All posts by Guest Author

Cyber War

Why Are Our Ships Crashing? Competence, Overload, and Cyber Considerations

8 Comments

By Chris Demchak, Keith Patton, and Sam J. Tangredi

These are exclusively the personal views of the authors and do not necessarily reflect the views of the U.S. Naval War College or the Department of Defense.

Security researchers do not believe in coincidences. In the past few weeks, a very rare event – a U.S. Navy destroyer colliding fatally with a huge commercial vessel – happened twice in a short period of time. These incidents followed a collision involving a cruiser off Korea and the grounding of a minesweeper off the Philippines, and have now resulted in the relief of a senior Seventh Fleet admiral. Surface warfare officers (SWOs) look to weather, sensors, watchstanders, training requirements, leadership and regulations (COLREGS) as possible contributing factors to the collisions.  

Cyber security scholars, in contrast, first look to the underlying complex technologies trusted by the crew to determine the proper course of action. With the advancements in navigational technology, computer-aided decision making and digital connectivity, it is human nature that seafarers become more dependent on, as well as electronic aids for navigation and trusting the data the systems provide. While the U.S. Navy emphasizes verification of this data by visual and traditional navigation means, the reality is the social acceptance of the validity of electronic data is a feature of modern culture. The U.S. Navy, with an average age in the early 20s for sea-going sailors, is not immune from this effect. But what if the data is invalid or, as an extreme possibility, subject to outside manipulation?

In directing a pause for all warship crews (not currently conducting vital missions) during which to conduct assessments and additional training, the Chief of Naval Operations – Admiral John Richardson – was asked whether the Navy was considering cyber intrusion as a possible cause. The CNO responded that concerning cyberattack or intrusion, “the review will consider all possibilities.”

The truth could be that only mundane factors contributed to the accident, but as an intellectual thought experiment, what follows are explanations following the logic of open-source information. The first set of explanations will focus on the human in the loop to argue that the fundamental cause is likely human miscalculation rather than intentional distortion of data. The second explanation will focus on the criticality of accurate data provided to humans or their technologies. The pattern suggests a lack of ‘normalness’ as the ‘normal accidents’ of complex systems deeply integrated with cyber technologies – in frequency, locations, and effects. In the case of the destroyers, a credible case—based on analysis of land-based systems–could be made for a witting or unwitting insider introduction of malicious software into critical military navigation and steering systems. The conclusion will offer motivations for timing and targets, and some recommendations for the future.

Similarities in the Scenarios      

There are similarities in recent collisions. Both happened in darkness or semi-darkness. Both happened in shipping lanes in which literally hundreds of major ships pass per day, to say nothing of smaller ships and fishing vessels. Crew manning of both vessels approach 300 sailors, with approximately one-eighth of the crew on watch involved in controlling/steering, navigating, as lookouts, and operating propulsion machinery when the ship is at its lowest states of alertness, known as peacetime steaming. It is logical that both ships were at peacetime steaming at the time since they were not conducting military exercises. In contrast, when USS JOHN S. McCAIN conducted a freedom of navigation operation (FONOP) in the vicinity of the artificial islands China has created to buttress its territorial claims to the South China Sea on August 9, her crew was likely at high alert.

In looking for possible explanations, we have downloaded and examined readily available open-source data concerning the two recent collisions, including identified locations of the incidents, vessel characteristics, crew manning, weather, proximity to land, automatic identification system (AIS) ship tracks, and shipping density data. We have consulted with naval experts on ship handling and on the Sea of Japan and Strait of Malacca.

Collision avoidance on Navy vessels can be roughly cast into four elements, three technical and one human. On the bridge, the watchstanders have (1) the AIS system which relies on tracking ships that broadcast their identities, (2) the military radar systems linked into the ships combat systems, (3)the civilian radar and contact management systems, and (4) the eyes of sailors standing watch on lookout normally posted port, starboard, and aft on the vessel. All these systems are complementary and overlapping, but not exactly delivering the same information.  

The AIS system – in which merchant vessels transmit their identities and location data – is an open and voluntary system relying on GPS. In principle, keeping the AIS on is required for the 50 thousand plus commercial vessels over 500 GRT (gross registered tons). As of 2016, 87 percent of merchant shipping uses satellite navigation and 90 percent of the world’s trade is carried by sea. Nonetheless, ship captains can turn it off and travel without identifying themselves (at least until detected by other means). U.S. Navy vessels do not routinely transmit AIS but each bridge monitors the AIS of ships around them in addition to the military and civilian radar systems and the eyes of the sailors.

In quiet or tense times, the bridge watch and the Combat Information Center (CIC) teams of naval warships must synthesize this information and make sound decisions to avoid putting the ship into extremis. This is a continuous, round-the-clock requirement and a tough task for even the most skilled.

In this photo released by Japan’s 3rd Regional Coast Guard Headquarters, the damage of Philippine-registered container ship ACX Crystal is seen in the waters off Izu Peninsula, southwest of Tokyo, on June 17, 2017 after it had collided with the USS Fitzgerald. (Japan’s 3rd Regional Coast Guard Headquarters/AP)

In contrast, merchant ships such as the Alnic MC, a chemical tanker (which hit JOHN S. McCAIN) have tiny crews with great reliance on autopilot. Depending on the circumstances, possibly only three people would be on the watch as the ship’s commercial navigation autonomously follows the route that the captain set initially. One of the indications that the ACX Crystal, the cargo vessel colliding with the USS FITZGERALD, was on autopilot was its behavior after the collision. Having been temporarily bumped off its course by the collision, it corrected and resumed steaming on the original course for about 15 minutes before stopping and turning to return to the collision location. While nothing is yet published about what was happening on either bridge in the June FITZGERALD collision, one can surmise that it took 15 minutes for the small crew to realize what had happened, to wrest control back of the behemoth, and turn it around.    

