Lawmakers demand specialized training for the U.S. military cyber forces to play the role of the enemy during the war game designed to test the country’s cyber defense. This requirement was rolled into a recent defense bill, ensuring that attackers don’t confuse the real threats with the fictional one. These agreements would be made with Ash Carter, the Defense Secretary. One official compared it with the Red Flag, an annual exercise for fighter pilots held at Nellis Air Force Base, Nevada.
This Thursday, the committee’s Emerging Threats and Capabilities panel voted to create a training program for cyber opposition forces by March 31, 2017, while deploying the friendly hackers against the U.S. cyber defenses will need to be sanctioned by September 2017. The red teams would practice scenarios throughout the year.
“The committee recognizes that special arrangements will be needed to deconflict training from real-world activities that may happen on mission networks,” the legislators said.
Michael Gilmore, the Pentagon’s operational test and evaluation director said that some periodic “red team” cyberattacks have already been experienced over time with positive results. He also suggested that during all major practices, each combatant command should allow the opposition forces to produce life-like cyber attacks to improve their skills to defend from the real cyber criminals.