Problem
Consider the current UK National Cyber Security Strategy.
1. The strategy states that the UK is to have capabilities that can not only detect but also counter cyber activities of adversaries. Assume that countering the activities of a foreign state actor would involve traversal of network assets in a third country: What considerations must be given in determining the scope and appropriateness of a counter-effort? Give a reasoned answer.
2. Which key problem must be answered before it is advisable to launch a set of countermeasures as described in the previous sub-question?
3. How can another entity such as a terrorist group or state actor take advantage of uncertainty in ascribing certain cyber activity to a specific actor?
4. Briefly explain the concept of resilience and give a reasoned explanation as to why it can be argued that resilience to cyber attacks may be considered more effective than the ability to prevent incidents.
5. Why would a national cyber security strategy wish to distinguish between terrorist groups and state actors even if some of their capabilities may be indistinguishable?