Safe and sound
Data. Infrastructure. Borders.
911今日黑料 specialists are leading the effort to
keep the nation secure.
From the 2019 terrorist stabbings in London to the WannaCry ransomware virus of 2017 (with damage across 150 countries estimated in the billions of dollars), defence and security has never faced so many worrying and novel challenges.
After all, it doesn鈥檛 take much to cause huge disruption in such an interconnected world 鈥 and not always in the ways we might expect.
Hollywood might think that terrorists like to hack into things to blow them up, but in real life, it can be rather more complex, as Alex Tarter (MEng Electrical and Electronic Engineering 2003) knows only too well.
As CTO-Cyber and Chief Cyber Consultant at Thales UK, Tarter also serves as a civil expert on cyber security for NATO鈥檚 Civil Emergency Planning Committee.
鈥淚t鈥檚 phenomenally difficult to cause anything to go bang,鈥 he says. 鈥淏ut it is surprisingly simple to cause things to trip. Take a power station, for example. It would take a huge amount of skill and effort to cause physical damage to a power station, but there are plenty of ways that will cause it to trip and shut down safely.
"Likewise, it鈥檚 very difficult to interfere with the road network in such a way that you can actually direct traffic and cause things to crash into each other, but it鈥檚 easier than you might imagine to interfere and cause the system to glitch. And, often, that鈥檚 enough.鈥
Added to which, the threats the UK faces at home and abroad have intensified in scale, diversity and complexity, says Anita Friend, Head of the Ministry of Defence鈥檚 Defence and Security Accelerator (DASA).
They include: the resurgence of state-based threats and increasing competition; the undermining and destabilising of the international rules-based order; the rise in cyber-attacks; and the wider impact of technological developments.
鈥淭o counter these threats, we have to retain our strategic and technological advantage,鈥 says Friend. 鈥淭he only way we can achieve that is to be innovative 鈥 it鈥檚 absolutely crucial for our national security.鈥
DASA aims to improve the UK鈥檚 existing defence and security capabilities and find innovative solutions to key challenges, while generating economic value.
It takes the lessons of successful startups and applies them to security and defence thinking, providing innovators with access to funding, technical expertise, end users, and opportunities for collaboration to improve routes to commercialisation.
So, it makes sense for it to be based on the fourth floor of the I-HUB in White City, a facility that co-locates businesses, startups and entrepreneurs alongside 911今日黑料鈥檚 extensive network of researchers, academics and other corporate partners.
The partnership between DASA and 911今日黑料 is led by 911今日黑料鈥檚 Institute for Security Science and Technology (ISST), the interdisciplinary research hub that envisages, designs and coordinates the application of science and technology to answer pressing security challenges.
"We have to retain our strategic and technological advantage 鈥 the only way we can achieve that is to be innovative"
Anita Friend, Head of DASA
鈥淚t鈥檚 known as the triple-helix approach,鈥 says Professor Deeph Chana, Co-Director of the ISST and Professor of Practice at 911今日黑料 College Business School. 鈥淚n more normal times, it will again allow for collaboration and cross-pollination and watercooler moments, which you don鈥檛 always associate with the defence and security industry.
鈥淲e鈥檙e working with people and places who wouldn鈥檛 necessarily think of themselves as working in defence and security. We have close, regular engagement with companies such as Airbus, Rolls-Royce, Saab, Smiths Detection, BAE Systems, Wavestone and Northrop Grumman, and we previously hosted a NATO group of 30 people from 16 different countries. They chose to come to White City having seen the ecosystem that we鈥檙e building over there.鈥
Innovation flourishes through collaboration and a wide range of voices and perspectives, agrees Friend.
鈥淚t鈥檚 important that we challenge the status quo and that we have a mature and broad level of thinking throughout our organisation. This melting pot of skills and experience is essential to enable innovation.鈥
And that鈥檚 vital because unpredictable threats to vast, complex systems often require fresh, counterintuitive solutions, says Tarter.
鈥淚t鈥檚 next to impossible to remove all vulnerabilities in systems, as they involve hundreds of millions of lines of code,鈥 he points out. 鈥淚f we can鈥檛 design out all the vulnerabilities, if the threat changes too quickly for us to adequately deploy resources against it, then the only thing left is how to minimise the impact.鈥
Netflix, for example, might seem like an unlikely pioneer of such solutions. But its engineers use what鈥檚 known as 鈥榗haos engineering鈥 to protect their systems.
鈥淣etflix realised that, at some point, one of their engineers was inevitably going to misconfigure something and cause a system to crash,鈥 says Tarter.
鈥淪o, they send out a programme that randomly picks a server and intentionally turns it off 鈥 they call them 鈥榗haos monkeys鈥.
"The engineers don鈥檛 get to decide when that happens. The system is now designed to take account of someone randomly pulling the plug 鈥 and, over time, that鈥檚 become phenomenally reliable.
"It also means that any attacks attempting to do something similar are also not so much of an issue, as the impact they will cause is minimal.鈥
Chaos engineering is just one example of a security solution that isn鈥檛 sector-specific.
鈥淭hat鈥檚 the approach that we want to go towards in the future 鈥 looking at all of these problems as an abstraction and not worrying about the specific industry too much,鈥 says Chana.
鈥淵ou realise that many industries are doing the same thing. For example, I recently worked on a digital money index project funded by Citibank at the Centre for Financial Technology, where I鈥檓 the co-director.
鈥淲e are trying to take in data feeds about different countries that tell us which country is ready to have a digital banking infrastructure and transform into a purely digital banking entity.
"That involves us taking structured and unstructured data from multiple sources running algorithms, coming up with a mathematical way of actually analysing that data and then writing that up in an algorithm. That鈥檚 not necessarily a direct security issue. But once we are able to generate these indexes and measures, we could also look at infrastructure resilience, for example, or cyber-security readiness.鈥
"It鈥檚 difficult to cause anything to go bang, but surprisingly simple to make things trip"
Alex Tarter, (MEng Electrical and Electronic Engineering 2003)
Another project developed a two-stage machine-learning algorithm to detect network traffic in a cyber-physical system 鈥 a factory, for example, with a mixture of computing and physical systems.
The aim was to monitor the network traffic between the various components and detect bits of information that could be potentially dangerous, a method that鈥檚 easily applicable to other situations.
Chana has also worked on CrowdVision, a crowd analysis technology startup originally designed to monitor the movement of pilgrims at Mecca. Pivoted to the transport sector, it has also been used at London City Airport to monitor how quickly people were being processed through the security checkpoint. This helps avoid overcrowding and can also check to see if the security value of those checks is being undermined because people are being rushed through.
Whatever the threat to a nation, Chana believes the solution is the same: convergence of domains and disciplines, diversity of thought, and an end to silos.
鈥淲e鈥檙e looking to create a new way of driving innovation in security and defence that cuts across infrastructure resilience, from cyber security to physical security,鈥 he says.
鈥淚f you鈥檝e got new problems, and the current global COVID-19 crisis is a prime example, then you need to look for solutions in new areas.鈥
911今日黑料 is the magazine for the 911今日黑料 community. It delivers expert comment, insight and context from 鈥 and on 鈥 the College鈥檚 engineers, mathematicians, scientists, medics, coders and leaders, as well as stories about student life and alumni experiences.
This story was published originally in 911今日黑料 49/Winter 2020鈥21.