Possible “Normal” Explanations

Flawed human decision-making

U.S. Navy warships maintain teams of watchstanders in order to mitigate the effects of a flawed decision being made by any one individual. Ultimately, one individual makes the final decision on what actions to take in an emergency—the Officer of the Deck (OOD) if the Commanding Officer is not available—but recommendations from the others are assumed to help in identifying flaws in precipitous decisions before they are actually made.

In contrast, in merchant ships with only two or three deck watchstanders, there is less of a possibility that flawed decision-making is identified before incorrect actions are taken. These actions can also be influenced by unrelated disorienting activities. Alcohol is not permitted on U.S. warships, abuse of drugs at any time is not countenanced, and U.S. naval personnel are subjected to random urinalysis as a means of enforcement. On a merchant ship these policies vary from owner to owner, and inebriation or decision-making under-the-influence has contributed to many past collisions.   

Common tragedy from fatigue in an inherently dangerous environment

Collisions at sea happen. U.S. warships have collided with other warships, including aircraft carriers and with civilian vessels. USS FRANK EVANS was cut in half and sunk in 1969 when it turned the wrong way and crossed the bow of an Australian aircraft carrier. In 2012 the USS PORTER, a destroyer of the same class as the FITZGERALD and McCAIN, was transiting the Strait of Hormuz. The PORTER maneuvered to port (left) to attempt to get around contacts ahead of it, passing the bow of one freighter astern and then was hit by a supertanker it had not seen because it was screened behind the first freighter. Many of the previous collisions involved a loss of situational awareness by an at-least-partly fatigued crew. It is hard to avoid such conditions in an inherently dangerous, around-the-clock operating environment.

Mechanical Failure

There has been no report of a problem with the FITZGERALD prior to her collision. The Navy, however, has acknowledged the MCCAIN suffered a steering casualty prior to the collision. While backup steering exists in the form of manual controls in aft steering or using differential propulsion to twist the ship in the absence of rudder control, such control methods are not as efficient as the normal controls. Additionally, there would be a brief delay in switching control unexpectedly or transmitting orders to aft steering. In normal conditions, this would not be serious. In a busy shipping lane, with the least hesitation due to shock at the unexpected requirement, the brief delay could be catastrophic.

Quality of training for ship handling by young Surface Warfare Officers (SWOs)

One can look at the U.S. Navy Institute Proceedings (the premier independent naval journal) and other literature to see signs these incidents may be symptoms of a larger issue involving the training of watchstanders. In March 2017, LT Brendan Cordial had a Proceedings article entitled “Too Many SWOs per Ship” that questioned both the quality and quantity of the ship handling experience that surface warfare officers (SWOs) received during their first tours. Later in a SWO’s career track, the focus of new department heads (DH) is tactical and technical knowledge of the ship’s weapons systems and ship’s combat capabilities, not necessarily basic ship handling. Ship handling skill are assumed. But such skills can atrophy while these officers are deployed on land or elsewhere, and individual ships have unique handling characteristics that must be learned anew.

In January 2017, CAPT John Cordle (ret.) wrote an article for Proceedings titled “We Can Prevent Surface Mishaps” and called into question the modern SWO culture. Peacetime accident investigations rarely produce dramatic new lessons. They simply highlight past lessons. Errors in judgment, lapses in coordination, task saturation, fatigue, a small error cascading into a tragedy. Those who have stood the watch on the bridge or in the CIC read them, and frequently think, “There, but for the grace of God, go I.” However, unlike in the aviation community, near misses and accidents that almost happened were not publicly dissected and disseminated to other commands. Officers have always known how easy it is to be relieved for minor mishaps, but they do not have the community discussion of all those that nearly happened to learn vicariously from the experiences.

Pace of forward operations – especially for the MCCAIN after the FITZGERALD event

Both destroyers are homeported in Yokosuka, Japan, the headquarters of the U.S. Seventh Fleet. While only the line of duty investigation has been released for the FITZGERALD collision, one can assume that the officers and crew of the McCAIN would have heard some of the inside details from their squadron mate. Logically the CO of McCAIN would be doubly focused on the safe operation of his ship as he approached the highly congested traffic separation scheme (TSS) in the straits of Malacca and approach to Singapore harbor. But the loss of one of only seven similar and critical ships in a highly contested environment would almost certainly increased the tempo and demands on the MCCAIN as it attempted to move into the Singapore harbor just before sunrise.

In this case, tempo should have been accommodated adequately. While technology is a key component of U.S. warships, it is only one of many tools. Lookouts scan the horizon and report contacts to the bridge and CIC watch teams. The officer of the deck (OOD) uses their professional skills and seaman’s eye to judge the situation. If in doubt, they can, and should, call the Captain. Indeed, close contacts are required to be reported to the Captain. The bridge and CIC have redundant feeds to display contacts detected by radar, sonar, or AIS. The computer can perform target motion analysis, but crews are still trained to manually calculate closest points of approach and recommend courses to avoid contacts via maneuvering boards (MOBOARDs). This is done both on the bridge and in the CIC so even if one watch misses something critical, the other can catch it. When ships enter densely trafficked areas, additional specially qualified watchstanders are called up to augment the standard watch teams. Yet, it is possible that—under the theory of “normal” accidents—somewhere in this multiply redundant sensor system, misread or misheard information led to the human equivalent of the “telephone game” and the wrong choice was dictated to the helm.

