently heading toward a serious emergency,” Wieler stated, adding we are going to have a really terrible Christmas if we don’t take countermeasures now.” He added that hospitals were already struggling to find enough beds.

Wieler has called for a campaign for a further increase in vaccine uptake, from the current 67% to well over 75%.

The diseases institute director also believes bars, nightclubs, and other large-scale venues should be temporarily forced to close, and that other areas of public life should be off-limits to the unvaccinated.

His comments come as German leaders ponder new restrictions to replace the nationwide epidemic rules, which could include a lockdown of the unvaccinated, following measures already taken in neighboring Austria.

On Thursday, in an attempt to counter waning immunity levels, the country’s vaccine advisory board recommended that booster shots be made available to everyone aged 18 or above. 

If you like this story, share it with a friend!

find more fun & mates at SoShow now !

Scientists have used artificial intelligence to “predict” formulas for new designer drugs, with the stated goal of helping to improve their regulation. The AI generated formulas for nearly nine million potential new drugs.

Researchers with the University of British Columbia (UBC) used a deep neural net for the job, teaching it to make up chemical structures of potential new drugs. According to their study, released this week, the computer intelligence fared better at the task than the scientists had expected.

The research team used a database of known designer drugs – synthetic psychoactive substances – to train the AI on their structures. The market for designer drugs is ever-changing, since their manufacturers are constantly tweaking their formulas to circumvent restrictions and produce new “legal” substances, while cracking their structure takes months for law enforcement agencies, the researchers said.

Read more

FILE PHOTO: A man living on the streets displays what he says is the synthetic drug fentanyl, in the Tenderloin section of San Francisco, California, February 27, 2020 © Reuters / Shannon Stapleton
Drug overdose deaths in US hit all-time record

“The vast majority of these designer drugs have never been tested in humans and are completely unregulated. They are a major public-health concern to emergency departments across the world,” one of the researchers, UBC medical student Dr. Michael Skinnider has said.

After its training, the AI was able to generate some 8.9 million potential designer drugs. Afterwards, researchers ran a data sheet of some 196 new drugs, which had emerged in real life after the model was trained, and found that more than 90% of these have been already predicted by the computer.

“The fact that we can predict what designer drugs are likely to emerge on the market before they actually appear is a bit like the 2002 sci-fi movie, Minority Report, where foreknowledge about criminal activities about to take place helped significantly reduce crime in a future world,” senior author Dr. David Wishart, a professor of computing science at the University of Alberta, has said.

Identifying completely unknown substances remains an issue for the AI, the research team has noted, but they hope it might potentially help with that task, since the computer was also able to predict which formulas of designer drugs were more likely to be created and hit the market. The model “ranked the correct chemical structure of an unidentified designer drug among the top 10 candidates 72 percent of the time,” while throwing in spectrometry analysis, which is an easily obtained measurement, bumped the accuracy to some 86%.

“It was shocking to us that the model performed this well, because elucidating entire chemical structures from just an accurate mass measurement is generally thought to be an unsolvable problem,” Skinnider stated.

Think your friends would be interested? Share this story!

find more fun & mates at SoShow now !

Chris Inglis’ new White House office has a startup feel to it. There are desks, a few chairs, a coffee maker and a poster hanging on the wall.  But as the head of the newly established Office of the National Cyber Director, Inglis has to make due with what he has while still advising President Joe Biden on the smartest ways for the US to prevent and respond to cyberattacks.

Inglis has already had numerous conversations with the president, who has made clear that the government has a role to play in the defense of the private sector and in assisting the private sector in defending critical infrastructure.  And the president knows, says Inglis, that means the government needs to get its own cyber house in order. 

But like any real startup, Inglis’ resources are scarce.  More than three months after being confirmed by the Senate, he still doesn’t have the full staff he needs to take on his timely and critical mission.  That’s because the funding for his office – some $21 million, part of the $1 trillion infrastructure bill making its way through Congress – is still stuck in the political spin cycle.  Why does it matter?

