In this lecture only course, you will learn what cyber is and gain an understanding of Computer Network Attack (CNA) and Computer Network Exploitation (CNE), which are derived from several public unclassified DoD documents, manuals, and directives. You will examine parallels between the cyber and kinetic counterparts and learn strategic uses, including when to deploy CNA and CNE operations. You will discover the limitations and legal considerations of CNA and CNE operations, and you'll walk through various attack scenarios to determine your proper course of action.

This course is one of the course requirements for the Defensive Cyberspace Operations Engineer (CSFI-DCOE) certification exam.

Certification: Defensive Cyberspace Operations Engineer (CSFI-DCOE)

What You'll Learn

• Cyber, CNA, and CNE
• CNA and CNE deployment assets within a strategic context in support of obtaining a kinetic goal
• Historic attacks and new cyber warfare models that can be applied to a state-sponsored attack
• Information assurance and defensive measures
• Defense-in-Depth and real-life examples of how to apply it to computer network defense
• Why information assurance for a computer environment is critical to defending the network from nefarious attacks
• Defense tools

Who Needs to Attend

Anyone interested in the field of cyber warfare/cyber operations and/or looking to expand a cyber security career, including cyber commanders, information operations officers, information security/assurance professionals, cyber security consultants, cyber strategists, military members (J2, J3, J6, J9 types), SOC/NOC security analysts, network security engineers, penetration testers, auditors, government officials, and security engineers

Prerequisites

There are no prerequisites for this course.

Follow-On Courses

• CSFI: Defensive Cyber Operations Engineer (DCOE)

Course Outline

1. Introduction to Cyber Warfare

• Distinguish between cyber warfare and cyber playing field with regards to state and non-state attacks while identifying their strengths and weaknesses
• Evaluate emerging weapons and determine their strengths and weaknesses
• Evaluate various national and international interpretations as they pertain to cyber warfare, and compare and contrast these interpretations for current and future cyber warfare conflicts
• Categorize case studies of computer network attacks and exploitation based on historical data of attacks through analysis of state and non-state attacks
• Determines an approach for network defense
• Integrate information assurance into cyber warfare strategy by knowing the strengths and limitations of using information assurance in public/private sector and in military computer environments

2. Computer Network Defense (CND)

• Distinguish between computer network defense and attack as related to cyber warfare and determine strengths and weaknesses for each
• Evaluate Defense-in-Depth and determine how it relates to the principle of information assurance
• Evaluate various defensive layers and defense-based applications and apply them to various case studies
• Compare the various layers of the Defense-in-Depth strategy and determine how to implement it in a computer environment
• Integrate information assurance into the computer environment and determine the strengths and weaknesses based on the assessment
• Evaluate the security posture and provide mitigations

3. Computer Network Exploitation (CNE) and Computer Network Attack (CNA) Theory

• Compare and contrast network exploitation and attack in cyber warfare
• Evaluate various exploits and determine possible counter measures
• Analyze tools that could be implemented as part of a countermeasure solution
• Evaluate various state- and non-state-sponsored cyber attacks and compare and contrast the attack techniques
• Analyze various cyber weapons in regards to concept of creation, usage, and dissemination of cyber weapons
• Integrate information assurance in private, public, and military computer environments and evaluate the strengths and weaknesses of facilitating information assurance in each environment

4. International Cyber Warfare Strategies and Doctrines

• Analyze the various methods for determining cyber warfare, and compare and contrast each method to state and non-state actors
• Evaluate various doctrines as they relate to cyber warfare and determine strengths and weaknesses of each
• Categorize various historic cyber attacks based on international doctrine
• Integrate information assurance into cyber warfare strategy and analyze how this approach could be used to prevent cyber attacks

5. Law and Policy of Armed Cyber Conflicts

• Distinguish between legal and ethical ramifications of state and non-state attacks and state self-defense
• Evaluate various international organizations and agreements for cyber warfare
• Analyze various legal terms that pertain to cyber conflict, and evaluate the strengths and weaknesses of the terms for cyber warfare
• Analyze the strengths and weaknesses of the UN as it pertains to cyber warfare
• Integrate information assurance policy for armed cyber conflicts and analyze the effectiveness of such policy