But along with the “normal” explanations, the possibility of cyber or other intentional distortion of critical data does remain a possibility.

Cyber Misleads and Mis-function

If one argues that neither the Navy nor commercial crews were inebriated or otherwise neglectful, accepts that the weather and visibility were good for the time of day with crew in less stressful routine sailing postures, finds serendipitous mechanical failure of severe navigational significance on both ships difficult to accept as merely normal accidents, and questions if tempo distraction alone could explain both events, then – as Sherlock would say – the impossible could be possible. It is worth laying out using unclassified knowledge how cyber intrusions could have been used to cause warships to have collisions. This is not to say the collisions could not have multiple sources. But for the purposes of this thought experiment, however, this section will focus on cyber explanations.

Cyber affects outcomes because it is now a near universal substrate to all key societal and shipboard functions. Either cyber errors mislead humans, or its digitized operations malfunction in process, action, or effect, or both while buried inside the complex systems. To make this point, one of the two major classes of cyber assaults – the distributed denial of service (DDOS) – works by using what the computer wants to do anyway – answer queries – and simply massively overloads it into paralysis. It has been shown in a number of experiments that large mechanical systems integrated with electronics can be remotely made to overload, overheat, or vibrate erratically into breakdown by hackers or embedded malware. In several reports, the McCAIN may have suffered failures in both its main steering system (highly digitized) and its backup systems (more mechanical). Less information has been released on the earlier collision between the FITZGERALD and the ACX Crystal cargo ship so steering issues there cannot be known at this time.

However, that the two collisions involved large commercial ships with similar crews and technologies, and that two U.S. Navy vessels were sister ships close in age and technologies suggests commonalities that could be more easily exploited by adversaries using cyber means rather than humans. In particular, commonly shared logistics or non-weapon systems such as navigation are more likely to have vulnerabilities in their life cycles or embedded, routinized processes that are less sought by – or discernible to – the standard security reviews.

In a complex socio-technical-economic system like that involved in both circumstances, the one-off rogue event is likely the normal accident – i.e., the FITZGERALD incident. But too many common elements are present in the McCAIN event to suggest a second, simply rogue outcome. Hence, it is necessary to explore the three possible avenues by which the navigation could have been hacked without it being obvious to the U.S. Navy commander or crew in advance.

First, external signals (GPS, AIS) can be spoofed to feed both navigation systems with erroneous information for any number of reasons including adversary experimentation. Second, the civilian contact management systems on the civilian or military bridge (or both) could be hacked in ways either serendipitously or remotely engineered to feed erroneous data. Third, insider-enabled hacks of one or both of the destroyer’s combat systems could have occurred in the shared home port of Yokosuka to enable distortion of sensors or responses under a range of possible circumstances.

Spoofing GPS inputs to navigation

It does not take much technical expertise to spoof or distort GPS signals because the GPS system itself is sensitive to disruptions. The 2016 removal of one old satellite from service caused a 13.7 microsecond timing error that occurred across half of the 30-odd GPS satellites, causing failures and faults around the world in various industries. Anything that can be coded can be corrupted, even inadvertently. Anything so critical globally which does not have enforced, routine, and rigorous external validity tests, defenses, and corrective actions, however, is even more likely to attract the hacks from both state and nonstate actors.

Major national adversaries today have indicated interest in having the capability to arrange GPS distortions. With their already large domestic units of state-sponsored hackers, the Chinese, Russians, and North Koreans have already sought such capabilities as protections against the accuracy of largely U.S. missile guidance systems. Hacking GPS has been reported for some years, and while some efforts to harden the system have been pursued, spoofing mechanisms located on land in tight transit areas or even on other complicit or compromised vessels could mislead the autopilot. The website Maritime Executive reported mass GPS spoofing in June 2017 in the Black Sea, impacting a score of civilian vessels and putatively emanating from Russian sources most likely on land nearby.

However, it does not have to be a matter of state decision to go to war to have this kind of meddling with key navigation systems, especially if land or many other vessels are nearby. In a cybered conflict world, state-sponsored or freelance hackers would be interested in trying to see what happens just because they can. Not quite a perfect murder because of the external sources of data, however, the spoofed or spoiled data would provide misleading locations in real time to autopilot software. Vessels and their bridge would operate normally in their steering functions with bad data. They go aground or collide. So might airplanes. And the distorted signals could then stop, allowing normal GPS signals to resume and indicate that something went wrong in navigation choices but not in time to stop the collision or with the attribution trace necessary to know by whose hand.

In these two cases, the DDG FITZGERALD looks like it failed to give way to the ACX Crystal which appears by the tracking data to have been on autopilot. If the ACX Crystal’s navigation was operating on false data, and the equivalent civilian system on the U.S. ship was as well, then the watch team of the FITZGERALD would have had at least two other sources conflicting with the spoofed information – the military systems and the eyes of the sailors on watch. For the moment assume no deliberate hack of the military systems, its radars are correctly functioning, and the alert sailors have 20-20 vision, then the watch team of the FITZGERALD clearly miscalculated by believing the civilian system. Or, the overlap in relying on GPS is so profound that the military system was also fooled and the human eyes overruled. In that case, the FITZGERALD watch team trusted the civilian system over other inputs.