“The threat is greater than I can ever remember,” Inglis told me during last month’s AFCEA and INSA Intelligence & National Security Summit in National Harbor, Maryland. “The audacity, the brazenness, the thresholds that have been crossed at every turn; we’re in a difficult place.”

While he’s waiting for Congress to act, he says he’s spending about fifty percent of his time defining his role, being careful not to duplicate the work already being done by other agencies and departments, while spending another fifty percent building relationships that will be important later.  Eventually, he’s expected to have a staff of some 75 people who will be expected to work hand in glove with CISA, the National Security Council’s cyber staff, the OMB and others.  The remaining fifty percent of his time, Inglis jokes, is spent figuring out how to attract the country’s best talent.   

“People are starting to flow into the organization. I’m confident that we’re coming up to a breakout moment, not for the National Cyber Director, but the contribution that we can and should make. I’m sobered by the nature of the challenge, I’m optimistic we can make a difference.”

Optimistic he is.  And he’s not even complaining about being given a critical task for US national security and then having to wait for politics to play out before being able to act on it.

“It has been a semi-silver lining in that we would not have had time to think about how we want to apply the resources coming our way.”

While Inglis has been waiting, he and his small team have had time to think about the four things they’d like to focus on right away. 

First, is streamlining the roles and responsibilities in government of who handles what when it comes to protecting the public and private sectors from cyberattacks.  He also spoke during his confirmation hearing about the importance of allocation of resources and while the Office of the National Cyber Director doesn’t have the authority to move money, it does have what Inglis calls the responsibility to account for cyber money.

“One of the most critical gaps in cyber is that the physical digital infrastructure is not built to a common standard. The executive order related to this requires that within a certain amount of time we have to install basic procedures like multifactor authentication and encryption of stored material. That is a challenge and a potential vulnerability for us. We need to make sure that we make these investments necessary to buy down the lack of investment for years.

The second gap is in talent related to number of people required to occupy these jobs. It’s not simply the folks with IT or cyber in their name, but general cyber awareness. There is some expenditure of resources of time, attention, and money to get awareness right on the part of the truly accountable parties like agency and department heads. We have to make sure they don’t see cyber as a cost center, but an enabler on the part of all the users as they understand what their roles are and what the accountability is.

He admits there is still a level of education needed within government to get there.

That is usually the case in both the government and the private sector,” he said.  “We need to think this way about cyber and invest in cyber so that we can enable the mission, not hold it back. I think that education is the most important and effective way to handle this. Then, it is to make sure that the accountability is aligned and harmonized. We tend to take risk in one place and expect someone in another place to be the mitigator of a risk they don’t understand was taken in the first place. We need to operate in a collaborative fashion and get away from divisions of effort which are an agreement not to collaborate and allow adversaries to pick us off one at a time.”

Inglis says that unity of effort must start at home.  “The executive order issued in May has begun to lay out common expectations about the hardware, software, and practices that we need to begin in those spaces,” he said.  “Externally, if we have sector risk management agencies who engage the private sector for the purposes of supporting and engaging the critical components of that infrastructure, we need to make sure you don’t need a Ph.D. in government to know who to deal with and what you’re going to get from them.”

He is arguing for the government to also put ‘valuable material’ on the table.  “That could be our convening power,” said Inglis. “We could perhaps address and reduce liability or give companies a clue as to what might be around the corner because the government has access to exquisite intelligence. If that setup is possible, we also need a venue where collaboration takes place. Information doesn’t collaborate, people do.”

Inglis likes to point to the example of CISA and the Joint Cyber Collaborative.  “They put people from the private sector and the public sector side by side to co-discover threats that hold us at common risk. That project sets up the possibility of implicit collaboration in what we then do with that common operational picture. The government could take ideas that private sector companies turn into proprietary systems and enrich and classify them to deal with it in their system.”

