Friday, November 11, 2022

This Seems To Me To Be A Pretty Huge Vulnerability! I Wonder What The Contingency Plans Are?

This rather worrying, and very well researched, article appeared last week!

The internet is run under the sea, not in the cloud. What happens if the cables get hacked – or snipped?

Hundreds of undersea cables link up the worldwide web, with about a dozen connected to Australia. How does this little-known network work – and what happens if it’s sabotaged?

By Sherryn Groch and Felicity Lewis

November 5, 2022

At the bottom of the freezing Sea of Okhotsk, deep inside Russian waters, a US submarine creeps into position. Navy divers emerge from a hatch they call “the Bat Cave” and sneak along the dark ocean floor, searching for a cable just centimetres wide on which they’ve planted a listening device – and, all the while, the Soviet fleet above is none the wiser.

It’s the 1970s and this is one of the most daring missions of the Cold War: wiretapping the secret communications cable between the Soviet fleet’s Pacific base and headquarters in Russia. The Soviets thought it so well guarded, in a heavily patrolled peninsula rigged with sound detectors, that most of what passed down that cable wasn’t even in code.

For a decade, US divers would return every month to retrieve the latest transmissions captured from their bug so analysts at the US spy agency the NSA could binge-listen to the juicy disclosures – from Soviet nuclear secrets to commanders’ conversations with their mistresses. Then, after yielding some of the most useful intelligence of the Cold War, Operation Ivy Bells came to a halt suddenly in the 1980s when a bankrupt NSA analyst quit his job and walked into the Soviet embassy to sell US secrets.

A high-stakes Cold War wiretap under the sea might sound leagues away from our “wireless” world today. But the internet is not held in the “cloud” or beamed down by satellites – at least, not for the most part. More than 95 per cent of our data runs through a little-known network of undersea cables, each not much wider than a garden hose, stretching thousands of kilometres long.

While these cables are faster than satellites, some experts warn they are not well protected – and sabotage still happens. As Russia wages war in Ukraine and China expands into the private cable market, many countries are ramping up their underwater surveillance, including Australia.

How does the internet under the sea work? Can you tap a cable today? And what happens if they are snipped entirely?

What is the undersea internet network?

Right now, these words are likely travelling along the bottom of the ocean at close to the speed of light. Fibre-optic cables that transmit data as light are the superhighways on which the internet (and phone lines) travel between continents – they have much higher bandwidth than satellites and are specially reinforced to lie at the bottom of the sea, even resisting shark bites. Sci-fi writer Neal Stephenson once called them “Mother Earth’s motherboard”, and they were even entangled in the NSA surveillance scandal revealed by whistleblower Edward Snowden in 2013. A secret deal with US telco giant AT&T created the now infamous “Room 641A” at AT&T’s San Francisco site – behind its door, the NSA could tap cables coming up from the Pacific Ocean without a warrant.

More than 450 undersea internet cables crisscross the Earth, covering more than 1 million kilometres in total.

“Submarine cables have been the backbone of communications all the way back to the telegraph,” says former Australian intelligence official Dr William Stoltz at the ANU’s National Security College.

The first transatlantic cable was laid in 1858, connecting the US with Britain. Queen Victoria marked the occasion by sending a wire to US President James Buchanan – it took 17 hours to arrive. Things might be faster (and digitised) now, but the architecture is largely the same, Stoltz says.

More than 450 undersea internet cables crisscross the Earth, covering more than 1 million kilometres in total, and dozens more are planned. They can zap the equivalent of the United States’ entire collection in the Library of Congress across the other side of the world in moments. Australia is connected by at least a dozen cables itself, many of which land in Sydney and Perth.

Most of the world’s cables today still go through the US, although some nations, including those in South America and Europe, have been teaming up on routes bypassing the US, in light of the NSA spying scandal. There’s an even stronger move to bypass China and its tech giant, Huawei, long suspected of allowing backdoors for Chinese spies in its systems.

The only continent not plugged into the world’s undersea web is Antarctica, which relies entirely on satellites instead. Former Australian Antarctic station leader David Knoff likens operating without the subsea connections to “about 20 years ago, where you couldn’t watch movies, a short video clip would take an hour to download –occasionally it works but it’s a roll of the dice.” Some, including the Bureau of Meteorology, want Antarctica to get its own cable, as plans push ahead to lay lines beneath the freezing Arctic at the other end of the world.