AIS data map of course of container ship MV ACX Crystal around the time of collision with USS Fitzgerald near Japan on June 16, 2017. (Wikimedia Commons/marinetraffic.com)

In the McCAIN case, if one assumes all the same conditions, the Navy ship had the right of way and the oil tanker plowed into it. Presumably the tanker autopilot – if it was on as one could reasonably assume – was coded to stop, divert, warn, and otherwise sound the alarm if it sees another ship in its path. Presumably, its code also embeds the right of way rules in the autopilot’s decision-making. A convincing GPS spoof could, of course, persuade the autopilot navigation that it is not where it was, thereby seeing more time and space between it and the Navy ship.  

Hacking civilian navigation radars shared by all vessels

According to experts, commercial navigation systems are remarkably easy to hack quite apart from GPS spoofing. The cybersecurity of these bridge systems against deliberate manipulation has long been neglected. In the same unenforced vein as the voluntary identification requirement of AIS, the global maritime shipping industry has relied on requirements by maritime insurance companies and specific port regulations to control individual shipping firms’ choices in vessels technologies (and level of compliance). Myriad reports in recent years discuss the increasing sophistication of sea pirates in hacking commercial shipping systems to locate ships, cherry pick what cargo to go acquire, show up, take it, and vanish before anything can be done. That is more efficient than the old brute force taking of random ships for ransom.

In addition, shipping systems tend to be older and receive less maintenance – including time-critical patches – more likely to be scheduled with infrequent overall ship maintenance in port. In the recent “Wannacry” ransom-ware global event, the major shipping company Maersk – profoundly and expensively hit – reported its key systems used WIN XP unpatched and unsupported by Microsoft. Hacking groups are also targeting ports and their systems as well.

If systems are compromised, hacks could have opened back doors to external controllers or at least inputs when the commercial ship crossed into locations close enough to land or adversary-compromised surface or submerged vessels. Then the misleading inputs could be more closely controlled to be present when U.S. vessels have been observed to be traveling nearby or are in a particular position. Navy vessels may not transmit AIS, but they are detectable on radar as ships. A radar contact without an AIS identity could be a trigger for the malware to at least become interested in the unidentified vessel, perhaps sending pre-arranged signals to remote controllers to track and then wait for instructions or updates. The autopilot would then act on the inputs unaware of the distortion.

An interesting aspect of corrupting code is that exchanging data across commercial systems alone can provide a path for corrupted code to attempt to install itself on both ends of the data exchange. Stuxnet traveled through printer connections to systems otherwise not on any internet-enabled networks. If the civilian navigation systems are proprietary – and that is likely the case on commercial ships – then it is likely that the U.S. vessels’ bridges also have ‘hardened’ COTS civilian systems whose internal software and hardware are proprietary. That means a hack successful on the commercial side could open an opportunity to hack a similar or targeted civilian system that happens to be found on a U.S. Navy vessel. Furthermore, it is possible the two systems share vulnerabilities and/or have exchanges that are not visible to external observers.

Navy IT security on vessels might also regard the civilian proprietary systems as less a threat because they are not connected to internal military systems. They presumably are standalone and considered merely an additional navigation input along more trusted and hardened military systems. The commercial systems are (ironically) also less likely to be closely scrutinized internally, because that would mean the U.S. Navy is violating contractual rules regarding proprietary commercial equipment. Outside of war – in which such holds are likely to be ignored in crises – there is little incentive to violate those proprietary rules.

One can conceive of a Navy bridge hosting a commercial navigation system that at some point along its journey is compromised with nothing to indicate that compromise or the triggering of the software now interwoven with the legitimate firmware inside the equipment. By happenstance, the Navy vessel comes in to the vicinity of an appropriately compromised large commercial vessel. At that point, the adversary hackers might receive a message from the commercial vessel to indicate the contact and have the option to distort the navigation inputs to help the commercial vessel’s autopilot plow into the warship.

Of course the adversary is helped if the Navy equipment is also hacked and, perhaps, the vessel loses its digitized steering right before the impact.

Hacking U.S. Navy military navigation systems

Remotely accessing and then changing the triggers and sensors of military systems – if possible – would be very hard given the Navy’s efforts in recent years. That possibility is tough to evaluate because the open source knowledge regarding such systems is likely to be third party information on proprietary subordinate systems at least five or six years old – or much more. Both major U.S. adversaries in Asia – North Korea and China – already show propensities for long-term cyber campaigns to remotely gain access and infiltrate or exfiltrate data over time from all military systems, including shipborne navigation. We deem this less likely simply because this is where the cybersecurity focus of the Navy and DOD already is.

However, the history of poorly-coded embedded systems, lightweight or incompetent maintenance, and deep cyber security insensitivity of third party IT capital goods corporations is appalling across a myriad of industry supply chains, even without the national security implications well-known today. While commercial vessels could be hacked remotely, a more likely avenue for entry in Navy systems would be through these corrupted supply chains of third parties, shoddily constructed software, or compromised contractors creating or maintaining the ship’s navigation and related systems. Using insiders would be especially easier than remotely hacking inside when the vessels were in a trusted harbor nestled inside a long-term ally such as Japan. Using insiders to access the systems during routine activities would be less likely to be detected quickly, especially if the effects would not be triggered or felt until particular circumstances far from port and underway.

