Cyber Defense Review

SOF – GPF Integration: A Model for Cyber Operations

By LTC Alan Dinerman | November 18, 2015

Introduction

The US Army is engaged in the longest period of uninterrupted combat operations in American history. Since the fall of 2001, over two million US service members have served in Iraq and Afghanistan.1 In 2012, General Martin Dempsey, Chairman of the Joint Chief of Staff, directed the military capture the lessons learned from the last fourteen years of combat.  A year later, the Decade of War Working Group released “Decade of War: Enduring Lessons from a Decade of Operations.” This document outlines eleven critical lessons the military should retain and further research. Although one of lessons addresses the impact of the Internet in enabling super-empowered threats, the document does not explicitly provide any lessons regarding the execution of cyber operations. US offensive cyber was not a critical component of combat operations in Iraq or Afghanistan, but it has potential to become a pivotal force multiplier in future conflicts. Prudence dictates that US cyber professionals take heed of the “Decade of War”, as well as, other historical studies that exemplify the necessity of unity of effort.

SOF – Cyber Force Similarities

A striking similarity between SOF and US cyber forces is that each group of warriors operate outside of traditional units and have a unique mission set that is “not particularly well understood by conventional forces .”2 GPF ground commanders may have a comprehension of SOF tactics, but frequently lack detailed insights regarding high value targeting selection or covert operations. Extending that example to cyber operations, a GPF commander may appreciate the value of firewalls, but “fail to understand the true extent of threats to the network; computer network attack (CNA) and computer network exploitation (CNE) are less understood.”3 Both groups operate covertly conducting operations that are approved senior leadership. Whereas SOF conduct kinetic operations in clandestine areas, cyber operators conduct clandestine operations in networks owned by other countries. The veiled nature of their operations often place SOF in exclusive forward operating bases separated from GPF; likewise, cyber warriors traditionally operate in isolated Sensitive Compartmented Information Facilities (SCIFs). These similarities result in physical separation and operational isolation from GPF, resulting in a lack of unity of effort. The Decade of War’s lesson number six addresses the challenge.

In post-2003 Iraq, SOF were not always well coordinated with GPF. This led to situations were GPF, as the battlespace owners were left managing the second-order effects of special targeting mission.4 The “Decade of War” lesson number six illustrates operational isolation and a lack of unity of effort. The potential for discord between cyber operators and GPF is exacerbated because offensive cyber operations are generally conducted from SCIFs outside of the theatre of operations, with command and control not exerted by GPF battlespace owners, and frequently not part of COCOM targeting boards that nominate cyber targets. However, the potential impacts of cyber operations could significantly impact the indigenous population, placing the battlespace commander in the unenviable position of “managing the second-order effects.”5

Cyber Integration through Fusion Cells and Imbedded Liaisons         

SOF – GPF integration continues to gain momentum and appears to be becoming a hallmark of the future of land power. In a Defense One journal article, COL Michael Rauhut referenced the 2014 AUSA annual conference and its focus on maximizing SOF – GPF integration.6 Cyber forces must follow this model in order to both enhance intelligence based defensive cyber operations optimize the impact of offensive cyber operations.

The creation of fusion cells in Iraq and Afghanistan greatly eliminated operational isolation between SOF and GPF and provided battlespace commanders with situation awareness regrading SOF operations.7 Additionally, the introduction of fusion cells provided a venue for more effective targeting by integrating input from conventional forces, SOF, ISR, and the government agency partners. This model should be a template for cyber operational integration. Cyber operations will desynchronize unity of effort if executed in a vacuum. Although the execution of offensive cyber at the strategic or theatre level will probably continue for the foreseeable future, the impacts will absolutely reverberate at the tactical level. GPF commanders must have input and situational awareness regarding planned and executed cyber missions. Fusion cells will provide a platform for integrated cyber intelligence, targeting, integrated cyber battle damage assessment, and integrated situational awareness between Cyber Operators and GPF.  LTG Michael Flynn and BG Charles Flynn expressly articulate the importance of fusion cells in their article “Integrating Intelligence and Information”. When discussing the lessons learned from Iraq and Afghanistan, they contend “Fusion is about focusing our intelligence and information collections systems and about the speed of responding to the task, precision in addressing the problem with the best available capability, and understanding the expected outcomes. Fusion is a leadership function. It must be top-down driven, and we must provide top cover so that the fusion element can have complete freedom of action.”8