“We don’t think about these cables, they’re out of sight at sea, but they’re vulnerable.”

Anthony Bergin, ASPI

But rolling out undersea cables is expensive and difficult. Almost all are privately owned and managed – often by consortiums of large telcos such as AT&T as well as, increasingly, the tech giants Google, Facebook (now Meta), Amazon and Microsoft. “Governments almost entirely rely on a handful of firms,” says Stoltz. “We don’t have our own sovereign capability to build, repair and inspect these things.”

Huawei Marine, now trading as HMN Technologies, has laid or repaired about 100, or almost a quarter, of the world’s cables. Google says it has invested in 22, including the newly launched 15,000 kilometre “Equiano” from Portugal to South Africa. Telstra owns a stake in 27 cables, more than 400,000 kilometres worth. “That’s the equivalent of going around the world 10 times,” says the chief of Telstra International, Oliver Camplin-Warner. “We’re the biggest provider inside Asia.”

He compares the undersea network to airline routes, following demand, “like London to Singapore”. Most people don’t realise the “magic” of how the internet works, he says. “They [often] think it just disappears up into the sky to a satellite.”

But you can wrap your hand around these cables – they are bundles of steel and copper and plastic, coated in petroleum jelly to help protect the delicate hair-thin optic fibres within. “They’re strong”, says Camplin-Warner, built today with “better armour” to withstand more extreme pressure as well as more sensors to detect disruptions.

Still, they are vulnerable – especially to natural disasters or stray boat anchors. Tonga is connected by just one subsea cable and at the start of this year, it was cut off from the world for more than a month when a volcanic eruption knocked out that line.

That’s why charting a new undersea cable route can take a year of planning. About 46,000 kilometres of new cable on average are installed globally each year – unspooled from specially fitted-out ships. “Picture almost a farmyard plough behind a tractor,” says Camplin-Warner. Near shore, “we bury the cable down into the seabed” for extra protection. Sensors on large ships set off alarms if they get too close. And Telstra uses an “Always On” system to near-instantly reroute internet traffic from one cable to another if there’s a problem. “The minute anything happens [our centres] know,” says Camplin-Warner. “We can tell how far the light [data] is travelling down the cable before it disappears so we can quickly work out exactly where the break is.”

Of course, the world’s small fleet of cable repair ships – those designed to haul up the damaged section of cable and splice in a new one – are also privately owned. “And there’s not enough,” says Anthony Bergin, a senior defence analyst at the Australian Strategic Policy Institute (ASPI). “It was weeks before a repair ship came out to Tonga and fixed their cable.”

….. Lots omitted.

How are we protecting cables? What happens if they’re cut?

The federal government did not answer questions on how it would respond to cable sabotage but said the telecommunications industry had a long history of redundancy planning. Unlike Tonga, Australia has many cables connecting it beneath the waves and Telstra, which owns 10 of them, says it could re-route data along its remaining ones if some are knocked out.

“The best-case scenario is that the internet slows down,” says former intelligence and defence official Marcus Hellyer at ASPI. But if Australia is cut off entirely, much of our digital world – from Netflix to the stockmarket – will collapse.

We’d need to switch to satellites fast – so access to the rapidly deployable kind, such as Elon Musk’s Starlink internet (now used in besieged Ukraine) or the kits Telstra sometimes sends to areas of Australia hit by fire or flooding, will be essential, Stoltz says. Even then, communications would have to be triaged (as was the case in Tonga where Telstra and the Australian government helped restore emergency communications via satellite). “You can’t go from our normal internet traffic and push it entirely on to satellite bandwidth,” Stoltz says. “They’re really only an emergency solution, short term.”

It’s why, despite advances in satellites helping connect more remote parts of the world, no one expects submarine cables to be ditched any time soon. And why developing nations need an affordable alternative to China’s “cable diplomacy”, Stoltz and Bergin say.

“For countries, particularly in South-east Asia and the Pacific, that really do rely on these big foreign telcos building this infrastructure … it’s a tension between security and economic development,” Stoltz says. “They’re the ones in the middle that we’re jostling over.”

