Defending Germany’s infrastructure from direct cyber attacks has become routine for the Government’s IT specialists. According to experts, Germany suffers four to five such attacks every day. Bearing in mind that much of Germany’s military coordination, water resource management, electricity, nuclear power and banking is among the systems managed by computers, the risks of such attacks are clear.
Next to the threat of terrorism and the advancing capabilities of some rogue states to use ballistic missiles, cyber-attacks on strategic networks were seen as a growing threat to security.
“By now the internet has become a critical infrastructure”, said the Minister of Internal Affairs, Thomas de Maizière, during his introduction of the new Cyber Security Strategy for Germany. “If this infrastructure fails, it will be very critical for Germany. Like electricity and water – we are dependent on it and rely on it to work.” The web needs to be available, to be free and to be safe, the minister emphasized.
Four to five Trojan attacks per day
“Germany is under permanent cyber-attack”, says Hartmut Isselhorst of the Federal Office for Information Security. The government agency will be the decision-making body for the National Cyber Defence Centre, which will go into effect beginning April 1st. Isselhorst believes that Germany is faced with “highly professional hackers with sufficient resources.”
He explains that the required ingredients to launch the kind of targeted malware e-mail attacks his department has been dealing with can be easily acquired. The attacks may be led by individual perpetrators or government bodies, such as foreign intelligence agencies, “The attacks can be used for espionage or sabotage purposes. Stuxnet has made this quite clear, “ he says. Stuxnet was a malware that was used last year to target industrial facilities in Iran.
He believes the current situation not only calls for the development of a proper cyber defense strategy but also of a body that can protect the system and detect possible threats ahead of time.
De Maizère plans a National Cyber Defence Centre
The term “Cyber War” was introduced into NATOs’ new strategic concept during the recent Lisbon Summit. Next to the threat of terrorism and the advancing capabilities of some rogue states to use ballistic missiles, cyber-attacks on strategic networks were seen as a growing threat to security.
The German government has been discussing a possible security strategy to protect important data networks form such attacks. De Maizère sees this task in the hands of the new National Cyber Defence Centre. Under the command of the Federal Office for Information Security, the center will be a network of relevant government bodies working together to improve protection against cyber attacks. Ranging from the Bundesamt für Verfassungsschutz (BfV), Bundesamt für Bevölkerungsschutz und Katastrophenhilfe (BBK), Bundeskriminalamt (BKA), Bundespolizei (BPOL), Zollkriminalamt (ZKA), Bundesnachrichtendienst (BND) and the Bundeswehr, all important government defense, security and emergency services will be represented in the Centre.
The key idea of the Centre is prevention – safety provisions can be best ensured by effective early warning and preventative action. Thus the Centre strives towards a mutual, uniform and safe network infrastructure for the German federal administration.