{"id":91847,"date":"2017-12-02T15:42:00","date_gmt":"2017-12-02T15:42:00","guid":{"rendered":""},"modified":"2023-01-06T20:52:48","modified_gmt":"2023-01-06T20:52:48","slug":"giving-it-away-on-linedissecting-opsec","status":"publish","type":"post","link":"https:\/\/cvnextjob.com\/index.php\/2017\/12\/02\/giving-it-away-on-linedissecting-opsec\/","title":{"rendered":"Giving it Away On-Line?\u2014Dissecting an OPSEC Case Study"},"content":{"rendered":"
<\/div>

<\/h3>\n
<\/div>\n

\"\"<\/a><\/p>\n

<\/em><\/div>\n
<\/em><\/div>\n
<\/em><\/div>\n
<\/em><\/div>\n
<\/em><\/div>\n
<\/em><\/div>\n
<\/em><\/div>\n
<\/em><\/div>\n
<\/em><\/div>\n
<\/em><\/div>\n
<\/em><\/div>\n
<\/em><\/div>\n
<\/em><\/div>\n
The F-22 Raptor in flight. Did a veteran fighter pilot disclose sensitive data about the Air Force’s newest fighter, or simply discuss information that was already available in the public domain?<\/em>
Part I of II<\/p>\n

By Nate Hale <\/p><\/div>\n

Asked to justify restrictions on certain forms of internet activity by military personnel\u2014on government computers\u2014DoD officials invariably cite concerns about operations security (OPSEC). In an increasingly wired world, the Pentagon is worried that adversaries can glean sensitive or even classified information from blogs, chat rooms and other on-line forums.<\/div>\n

<\/p>\n

Noah Shachtman (who runs the widely-read defense blog, The Danger Room) has written extensively about this issue; his most recent post on the topic (which contains quotes from this blogger) can be found here<\/a>. Mr. Shachtman\u2019s reporting confirms what many already suspect; the Air Force\u2014and other military organizations–see little value in blogs, and are moving aggressively to limit access through its IT network: <\/div>\n

<\/p>\n

“The Air Force is tightening restrictions on which blogs its troops can read, cutting off access to just about any independent site with the word “blog” in its web address. It’s the latest move in a larger struggle within the military over the value — and hazards — of the sites. At least one senior Air Force official calls the squeeze so “utterly stupid, it makes me want to scream.” <\/span><\/div>\n

<\/p>\n

<\/span><\/div>\n
And sure enough, retired Air Force Colonel Tom Ehrhard (now a senior fellow at the Center for Strategic and Budgetary Assessments) invoked the OPSEC issue in defending the crackdown. As he told Noah Shachtman: <\/div>\n

<\/p>\n

“It is increasingly clear that active exploitation could take advantage of airmen and civilians who want to inform and correct the often outrageous, false assertions on these blogs. In doing so, it is easy for well-meaning insiders to violate operational security (OPSEC) tenets, either directly or tangentially. We are in a different world today when it comes to sensitive military information, and foreign intelligence operatives surely understand this and will exploit it. As a former member of Strategic Air Command, where OPSEC was (rightly) an obsession, this has been obvious to me for some time in reading aerospace-oriented blogs. This policy strikes me as a timely reminder to Air Force professionals that they should be on guard when blogging, because someone is watching.”<\/span><\/div>\n

<\/p>\n

<\/span><\/div>\n
<\/span>Underscoring the potential threat, the Air Force is now circulating a PowerPoint presentation entitled \u201cCyberOPSEC: An F-22 Case Study,\u201d detailing information about the service\u2019s state of the art fighter that appeared \u201con a popular public website about military and civilian aircraft.\u201d Apparently, the source for much of the data was a Raptor pilot, who posted under the handle \u201cdozerF22.\u201d A copy of the briefing was obtained by In From the Cold<\/em>. <\/span><\/div>\n

<\/p>\n

<\/span><\/div>\n
The implication of the study–reportedly compiled by the Air Force Office of Special Investigations (AFOSI), the Navy\u2019s Criminal Investigative Service (NCIS), the FBI and the Department of Homeland Security\u2014is clear. By participating in the forum, answering questions about the F-22 and providing personal information, \u201cDozer\u201d displayed questionable judgment and might have disclosed valuable information about the nation\u2019s newest stealth fighter. The referenced assessment is \u201cUnclassified\/Open Source,\u201d so discussion in public forums does not betray any classified or sensitive information.<\/p>\n

Discovering Dozer\u2019s identity wasn\u2019t very difficult, according to the presentation. The pilot\u2019s public profile listed both his name and military e-mail address. And, if that weren\u2019t enough, another poster on the forum quickly testified to Dozer\u2019s reputation as a fighter jock: <\/p><\/div>\n

<\/p>\n

“For those who don’t know, Dozer is one heck of a fighter pilot. <\/span><\/div>\n

<\/p>\n

<\/span><\/div>\n
Then-Capt Dozer, a flight leader with the ‘Grim Reapers’ of the 493rd FS RAF Lakenheath, UK, on night one of Operation Allied Force led a package of four F-15Cs and four F-16CJs protecting the first wave of F-117A Night Hawks flying over Serbia. Engaging a charging MiG, he launched missiles through the formation of F-117s, ending in the MiG exploding about 1,000 feet off the nose of one of the Night Hawks. The pilot ejected safely out of the MiG-29 fireball. <\/span><\/div>\n

<\/p>\n

<\/span><\/div>\n
Dozer encountered some more MiGs later in the conflict and scrambled the night the F-117A, callsign Vega31, Col Zelko, was shot down and rescued (More details and Dozer’s photo in the hard-to-find book “Stealth Down,” by Ross Simpson). <\/span><\/div>\n

