DARPA Training Cadets and Midshipmen As Cyber Warriors 65
An anonymous reader writes "DARPA officials say the Defense Department must train 4,000 cybersecurity experts by 2017. Meeting that goal requires building a pipeline for training and education, especially for future officers who'll oversee protection of the cyber domain. During a winter weekend in Pittsburgh, more than 50 cadets and midshipmen from three service academies sat elbow to elbow at nine round tables in a packed room. They'd been training since November to compete in a pilot program of the Defense Advanced Research Projects Agency called the Service Academy Cyber Stakes. From the article: 'This involves skills such as being able to reverse engineer binary, or machine-readable, files and, Ragsdale said, finding source-code-level vulnerabilities that could be exploited, and doing so with software source-level analysis and with automated tools that perform functions such as fuzzing, the informal name for automatic bug finding."
warriors or experts? (Score:2)
Re: (Score:2)
Re:warriors or experts? (Score:5, Informative)
While not mutually exclusive, they are not convergent in training.
So you cannot, usually, take the average military academy cadet and include some programming classes and some network security classes and expect to get an officer who is competent in computer security.
The exceptions being those cadets who were already programming while they were in high school (or earlier).
The problem with those early programmers is that they were immature kids back then so many of them will be excluded from the academies because of broken laws or group associations.
Re:warriors or experts? (Score:4, Insightful)
We need to kill the dumbass myth that the best programmers started when they're in diapers. The exception isn't the kid who've been making simple games for the last 6 years before academy or college, that's simply a kid who has 6 years more experience with loops, conditionals, and a handful of calls that can draw sprites onto the screen. A good student should be able to understand and properly apply those concepts in a few months and now their at the same level here. A great student is one who knows how to learn things that have not been taught to him. While the kid who taught himself programming in middle-school has this attribute, he's not the only one in the world who does.
Re: (Score:3)
They didn't start "in diapers". They are the ones that have put a couple thousand hours in already.
I think that the easiest counter to that is the Linux kernel and the people who have been working on that for more than a two decades.
There is no way that someone with "a few months" of class
Both (Score:1)
I started wih programming, at 14, while most of my classmates at Collegue, even touched a computer. They just hear the "Computer Science" hype. I.T. wasn't considered a well paid career, yet.
Interest in programming, is as good as years of experiences. It does help to some extra years of experience, than others.
By the way, even that I was fascinated by computers / programmers, I do have certified short atention problem: ADDH. Cheers.
Re: (Score:2)
We need to kill the dumbass myth that the best programmers started when they're in diapers.
You aren't going to kill that myth until you can beat the kid who grew up programming. I think anyone can become competent. But the people who push boundaries are naturally curious at a young age. Those people who reverse engineered their computer games. People like Steve Wozniak for instance -- he didn't learn most of what he knows in schools. He was hacking cable boxes and tricking long distance dial tones.
Especially when it comes to cyber security. A person has to get down and not take for granted what s
Re: (Score:1)
The US military academies are engineering schools (though they offer other majors as well) and ROTC cadets are also often science or engineering majors. I don't think that achieving a reasonable level of effectiveness over four years is that big of a hurdle, especially if there is follow-on training either over the summers or after graduation.
Re: (Score:2)
That was my first thought. The truly great hackers and programmers are going to be people who have been poking sticks into electronics since they were kids.
Sure, someone who can read binary and train and do what they are wanting them to learn can get much better -- but that will be a few thousand people covering the same skills as the instructor -- what you want is people who are looking at things nobody else is looking at. 4,000 people who can find the same exploit is 3,999 to many.
On the plus side, this m
Re: (Score:1)
What you said is probably true for the *average* cadet or midshipman. However, I'm assuming this was a volunteer competition, thus the competitors likely skewed toward the technical majors. It appears that at least Annapolis has a CS curriculum.
I'd recommend DARPA expand the scope of this competition to ROTC cadets and middies. There are plenty of top-tier CS schools that either host an ROTC unit (e.g. Berkeley) or have a cross-campus agreement with one (e.g. Stanford).
Some obvious problems with any appr
Re: (Score:1)
Warrant Officers fly attack helicopters.
Officers lead infantry, armor, field artillery, aviation, engineers, and other combat and combat support units.
Both officers and warrant officers are indeed warriors.
Good luck (Score:3)
Re: (Score:2)
By being in a federal academy, their pay is "free college" and they are expected to put in a number of years of service after graduation because of it.
Re: (Score:2)
Before they then rotate out into the private sector and start making the big bucks.
Re: (Score:2)
Re: (Score:2)
Your information is a bit out of date about aviators.
http://online.wsj.com/news/art... [wsj.com]
Re: (Score:1)
A H-1B with a full CCIE will work for $16,000 a year and be damn happy with that salary. That is not a good thing to hope for...