The emerging US Army’s cyber force’s seminal focus is protecting the DoD Defense Information Network (DoDIN) and planning/executing strategic cyber operations. However, US cyber leadership must remember that tactical and operational integration is essential. Tactical and operational liaisons are necessary to ensure a common operating picture and kinetic / cyber synergy. LTG Edward Cardon, commander of U.S. Army Cyber Command, discussed the need to organize for specific missions in a 2015 cyber operations conference.9 He also referenced the lessons learned from SOF experiences in Iraq and Afghanistan. Although he was specifically referring to task organization and defensive cyber operations, the underpinnings of his message are that the cyber force must become more integrated with the GPF military community.

Conclusion

The Army Doctrine and Training Publications (ADRP) 3-0 Unified Land Operations states “For Army forces the dynamic relationships among friendly forces, enemy forces, and the variables of an operational environment make land operations dynamic and complicated. Regardless of the location or threat, Army forces must synchronize actions to achieve unity of effort that ensures mission accomplishment. They do this as a vital partner in unified action.”10 Not unlike operations in the other warfighting domains and operational environments, the need to achieve unity of effort in the cyber domain is essential. The Decade of War: Enduring Lessons from a Decade of Operations applies to cyber forces as equally as kinetic forces; GPF – SOF integration provides a valuable framework for the integration of cyber forces in full spectrum warfare. Drawing on the insights from the evolution of land power, we can enhance the impacts of cyber power through fusion cells and integrated force structures.

About the author

dinermanLTC Alan Dinerman is a U.S. Army Officer with a vast experience in the information environment; these experiences include information and communications technology (ICT) policy, integration, and architecture, Defensive Cyber Operations, and spectrum planning / management.  Alan has held positions in both the military and the U.S. inter-agency.  He has a BS from the U.S. Military Academy at West Point and a MS from the Missouri University of Science and Technology.

 

 

Endnotes

1Amy Bingham and Luis Martinez, “U.S. Veterans: By the Numbers. ABC News, September 3, 2015, Accessed: 15 October 2015 from http://abcnews.go.com/beta/Politics/us-veterans-numbers/story?id=14928136.

2Christopher Paul and Isaac Porche, The Other Quiet Professionals: Lessons for future cyber forces from the evolution of special forces.  Washington DC, RAND Publishing, 2014. Assessed: October 10, 2015 from http://www.rand.org/content/dam/rand/pubs/research_reports/RR700/RR780/RAND_RR780.pdf, pg. 33.

3Ibid, pg. 33.

4Elizabeth Young, Decade of War: Enduring Lessons from a Decade of Operations, PRISM 4,        no. 2, February 2013. Accessed: October 7, 2015 from https://nduezproxy.idm.oclc.org/login?url=https://search.ebscohost.com/login.aspx?direct       =true&db=tsh&AN=90007225&site=ehost-live&scope=site.

5Ibid.

6Michael, Rauhut, The Army Wants to Fully Integrate Conventional and Special Operations Forces. Defense One Journal (October 14, 2014). Assessed: October 8 2015 from http://www.defenseone.com/management/2014/10/army-wants-fully-integrate-conventional-and-special-operations-forces/97160/ on 19 October 2015.

7Elizabeth Young, Decade of War: Enduring Lessons from a Decade of Operations, PRISM 4,        no. 2, February 2013. Accessed: October 7, 2015 from https://nduezproxy.idm.oclc.org/login?url=https://search.ebscohost.com/login.aspx?direct       =true&db=tsh&AN=90007225&site=ehost-live&scope=site.