An especially oblivious contractor engaged in using specialized and proprietary software to patch, check, or upgrade equipment could inadvertently use compromised testing or patching tools to compromise the vessel’s equipment. For example, a Russian engineer carrying in a compromised USB stick was reportedly the originating source of the Stuxnet malware in Iran – whether he was witting or unwitting is unknown. The actions would have been the same. Furthermore, Navy systems are built by contractors with clearances of course, but the systems would have deeply buried and often proprietary inner operating code. Corrupted lines of code could rest inactive for some time, or be installed in the last minute, to lie dormant during most of the deployment until triggered. None would visibly display any corruption until the programmed conditions or triggers are present.

In hacked systems, triggers are really hard to discern in advance. In part, the skill of the adversary deftly obscures them, but also the objectives of adversaries can vary from the classic “act on command of national superiors,” to “see how far we can get and how,” to pure whimsy. With no real personal costs likely for any of these motives, the game is defined by the skill, patience, and will of the adversary, especially when proprietary commercial code is involved. While it is safer in terms of attribution for hackers to have more automatic triggers such as those used in the Stuxnet software, the action triggers do not have to be automatic. In navigation systems, data is exchanged constantly. Conceivably there can be a call out and return buried in massive flows of data.

Without extensive AI and rather advanced systems management, how massive data flows are monitored can vary widely. While it is more and more common to secure a system’s outgoing as well as incoming communication, a multitude of systems that are not particularly dated have been shown to allow rather subtle communications to go on for some time without any event or external revelation. One can imagine code calling home or acting autonomously when triggered by something as mundane as a sensor noting the presence of a large commercial cargo ship within X nautical miles, moving in Y direction, and responding to encrypted queries from its own navigation system. Highly skilled botnet masters are able to detect anomalies across thousands of infected computers and, in a pinch, de-install huge botnets in minutes. It is not difficult to imagine something buried in these otherwise secured systems, especially if the adversary is willing to wait and see when it would be useful. For North Korea, the latest ratcheting of tensions between the Hermit dictatorship and the U.S. could easily provide a reason.

Hacking seems more of a possibility when considering how both destroyers failed to navigate under circumstances that were, to most accounts, not that challenging. It is possible that the first such event – the FITZGERALD collision – was a rogue event, the kind of complex system surprise that routinely but rarely emerges. What is less likely is that a similar ship in broadly similar circumstances shortly thereafter proceeds to have a similar event. Exquisitely suspicious are the reports of the failure of the steering system and possibly its backups on McCAIN, though not on the FITZGERALD. That effect is not spoofed GPS or hacked civilian systems, and it would take much more reach of the malware to achieve. In keeping with the presumption here that a successful insider hack occurred on both ships and the malware was waiting for a trigger, the lack of steering failure (at least no reports of it) on the FITZGERALD could also mean the malware or external controller was smart enough to know collision did not need additional failures to ensure damage. The ship was already in the wrong place having failed to cede right of way. Holding fire like that would be desired and expresses sophistication. Typical technique in cybered conflict is deception in tools; adversaries do not burn their embedded hacks unless necessary. Once shown, the cyber mis-function becomes unusable again against an alert and skilled opponent such as the U.S. Navy.

Furthermore, the Aegis destroyers – of which both Navy vessels are – suffer from a rather massive knowledge asymmetry with a major adversary. At some point in the early to mid 2000s, the Chinese stole the entire design of the AEGIS systems on which the Navy spent billions across contractors and subcontractors. While built to roughly the same specifications as a class of ships, each vessel reflects the upgrades and systemic changes of its particular era, with the older 1990s ships like the FITZGERALD and McCAIN having more patches and bolt-ons than the newer versions of the ship. Fundamental ship elements are hardwired into the vessel and hard to upgrade, while more modular and likely proprietary modern systems are plugged in and pulled out as time goes on. The adversary who stole those comprehensive plans would know more about the older AEGIS ships than they would about the ships completed after the plans were stolen and newer systems used in the installs. Anyone who has ever faced the daunting prospect of rewiring a large house knows by ugly personal experience that the new wiring is forced to work around the existing layout and limitations. Ships are even more rigid and, quite often, the more critical the system, the less flexibly it can be changed.

Thus, vulnerabilities built into the highly complex earlier AEGIS systems would be both known to the thieves after some years of study and perhaps covert testing on other nations’ AEGIS systems, and be very hard to definitively fix by the Navy itself, especially if the service is not looking for the vulnerabilities. Unnerving, but not inconceivable, is the failure of the digitized steering system on the McCAIN – if it happened. Exceptionally telling, however, is the presumably near-simultaneously loss of backup systems. If the steering and contact management systems were compromised, steering could be made to fail at just the right time to force a collision. A good insider would be needed to ensure both, but only an adversary with considerable engineering design knowledge could reliably hazard a successful guess about how to disable the more likely mechanical backup systems. The adversary to whom the original AEGIS theft is attributed – China – is known to be very patient before using the material it has acquired.

Both Civilian and Military Systems

Why not put hacks on both systems? Commercial vessels are easier and could be left in place for some time pending being used and, in the meantime, slowly embedding Trojans via maintenance in port or third party access to remove and replace proprietary boxes or upgrades in software. Preparation of the cyber battlefield occurs – as does the ‘battle’ – in peacetime well before anything or anyone is blown up. China and North Korea have thousands of personnel on the offensive and value extraction cyber payroll. Careers could easily be made by such coups of installing such software as potential tools and have them still in place ready to be used months or years later.