Re: (Score:2)
I imagine a lot of people will be signing up so they can get military grade training and then after a few years move into a well paid private sector job,
Re: (Score:2)
They might not have a monopoly on the best and brightest but those accepted to the Naval Academy and West Point are way above your average freshman. One example. The vast majority of America's advanced fighter pilots have degrees in Engineering, Physics, or Computer Science which plays a big part in the candidate selection process.
Re: (Score:2)
Maybe. If you're a good teacher, it's possible they could use you. Why not check them out?
Won't happen anytime soon. (Score:3)
I've never ever encountered a REAL knowledgeable hacker in the police force, not even in their cybercrime division. This is due to the fact that most of them, are schoolboys who have a degree in computer science & programming...unfortunately - the most difficult stuff, can't be taught in classes, this comes from YEARS of actual real-life practice and experience.
I do believe NSA have some serious badboys working for them however, but these are probably semi-skilled hackers who bragged too much, made a few mistakes - and are held captive by their own past. But you'll never ever find the best ones, because they don't brag about their achievements.
Re: (Score:2)
I've never ever encountered a REAL knowledgeable hacker in the police force, not even in their cybercrime division. This is due to the fact that most of them, are schoolboys who have a degree in computer science & programming...unfortunately - the most difficult stuff, can't be taught in classes, this comes from YEARS of actual real-life practice and experience.
And there it is, and why the civilian force will always be ahead of the curve.
Sock puppets and beyond (Score:2)
Pentagon Spokesman: Public Affairs Must Change With Times (Jul. 25, 2013)
http://www.defense.gov/News/Ne... [defense.gov]
"We must communicate with the American public in crisp and memorable lines that deliver a clear and accurate message,”"
Expect to see a lot of hints of new options to shape the flow of information and public opinion in the next few years.
Blocking select servers, the turning of online activists into "busy work" or traps
"Jeremy Hammond: FBI dire
But the biggest difference ... (Score:3)
The first problem is that their recruitment/training policies aren't designed for that.
Stephen Hawking would have difficult time being accepted to any military academy.
The NSA does not discr
Physical Test does matter (Score:1)
Agree, two of the main things that get into conflict, in having goverment cyberwarriors, are mindset & physical fitness.
Even than the goverment could built a goverment a desk job cyber unit, sooner, or later, may need a cyberwarrior unit, where people does know how to hack a network, run some miles carring 40 lbs, and, so on, Geek soldiers, that does do geek stuff, and does do military stuff, at the same time (not just playing Medal of Honor video games).
As a geek whom got interested in the military, ca
Re: (Score:2)
Hacker vs Good Programmer (Score:1)
I personally disagree on matching "Hacker equals Good Programmer", there are several things that may match, while others don't.
I consider myself a good programmer, I hate the hacker stereotype, yet, I constantly get labeled as a Hacker, even, if I have never cracked a password, and never enter on a network, or any of that kind of stuff.
But, I agree than both hackers & bright programmers, require certains skills that a Collegue or University, cannot provide. And the "out of the box" or "Daredevil" mental
Real subject matter (Score:2)
It is good to see that they are teaching them real subject matter, like binary disassembly and source code analysis. When I first read the headline, I was afraid that they were just turning out script kiddies.
Re: (Score:2)
OMG - Academies teach CS! (Score:1)
Really? Now we're surprised that part of a college Comp Sci degree at a military academy includes training in military applications of coding?
I've got a hot tip for you: they also teach them to shoot guns in college. I know - fucking insane, isn't it? It's like there's a whole secret government department that does nothing but think up ways to kill and disable people and infrastructure! Except, you know, it's not really secret.
Yeah this sounds totally efficient. (Score:2)
Ok, ok, I know that nothing is ever totally safe and the Natanz reactor in Iran was hacked without being connected to the internet but surely, better design, better systems management and better monitoring, etc, would reduce the need for such an astronomical number of heads, just sitting in a chair all day watching logs or looking for bugs in code? And you can be quite sure some idiot will still run an out of date flash or
Re: (Score:1)
Cyber goes back further than the 80s. You might look into Control Data Corp.
Re: (Score:2)
The modern usage of the suffix originates with Wiener's book [wikipedia.org], nearly a decade before CDC was founded.
Re: (Score:2)
That should be prefix, obviously.
Why not cyber defense? (Score:3)
Enders Game (Score:2)
A bit Enders Game feeling to this...
Dear U.S. Military (Score:2)
Please stop with the 'cyber' shit. It's already difficult enough to take you seriously without your use of this nonsensical prefix for all things computer and network related.
Zoom Group (Score:1)