To print: Click here or Select File and then Print from your browser's menu

This story was printed from silicon.com, located at http://www.silicon.com/

Story URL: http://software.silicon.com/security/0,39024655,39255637,00.htm

Terrorists turning to tech, warns gov't
Security measures are off the pace

By Tom Espiner

Published: Friday 04 July 2008

Terrorists are increasingly using technology to achieve their aims, according to the government.

In a speech at the Homeland & Border Security Conference 2008 in London on Thursday, Admiral Lord West, parliamentary undersecretary of state for security and counter-terrorism, said that terrorists were increasingly harnessing technology to try to achieve their goals.

Security from A to Z

Click on the links below to find out more...

A is for Antivirus
B is for Botnets
C is for CMA
D is for DDoS
E is for Extradition
F is for Federated identity
G is for Google
H is for Hackers
I is for IM
J is for Jaschan (Sven)
K is for Kids
L is for Love Bug
M is for Microsoft
N is for Neologisms
O is for Orange
P is for Passwords
Q is for Questions
R is for Rootkits
S is for Spyware
T is for Two-factor authentication
U is for USB sticks/devices
V is for Virus variants
W is for Wi-fi
X is for OS X
Y is for You
Z is for Zero-day

West said: "Recent plots have been characterised by increasing technological and logistical complexity, including [the use of] false identities, encrypted communications and multiple email addresses."

Information-security company Detica also claimed that terrorists and criminals were increasingly employing technology, and were attempting to exploit the growing information infrastructure to hide their activities.

Tom Black, chief executive of Detica, told silicon.com sister site ZDNet.co.uk: "Terrorists are using the internet for secure communications, mission planning, assessing targets online and to radicalise the next generation. Society depends on the information infrastructure; the ability to steal information and deny access is a serious threat."

Black claimed that information-security measures need to be reassessed to be effective, due to the pace of technological change and information expansion.

Black said: "We're not moving fast enough. The amount of information is doubling every 15 to 18 months."

Instead of collecting and processing ever larger amounts of information in the hope of discovering terrorist plots, Black said, the next-generation approach would be to detect anomalous behaviour in real-time by combining information collected online with information from the physical world.

Black said that eventually "threat prints" could be developed by analysing potential targets, such as the London 2012 Olympic Games, and developing a model of potential terrorist behaviour. Law-enforcement and security agencies could then combine information about anomalous behaviour centred around that event. This would eventually enable law-enforcement bodies to anticipate potential terrorist behaviour "ideally before the terrorist or criminal has been radicalised or recruited".

However, civil liberties campaigners greeted this suggestion with caution. Shami Chakrabarti, director of Liberty, told ZDNet.co.uk there was a danger that the mass profiling of behaviour that would be necessary for this scheme to work risked turning the whole population into terrorist suspects.

Chakrabarti said: "The devil's in the detail. There's a crucial distinction between investigating specific threats and the mass trawling of the population. We need a framework to decide where the line is drawn. [Mass data collection] is not a good idea, as you are in danger of turning the whole population into a suspect."