Here is where the government steps in on the war on internet terror. The government has the funding and resources to concentrate on infiltrating the terrorist groups to provide the community greater insight into the problem. We know that the government’s main concern is infrastructure and self-preservation so terrorist targeting one specific entity or business becomes secondary by default. Disclosure of the intelligence takes a considerable amount of time since the information has to be interpreted and correlated against other information before being released. I have not experienced a mechanism or process that would release intelligence in a timely manner to a commercial business unless it was a matter of national security. Strike two is the inability, either by design or accident, to make the intelligence gathering and disclosure transparent and timely. This seems to be the greatest gap in protecting our commercial industries from Internet terrorist today. The lack of communication, fear or retaliation coupled with the shear expense prevents organizations from becoming the watchdogs for their respective industries. The terrorist seem to capitalize on this shortfall and use it to their benefit.
There are many journals and white papers that clearly confirm that the internet terrorist community is becoming increasingly sophisticated and beginning to leverage technology to protect their interests. I find this is amazing considering the lack of a fundamental definition to understand what we are monitoring, but I digress. Online session encryption and file encryption are being used to conceal information about activity and potential targets. They are building redundant systems that have the ability to withstand constant bombardment of noise by other terrorist groups or disgruntled citizens. They are beginning to build highly dynamic services that can disappear, re-emerge to change locations quickly and easily. The content on their sites is rich with multimedia such as movies or audio. They even implement security controls to track and prevent their version of threats to their presence. As the use of technology sophistication continues to grow, the less insight our governments will have about their activities and potential targets. The small amount of information we could potentially access today is drying up fast. We really need to open our eyes to this problem and build better methods to keep up or offset this threat growing into something much larger. We need to convince our governments that our society can be radically impacted by the collapse of our commercial industries as well as our critical infrastructure. Monitoring and active communication of emerging threats can further assist our industries to prepare or prevent the attacks, given the time to react. Sure, the down side is overreacting, but given that the majority of our businesses are on-line, I would enjoy the ability and time to manage my reaction.