8Charles Lynn and Michael Lynn. Importance of Fusion Cells in Integrating Intelligence and Information, Military Review. January – February 2012, Assessed: October 9th, 2015 from http://usacac.army.mil/CAC2/MilitaryReview/Archives/English/MilitaryReview_20120229_art005.pdf on 20 October 2015.

9Sean Lyngaas. The Quest for Command and Control in Cyberspace. FCW – The Business of Federal Technology. July 6, 2015. Accessed: 12 October 2015 from http://usacac.army.mil/CAC2/MilitaryReview/Archives/English/MilitaryReview_20120229_art005.pdf.

10ADRP 3-0, Unified Land Operations. May 2012. Accessed on 18 October 2015 from http://armypubs.army.mil/doctrine/DR_pubs/dr_a/pdf/adrp3_0.pdf, pg. 13.



US Army Comments Policy
If you wish to comment, use the text box below. Army reserves the right to modify this policy at any time.

This is a moderated forum. That means all comments will be reviewed before posting. In addition, we expect that participants will treat each other, as well as our agency and our employees, with respect. We will not post comments that contain abusive or vulgar language, spam, hate speech, personal attacks, violate EEO policy, are offensive to other or similar content. We will not post comments that are spam, are clearly "off topic", promote services or products, infringe copyright protected material, or contain any links that don't contribute to the discussion. Comments that make unsupported accusations will also not be posted. The Army and the Army alone will make a determination as to which comments will be posted. Any references to commercial entities, products, services, or other non-governmental organizations or individuals that remain on the site are provided solely for the information of individuals using this page. These references are not intended to reflect the opinion of the Army, DoD, the United States, or its officers or employees concerning the significance, priority, or importance to be given the referenced entity, product, service, or organization. Such references are not an official or personal endorsement of any product, person, or service, and may not be quoted or reproduced for the purpose of stating or implying Army endorsement or approval of any product, person, or service.

Any comments that report criminal activity including: suicidal behaviour or sexual assault will be reported to appropriate authorities including OSI. This forum is not:

  • This forum is not to be used to report criminal activity. If you have information for law enforcement, please contact OSI or your local police agency.
  • Do not submit unsolicited proposals, or other business ideas or inquiries to this forum. This site is not to be used for contracting or commercial business.
  • This forum may not be used for the submission of any claim, demand, informal or formal complaint, or any other form of legal and/or administrative notice or process, or for the exhaustion of any legal and/or administrative remedy.

Army does not guarantee or warrant that any information posted by individuals on this forum is correct, and disclaims any liability for any loss or damage resulting from reliance on any such information. Army may not be able to verify, does not warrant or guarantee, and assumes no liability for anything posted on this website by any other person. Army does not endorse, support or otherwise promote any private or commercial entity or the information, products or services contained on those websites that may be reached through links on our website.

Members of the media are asked to send questions to the public affairs through their normal channels and to refrain from submitting questions here as comments. Reporter questions will not be posted. We recognize that the Web is a 24/7 medium, and your comments are welcome at any time. However, given the need to manage federal resources, moderating and posting of comments will occur during regular business hours Monday through Friday. Comments submitted after hours or on weekends will be read and posted as early as possible; in most cases, this means the next business day.

For the benefit of robust discussion, we ask that comments remain "on-topic." This means that comments will be posted only as it relates to the topic that is being discussed within the blog post. The views expressed on the site by non-federal commentators do not necessarily reflect the official views of the Army or the Federal Government.

To protect your own privacy and the privacy of others, please do not include personally identifiable information, such as name, Social Security number, DoD ID number, OSI Case number, phone numbers or email addresses in the body of your comment. If you do voluntarily include personally identifiable information in your comment, such as your name, that comment may or may not be posted on the page. If your comment is posted, your name will not be redacted or removed. In no circumstances will comments be posted that contain Social Security numbers, DoD ID numbers, OSI case numbers, addresses, email address or phone numbers. The default for the posting of comments is "anonymous", but if you opt not to, any information, including your login name, may be displayed on our site.

Thank you for taking the time to read this comment policy. We encourage your participation in our discussion and look forward to an active exchange of ideas.