The South China Sea is not only a tangle of disputed maritime and island claims but a “cable chokepoint” for the network.

Tong says some developing nations have a different perspective on the West’s security concerns. “I don’t think they really care if China’s reading their emails.” China is a huge economy, so cable connections to it “absolutely should” and will continue, he says. But he adds: “I think over the years people have felt a bit better about security if they are sending data transmission from Japan to Australia, for example, directly … than having it land in China first and then be transmitted.”

That’s partly why new hubs are opening up in places such as Singapore and Korea. Camplin-Warner says Australia itself is becoming an important data landing site between the US and Asia, even though “it may not be the quickest route”. One of Australia’s newest cables, Southern Cross NEXT, (which Telstra has a 25 per cent stake in) runs straight to the US, the first direct route between the continents.

Taiwan is another emerging hub, despite the tricky geopolitics, Camplin-Warner says.

And nearby, the South China Sea is not only a tangle of disputed maritime and island claims but a “cable choke point” for the network. As researcher Lane Burdette writes for Princeton University, many nations rely on cables running through those waters, but China’s build-up of artificial islands there appears to use cables that aren’t made public. And some experts fear Beijing may yet move to block or control cables and their repairs in the region.

Meanwhile, if China were to cut Taiwan’s undersea cables, sometimes described as the island’s Achilles’ heel, the impact would be felt nearby too – it’s connected by a dozen cables to countries including Australia, Singapore, Japan and the US.

In 2017, Rishi Sunak, now Britain’s prime minister, outlined a case to ramp up the defence of these “jugulars of the world economy”, including that the government install more back-up “dark cables” itself.

As another island, Australia is particularly vulnerable too, Bergin says. Yet, while the new AUKUS technology-sharing partnership with the US and the UK means greater investment in undersea capability, there’s been no focus on maritime infrastructure security.

Australia is already bringing in minimum cybersecurity standards on privately-owned critical infrastructure – including undersea internet and energy cables. And, unlike voluntary reforms in the US, it’s hoped they will have teeth. The government spokesman didn’t say how the standards will be monitored beneath the waves but said it worked closely with companies, which have “obligations to do their best to protect networks from unauthorised access and interference,” and to report breaches. The security of internet cable projects, including landing sites, is assessed when companies seek a permit to operate from their day-to-day regulator Australian Communications and Media Authority (ACMA), which also oversees repairs, the spokesman said.

At Telstra, Camplin-Warner says “security is absolutely paramount”. The telco has previously worked with Australia and other governments to bring in protected exclusion zones around landing stations, he says, and Telstra is seen as a “safe, neutral provider internationally”. “We don’t have any Huawei equipment in our network.”

Meanwhile, defence expert Malcolm Davis says Australia is investing in better tech to hunt submarines, as China tries to close the gap between its own navy and America’s. “We haven’t faced a threat like we do today in the region. The Soviets rarely sent submarines this far south.”

The federal government spokesman said a new maritime undersea combat and surveillance program was created in late 2021, with $7.4 billion for an “Integrated Undersea Surveillance program”. The Australian navy has already flagged the plans for “ocean surveillance ships”, undersea drones and sensors, and the latest October budget papers reveal $155 million in funding earmarked over the next financial year to buy an “undersea support vessel”.

Still, in the end, the best defence may be mutually assured destruction, says Hellyer. “Everyone will start cutting cables if there’s a war, but you can’t be everywhere in the ocean. We might need an agreement, [rules of law], not to touch this kind of critical infrastructure. Because once we start ...”.

The full article is here:

https://www.smh.com.au/technology/the-internet-is-run-under-the-sea-not-in-the-cloud-what-happens-if-the-cables-get-hacked-or-snipped-20221025-p5bsov.html

Around the world we are seeing all sorts of strategic tensions rising from Russia, China etc. as well as the impacts of the new European War in Ukraine.

When the cables were laid – some more that 20 years ago – I am sure no one realised just how much things would change and how quickly it would happen!

To me it is obvious we need to dramatically to increase our satellite bandwidth to the rest of the world with a range of service providers ASAP!

These threats are real and would be pretty disruptive if they came about, to say the least…

We have all been warned!

David.

No comments:

Post a Comment