Using what he calls “all the tools in the toolkit,” Inglis also notes the importance of international relationships, which fits nicely into the White House’s International Summit on Ransomware last week in Washington, which zeroed in on tighter cryptocurrency standards, among other things. “Beyond the Five Eyes, what do other like-minded nations think about what is expected behavior in this? What are governmental actions that are appropriate,” he asked.  

Inglis has been an active participant in the president’s recent actions in cyber.  He took part in a White House meeting with tech leaders in August that was hosted by President Biden, who Inglis says, spent the first hour sharing his vision about how the country should focus on collaborative integration.  “The companies represented weren’t only companies like Microsoft and Apple, but people who operate in the critical infrastructure space,” said Inglis.  “The people component, educators, were represented reflecting the president’s view that cyberspace is not just technology, it is also the people component. They are a major link in the chain, and we need to get the roles and responsibilities right.”

While he’s waiting for the funding he needs to get his office fully staffed, Inglis said he’s also putting thought into reconciling resources with aspirations.  Managing expectations is going to be important.  Frustration has been growing for years over what some see as a lack of government response to some of the largest hacks in history.  The phrase ‘time and place of our choosing’ as a definition of response has grown old and some Americans are weary of a government that isn’t responding in a more public way to the beating it sees the US taking in cyberspace.

So, I asked Inglis whether there should be red lines in cyber.

“Red lines are both good and bad,” he answered.  “They are clear and crisp, and everybody knows what they are. The downside is that because of that, an adversary knows exactly how far they can go. It means that you set up a somewhat permissive environment. Red lines also don’t have context; sometimes there is a reason that a defender would make the ransomware payment. As a matter of policy, the U.S. government does not pay ransomware, but I imagine there will be a situation at some point where a hospital is against the Russian state and actual life and safety is at risk. If there is no other way to get the material back, in order to get back in the business of saving lives, they would want to rethink if a red line is a red line in that particular situation. I think the right thing to do here is not to establish hard thresholds of things with scripted responses, but outline what we are prepared to defend and what principles we will exercise in defense of those things. We commit to defending the private sector when it is held at risk by a nation state in cyberspace as much as in the kinetic space and make that clear to adversaries. I think that would be more helpful in changing decision calculus and creating a useful ambiguity about when and where we will come in.”

Inglis said he’s also thinking a lot about present and future resilience.  It’s a worthwhile focus, given that the White House estimates that nearly half a million public and private sector cybersecurity jobs are currently unfilled. 

“That is a massive problem,” said Inglis. “However, the more insidious problem is that the 320 million people in the United States who use the internet who have no idea how to properly take their place on the front lines of this issue. There is an awareness issue that requires us not to make Python programmers out of them but to make sure they understand the nature of this space.”

Everyone has heard the old saying that time is money, but in Inglis’ case, time is security so I asked him point blank whether he thought government was moving has quickly as it should on the cyber problem.

“Government is moving at speed; the question is if it is at the necessary speed. I don’t think anyone is moving at the necessary speed. Some are moving at light speed, but at the end of the day, we need an integrated, collaborative approach. While we won’t have unity of command, I think there needs to be a universally felt sense of urgency so that we will all get our heads in the game.”

Congress, are you listening?  Oh, and by the way, that poster in Inglis’ office? It reads, ‘Hours Since the Last Surprise.”

As a startup with maybe too few resources at the start and who often didn’t understand how all the wickets are run, we have our occasional surprise,” said Inglis.  “When we encounter those surprises and go to someone with the deep and sharp expertise to help us navigate that, we get what we need. However, we are not a full functioning, full featured, fully capable organization yet. We’re trying to build somebody else’s airplane while we’re free falling from our own. We have a parachute, and we can land safely, but it is a bit of a challenge at times.”

Find out more about why experts like former NSA Director General Keith Alexander (Ret.), Mandiant CEO Kevin Mandia and others have joined The Cyber Initiatives Group, powered by The Cipher Brief

Read more expert national security insights, perspective and analysis in The Cipher Brief

The post Chris Inglis and the Gathering Cyber Storm appeared first on The Cipher Brief.

find more fun & mates at SoShow now !