Furthermore, Westerners are routinely afflicted with the rationality disease of believing that all actions – especially if adversaries are suspected – must be intentionally strategic and logically justifiable. Otherwise, why would the adversary bother? There is also a tendency to underestimate the comprehensive approach of most adversaries working against the U.S. Silence does not mean compliance or concession on the part of adversaries, especially not China or North Korea. Installing access points or triggers on all possible systems within one’s grasp is a basic long-term campaign strategy. Even now, when a major hack of a large corporation or agency is found, it has often been in place for years.

Motives for the Collisions

Timing may be serendipitous, but at least one adversary – North Korea – has already sunk a naval vessel of a U.S. ally, South Korea, with no public punishment. Certainly, North Korea has been loudly threatening the U.S. in the region and has cyber assets capable of what has been described above. However, one difficulty in determining culpability is that, while China is an ally of North Korea, neither will readily share information so valuable as the AEGIS design plans or even what each other may have hacked. One can readily ascribe eagerness to hurt the U.S. physically to North Korea, but attributing the same motivation to China at this point is problematic.  

There are other possibilities, however. Both nations – like most nations – are led by individuals with little technical comprehension. In particular and most unfortunately, in a world of ubiquitous cybered conflict where ‘just because one can’ or ‘just to see what could happen’ operates equally well as a motivation, adversary states with a large army of hackers and technically ignorant superiors could easily have their own cyber wizards working in ways their superiors can neither discern nor realistically curtail. In this vein the McCAIN case (and possible FITZGERALD), these over eager technically skilled subordinates could have gotten quite lucky.

Why a DDG that happens to be sailing around Japan? Why one near Singapore? Why now? Well, “why not” is as good a reason, especially if the U.S. Navy publicly fires the ships’ leadership and declares the incidents over. In that case there are no consequences for adversaries. Perhaps the FITZGERALD was the rogue event, but—following that—the N.K. leaders then asked their wizards to take out another as signaling or retribution for recent U.S. “insults.” That motivation has some persuasive aspects: no publically apparent risks; a nifty experiment to see what can be done if needed in larger scale; and the public turmoil alone puts North Korea with a smug secret while the U.S. twists trying to figure it out. Cyber offensive capabilities in the hands of technically incompetent leaders have serious implications for misuse and, critically, inadvertent outcomes that are strategically more comprehensive and potentially destabilizing than ever intended.

Implications for the Navy

If it is leadership that failed in both cases, the Navy has a long history of responding and clearing out the incompetence. If it is cyber that undercut that leadership and killed sailors, the Navy has an uphill battle to definitively establish all the avenues by which it could have and did occur, including fully recognizing the multiple sources of such deliberately induced failure. The literature on complex large-scale system surprise and resilience offers means of preventing multisource failures in socio-technical systems. However, these means may not be compatible with current Naval thought and organization. The literature recommends parsing larger systems into self-sufficient and varying wholes that are embedded with redundancy in knowledge (not replication or standardization), slack in time (ability to buffer from inputs routinely), and constant trial and error learning. Trial and error learning is particularly hard because it routinely involves violations of current practices.

The current organization of the U.S. military seems incompatible with the concept of easily decomposable units engaging and disengaging as needed in collective sense-making. Neither can it accept constant systems adjustments, pre-coordinated but dynamically flexed rapid mitigation and innovation, and whole systems discovery trial and error learning. The truth is that in the cybered world, nothing can be trusted if it is not reliably verified by multiple, independent, and alternative sources of expertise. USS FITZGERALD did not discern its error and correct fast enough to avoid being in the wrong place at the wrong time. The McCAIN may have trusted its right of way entitlement too long, or made a traffic avoidance maneuver and suffered a steering casualty at the worst possible moment. Or perhaps both ships encountered something unexpected: a commercial ship operating on corrupted code. In the future, we should expect that any merchant ship controlled by digital information technology can be hacked.

This is a new idea for the Navy, that merchant shipping can be used as proxies for adversary intentions. With over 50,000 of such large vessels sailing around and next to U.S. ships all over the world, the adversary’s tools of coercion would be both effective and effectively obscured to visual or other indicators of malice. The world of cybered conflict is deeply riven with deception in tools and opaqueness in origins, and now it is clearly on the seas as well. Even if the Navy rules that both incidents were simply bad shiphandling, adversaries have already seen the great impact that can be had by making relatively fewer Navy ships collide with big, dumb, large commercial vessels. Even if cyber did not play the deciding role in these events, there is every reason to assume it will in the future. Just because they can try, they will.

Dr. Chris C. Demchak is the Rear Admiral Grace Murray Hopper Professor of Cybersecurity and Director of the Center for Cyber Conflict Studies, Strategic and Operational Research Department, Center for Naval Warfare Studies, U.S. Naval War College.

Commander Keith “Powder” Patton, USN, is a naval aviator and the former Deputy Director of the Strategic and Operational Research Department, Center for Naval Warfare Studies, U.S. Naval War College.

Dr. Sam J. Tangredi is professor of national, naval and maritime strategy and director of the Institute for Future Warfare Studies, Strategic and Operational Research Department, Center for Naval Warfare Studies, U.S. Naval War College.

