Former National Security Agency and the CIA Director Gen. Michael Hayden took to the pages of the Air Forceâs Strategic Studies Quarterly for a discussion on the future of all things cyber.
But, first, there are some issues in cyberâs present that need to be cleared up, he wrote.
âRarely has something been so important and so talked about with less clarity and less apparent understanding than this phenomenon,â Hayden began his piece.
One thing is clear, though, he said. Too much of the information about cyber vulnerabilities is classified.
âThis stuff is overprotected. It is far easier to learn about physical threats from U.S. government agencies than to learn about cyber threats,â he wrote.
The government and the military need to ârecalibrate what is truly secret,â he wrote, to initiate a broad flow of information to people and corporations who face cyber threats.
In other words, he said, we need a culturewide âcommon knowledgeâ of cyber, that, now, is lacking. And after very public disclosures, such as WikiLeaks, it will likely be difficult to create.
âWith no common knowledge, no meaningful discussion, and no consensus . . . the policy vacuum continues,â he said. âThis will not be easy, and in the wake of WikiLeaks it will require courage; but, it is essential and should itself be the subject of intense discussion. Who will step up to lead?â
Part of the problem stems from the fact that cyber is such a new domain. And, yes, in case you were wondering Hayden (âlike everyone else who is or has been in a U.S. military uniform,â he wrote) considers it an actual domain.
But even though cyber has been enshrined in law, he wrote, this one is different from land, sea, air and space.
âMan can actually change this geography, and anything that happens there actually creates a change in someoneâs physical space.â
Hayden also took on the concept of cyber war, the topic of which much ink has been spilled over (some say too salaciously) especially in a post-Stuxnet and WikiLeaks world.
Hayden jettisons the martial metaphors, in favor of a more realistic discussion of the âinherent insecurity of the web.”