<\/p>\n

<\/span><\/div>\n
An honor to be able to chat with a pilot that has been there and done that.<\/span><\/div>\n

<\/p>\n

<\/span><\/div>\n
Kevin<\/span><\/div>\n
Aero-engineer<\/span><\/div>\n

<\/p>\n

<\/span><\/div>\n
<\/span>The pilot\u2019s on-line profile also included his picture in a flight suit (name and rank clearly visible), with an F-22 in the background. <\/span><\/div>\n

<\/p>\n

Over the months that followed, postings by Dozer and other forum participants attracted quite an audience, according to the OPSEC analysis. The board\u2019s F-22 discussion logged over 700 posts, which were read more than 68,000 times. New users \u201ccame out of the woodwork,\u201d the study claims, creating new accounts and posting questions for the F-22 pilot. The queries covered a broad range of technical, tactical and performance issues for the Raptor. Some sample questions: <\/div>\n

<\/p>\n

\u00b7 \u201cThat rocks\u2026so is a JHMCS (Joint Helmet-Mounted Cueing System) or equivalent going to be included in the upgrades along with the AIM-9X (air-to-air missile)?
\u00b7 \u201cWith the upgraded air to ground capabilities, will this allow the Raptor to attack mobile\/moving targets in addition to autonomously identifying ground targets?\u201c
\u00b7 \u201cWhat are your opinions regarding the effectiveness of the 20mm cannon on the F-22?\u201d
\u00b7 \u201cIt has been said that 2-3 RAF Eurofighters have been sent to Nellis AFB for testing and training\u2026might you confirm this information and tell us some details about the result of Raptor versus Typhoon up to now?
\u00b7 \u201cYou mentioned you are moving up north. Where are you heading?\u201d
\u00b7 “It is said that Raptor nowadays can supercruise with the speed of around Mach 2. Could you make a confirmation or comment for this declaration?\u201d
\u00b7 \u201cI just want to know if that was the fastest pitch the Raptor can achieve?\u201d
\u00b7 \u201cIf the Raptor was to carry external stores would it loose its ability to supercruise straight away?\u201d<\/div>\n

<\/p>\n

One participant even asked about a specific feature on the F-22\u2019s fuselage, posting a photo of the area in question with the query: “Dozer, what does this picture show? <\/div>\n

<\/p>\n

Over the months that followed, the F-22 pilot responded to scores of questions, offering general information on the radars carried by Raptor variants; the location\u2014and function– of engine bleed air and bypass doors; the accuracy of aircraft weight numbers published in another aviation forum, and the date when his new unit (located in Alaska) would receive its last jets. A few of his replies are listed below:<\/div>\n

<\/p>\n

\u00b7 \u201cI think the fuel numbers are not classified.\u201d
\u00b7 \u201cThe F-22 is not sitting alert in Alaska; however, we occasionally pulled a very tiny amount of alert at Langley.\u201d
\u00b7 \u201cThe pace will really pick up in August, both aircraft and pilots (in Alaska)
\u00b7 \u201cNo they aren\u2019t modified, and they have the older generation radar. The AK and beyond tails (although Langley does have three Lot 5 tails) are the ones with the next generation radar.\u201d<\/div>\n

<\/p>\n

According to the study\u2019s authors, months of on-line questions and answers revealed a number of details about the F-22, ranging from its basing status, to the function of specific flaps and doors, and details on how various weapons systems operate. Other responses \u201cconfirmed and denied performance rumors,\u201d discussed the status of radar upgrades, and covered \u201cissues with thrust vectoring.\u201d<\/div>\n

<\/p>\n

Judging from the OPSEC presentation, readers would think that the on-line forum provided a veritable treasure trove of information on the Air Force\u2019s newest fighter. But a closer examination of the study–and its conclusions–reveals that much of the information \u201cdisclosed\u201d on the discussion board had been circulating for months\u2014even years\u2014before Dozer and other participants weighed in. <\/div>\n

Tomorrow: A look at earlier discussions and media reporting on F-22 capabilities, deployments and operational issues. Did Dozer\u2019s on-line comments represent a genuine OPSEC violation\u2014or was it largely a rehash of information already available to the public and potential adversaries? And, what does the incident say about existing military policies on information disclosure and on-line activities? <\/em><\/p>\n","protected":false},"excerpt":{"rendered":"

The F-22 Raptor in flight. Did a veteran fighter pilot disclose sensitive data about the Air Force’s newest fighter, or simply discuss information that was already available in the public domain?Part I of II By Nate Hale Asked to justify restrictions on certain forms of internet activity by military personnel\u2014on government computers\u2014DoD officials invariably cite […]<\/p>\n","protected":false},"author":2,"featured_media":91848,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":[],"categories":[1],"tags":[],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/cvnextjob.com\/index.php\/wp-json\/wp\/v2\/posts\/91847"}],"collection":[{"href":"https:\/\/cvnextjob.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/cvnextjob.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/cvnextjob.com\/index.php\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/cvnextjob.com\/index.php\/wp-json\/wp\/v2\/comments?post=91847"}],"version-history":[{"count":0,"href":"https:\/\/cvnextjob.com\/index.php\/wp-json\/wp\/v2\/posts\/91847\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/cvnextjob.com\/index.php\/wp-json\/wp\/v2\/media\/91848"}],"wp:attachment":[{"href":"https:\/\/cvnextjob.com\/index.php\/wp-json\/wp\/v2\/media?parent=91847"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/cvnextjob.com\/index.php\/wp-json\/wp\/v2\/categories?post=91847"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/cvnextjob.com\/index.php\/wp-json\/wp\/v2\/tags?post=91847"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}