Featured Image: Damage is seen on the guided missile destroyer USS Fitzgerald off Japan’s coast, after it collided with a Philippine-flagged container ship, on June 17, 2017 (AFP)

Asia-Pacific, Podcast

Sea Control 142 – The Blue Economy and Ocean Clusters with Kate Walsh

1 Comment

By Matthew Merighi 

Join us for the latest episode of Sea Control for a conversation with Professor Kate Walsh of the U.S. Naval War College about the Blue Economy, ocean clusters, and their relevance for maritime security. It’s a conversation about innovation, organization, and competition between the U.S. and China.

Download Sea Control 142 – Blue Economy and Ocean Clusters with Kate Walsh

For additional information on this topic, take a look at the following links:

The Ocean Economy in 2030 (OECD)

Center for the Blue Economy (Middlebury Institute of Monterey)

CMSI Workshop on U.S. and Chinese Perspectives on the Blue Economy (U.S. Naval War College)

Vision for Maritime Cooperation under the Belt and Road Initiative

A transcript of the interview between Professor Walsh (KW) and Matthew Merighi (MM) is below. The transcript has been edited for clarity. The views in this interview do not reflect those of the U.S. Naval War College, Navy, Department of Defense, or Federal Government.

MM: As is Sea Control tradition, please introduce yourself.

KW: I teach at the U.S. Naval War College as an Associate Professor of National Security Affairs. I teach officers and others policy analysis, which is basically policy decision-making in the U.S. and how it works or doesn’t work in some cases. I am also an affiliate with the China Maritime Studies Institute (CMSI) where I do research on China.

I came to the Naval War College as a former think tanker and consultant in Washington, DC. In 1997, I was offered a project in the Commerce Department to look at China and issues of technology transfer. That’s where I started on a different area of research focusing on science, technology, and innovation in China. I’ve stuck with it since then. In 2013 or thereabouts, I started to find references to the Blue Economy in that research. I started asking around what the was and didn’t get any good answers. I found since then that this idea is one which China and others are developing.

MM: Let’s dive into the idea of the Blue Economy. I’ve noticed that there’s a general lack of awareness on what the Blue Economy is. Tell us more about what it is, what industries are involved, and how is it relevant to your maritime work.

KW: One of the challenges is the different terminology whether you call it the Blue Economy, Ocean Economy, or Marine Economy. The definitions are not set yet so it’s hard for the U.S. and China to know what the other is talking about.

It’s organized around clusters where industries, such as fishing and shipbuilding, ones which deal with marine issues, are clustered together in a coastal area. It follows on earlier research done in the 1990s on innovation clusters in Silicon Valley. The ocean clusters build on that original research because it’s not just about innovation but also conservation. There’s the industry, innovation, and conservation aspects in ocean clusters. Some of the industries involved include oil and gas, shipbuilding, fishing, fisheries, conservation NGOs, government departments including navies and coast guards, and anyone having to do with anything wet or ocean or coastal or water. But the terminology differs in different areas.

MM: You mentioned different time periods. From your research, how long has this ocean cluster concept been around? Is it new or is it new branding for an existing trend?

KW: I’m still investigating this as I know you and others are as well. My best understanding is that they build on earlier research but focusing on an area which doesn’t get a lot of attention. My sense is that the cluster concept only goes back to about the late 2000s or 2010. Iv’e been focusing mostly on China’s Blue Economy concept which dates to a policy from Hu Jintao in 2010. China’s concept was built on earlier work in Europe and the U.S., so dating it is difficult. It’s definitely still new, which is what makes the terminology so difficult. That terminology is a real world problem. Just recently I was at an event and these definitional issues were raised because it hasn’t really been decided what they mean even in the U.S. It’s a new field in early days, which is exciting.

MM: Have you discovered why the Blue Economy is going unnoticed? A lot of our listeners are likely already literate in ocean issues but why is the broader academic enterprise ignoring this area?

KW: I don’t have the definitive answer but my sense is that a lot of the actors and interest is there but that the cluster idea is new. What I’m seeing regionally in Rhode Island is people saying they already have the parts that go into clusters: the academics, industries, and entrepreneurs. What they don’t have is an approach to network and connect these different players in a way that is beneficial to all of them.

There’s a natural resistance with some of these actors, such as ocean researchers and fishermen who are in competition with each other over use of water resources nearby. It takes work to overcome these differences; they don’t happen organically most of the time. I think there’s an interest, as globalization is progressing, to connect people together in ways which promotes cooperation, new ideas, and new opportunities. When I look at China, it’s first Special Economic Zone (SEZ), which in itself was a cluster, dates back to 1979. The focus on the ocean and adding of blue conservation in a way that serves everyone’s interest in the long term is the new part. The ocean is already under threat due to climate change and overfishing which I think has increased the focus on the ocean as an area of study.

MM: You mentioned geopolitical entities of various sizes ranging from China to Rhode Island. Clearly the cluster concept is happening in a lot of different places. Which areas, whether its counties, cities, or regions, have the most dynamic ocean cluster systems?

KW: I started my research with China and I would put them high on the list because they’ve been thinking about this for almost a decade now. Other countries are looking to China for their expertise, including countries in Africa. China is a big player there not only because of their size but because of their interest in this issue for such a long period of time. Under Xi Jinping, it’s been enhanced. Also of course the U.S.

