For the Infosecurity Mag: https://www.infosecurity-magazine.com/opinions/mssps-strive-detection-ninjas/.
I am having some strange epiphanies as I go knee-deep into SIEM engineering. While the MSSPs have existed in all flavors and sizes, there seems to be a broad consensus that they simply can’t mimic the capabilities of an in-house security operations function – especially when it comes to gaining context, visibility and speed.
Continue reading “How the MSSPs Can Strive to be Detection Ninjas – Infosecurity Mag”
My second op-ed on the Kudankulam-ISRO hack for Outlook. The first piece for HT laid bare the challenges. This one proposes some parameters for cyber deterrence. Deterrence in cyberspace could be extremely bizarre and challenging: https://www.outlookindia.com/website/story/opinion-a-post-kudankulam-roadmap-for-indias-cyber-deterrence/342174.
Continue reading “A Post-Kudankulam Roadmap For India’s Cyber Deterrence – Outlook”
My op-ed in the Hindustan Times, originally titled, “An act of war in the Indian cyberspace.” My every word is measured: https://m.hindustantimes.com/analysis/what-the-cyber-attacks-on-kudankulam-and-isro-show-analysis/story-OVlR5MO18yk7jQFrnRvTpM_amp.html.
On September 3, I notified the National Cyber Security Coordinator about network intrusions into the Kudankulam Nuclear Power Plant (KKNPP) and Indian Space Research Organisation (ISRO), after being tipped off by a third-party. It was right around the time of Chandrayaan-2’s final descent.
Continue reading “An act of war in the Indian cyberspace – Hindustan Times”
In a guest post in relation to The Centre for Internet & Society’s recently held roundtable on “India’s cyber defense strategy,” Pukhraj Singh looks at the critical fissures – at the technical and policy levels – in global normative efforts to secure cyberspace. By charting out the key vectors and power asymmetries among key stakeholders – both leading state actors and private actors like Microsoft – Singh posits that there is much to be done before we circumscribe cyber operations within legal strictures: https://cis-india.org/internet-governance/blog/guest-post-before-cyber-norms-let2019s-talk-about-disanalogy-and-disintermediation.
Continue reading “Before cyber norms, let’s talk about disanalogy and disintermediation – The Centre for Internet & Society”
My essay for the Modern War Institute, US Military Academy at West Point: https://mwi.usma.edu/death-knell-international-norms-cyber-conflict/.
On July 8, Michael Schmitt, a law professor and former judge advocate in the US Air Force, posted a perplexing tweet about changing his mind on the “status of cyber capabilities as ‘weapons.’” He followed it up with the link to a recent paper he coauthored for the International Law Studies journal of the US Naval War College.
Continue reading “A Death Knell for the International Norms of Cyber Conflict – US Military Academy”
My opinion piece for The Quint: https://www.thequint.com/voices/opinion/united-states-iran-standoff-cyber-warfare-military-donald-trump.
Despite what the media likes to believe, there are no watersheds in the history of cyber conflict. Offensive cyber operations simply don’t work that way. You don’t irreversibly leap over the Rubicon, but crisscross it a couple of times to derive reasonable threshold estimates of power projection.
Cyber operations — as the militarised, regimented form of hacking is often called — don’t manifest themselves as precision-guided munitions. They’re more like a game of probability.
Continue reading “US-Iran Tensions: What Indian Cyber Commanders Can Learn – The Quint”
Published by The Print:
With Facebook taking down pages linked to Pakistani cyber actors spreading disinformation in India ahead of the 2019 Lok Sabha elections, it’s becoming increasingly clear that India has been late in spotting the danger: if there is a Pakistani inter-services directorate as lethal as the Inter Services Intelligence, it is, undoubtedly, the Inter-Services Public Relations.
Continue reading “Asif Ghafoor: The Gerasimov of South Asia – The Print”