We have a very different approach from China but the idea is not new here; in San Diego, L.A., and Monterey, they’ve been studying this idea for a while. San Diego is particularly strong. They have a virtual network of companies called The Maritime Alliance to foster and collaborate on opportunities. They’re providing a lot of advice to other countries now in Europe and elsewhere. Europe is the birthplace of the Blue Economy concept, so a number of countries there are pursuing this in their own way. Iceland comes up quite a lot and is prominent, along with other Scandinavian countries. Ireland has a Blue Economy effort underway. There are other countries in Asia beyond China, particularly in Small Island Developing States. It’s a global enterprise and the attraction is universal. I think this will be a growing area of study. In the U.S., there’s a number of different pockets: Maine, parts of Massachusetts, Rhode Island, and Alaska, among others.

MM: You mentioned different approaches in these different clusters. You said the U.S. and China models have the largest different. What is the biggest difference between them?

KW: I alluded to China’s system, which is top-down like most of their innovation programs. The plan comes from Beijing and trickles down to the province and local level. It’s the same with the Blue Economy. In the U.S. it tends to be more organic, more locally driven. Many of them start because something was already happening and there was a clear opportunity for more. It comes from an opportunity to be entrepreneurial and seeing that the actors are there. All that’s missing is the coordination and collaboration. It just takes one person to start that.

For example, in San Diego, The Maritime Alliance started when its founder, Michael Jones, started talking to people and trying to get people connected. In Rhode Island, there’s an effort to develop a cluster with an international linkage between a local city with a sister city relationship in China. At the end the day, it’s all about global networking.

MM: What is the most pressing or relevant aspect of the cluster model for maritime security and national security?

KW: Building on the idea of global networking, this is a cooperative opportunity, but also a competition in terms of who does this better. Because global population is increasing and food and energy are depleting, the ocean is being looked at as more of a resource but one which is very unexplored. There’s competition to be the one who exploits the resources more effectively. I use the term exploit very carefully here to mean “understand what opportunities the ocean provides.”

One of the differences between the U.S. and China I’ve found is how they look at the ocean. Americans see the ocean as tourism, as recreation, and beach-going as well as industry. In China, it’s very different because they had a land-based mentality for a long time. They look at the ocean as an extension of the land. Conservation is the last priority. It is a part of their model but it’s not a priority; the priority is industry and innovation. There’s opportunity for cooperation but there’s going to be competition. And whoever competes better is going to have an economic advantage.

On the science and technology side, this is part of the consideration when evaluating the South China Sea or Arctic or Antarctica. What comes back is about Exclusive Economic Zones (EEZs), mineral rights, and economic rights with these zones. Part of the Blue Economy efforts have to do with planning who will be able to use which parts of the ocean and who can’t. Of course, in the Asia-Pacific much of this is under dispute. There’s a lot of uncertainty in that relationship and that has to do with the nature of the ocean itself. The ocean connects us whether we like it or not. And if countries start to fight over ocean spaces, this could become more a conflict driver than cooperation driver. On the positive side, we’re involved with a number of Track 2 discussions with our Chinese colleagues. I think we have similar goals but different approaches to developing the the Blue Economy, especially for disputed EEZs.

MM: For those who are interested in ocean clusters, what are the short and long term trends to see how this concept develops?

KW: I’m going to be a bit parochial with my interest in China. One of the things I’ve seen that is important to the U.S. government and U.S. Navy is China’s plans for the Maritime Silk Road. Xi Jinping announced in 2013 a new One Belt, One Road plan; a very ambitious plan to connect China to parts of the old Silk Road on both land and sea. The maritime part of that plan includes the Blue Economy and ocean clusters along the way. If you look at the map, there are dots along the route where China hopes to develop the maritime road. There’s an action plan that came out March 2015 that has considerable detail. These includes developing ocean clusters, SEZs, and Blue Economy zones along this route. It takes China’s model and develops them overseas.

There’s a question as to whether or not the U.S. and its allies, partners, and friends will be able to be a part of this effort as collaborators and investors. China just recently announced a new maritime vision which is even more ambitious than the original plan. That’s important because it puts Xi Jinping’s stamp on what was originally Hu Jintao’s concept. This new maritime vision has a number of different initiatives which have the word blue attached to them: Blue partnerships, Blue carbon efforts, and Blue conservation efforts. The Blue Economy idea will be a carrot to other countries along the Maritime Silk Road. I don’t see anything in competition with this coming from the U.S., so it’s something to keep an eye on.

It seems to me that these zones and cluster are to be driven by Chinese investment, developed by Chinese infrastructure, using Chinese telecommunications, possibly with Chinese labor, all along the Chinese cluster model. This is not necessarily bad but it opens questions on how much the U.S. and its allies could be able to be involved. This is going to be somewhat of a race to see who can exploit these opportunities in a way that doesn’t undermine conservation. The ocean is a lot of ungoverned space with a lot of unknowns. We’ll have to work hard to make sure that, if it is a competition, that it’s a benign economic and industrial competition.

MM: What things would you recommend to learn more about the Blue Economy and ocean clusters? Beyond that, are there any other interesting things you’re reading now?

KW: There’s a great study by the OECD from 2016 which looks at the Blue Economy through 2030. It’s quite long but it is a good introduction and those with a strategic mind will find its future orientation useful. Those interested in the economic aspect, the Center for Blue Economy at the Middlebury Institute in Monterey, has a journal which is worth looking at. They’re trying to come up with economic metrics to measure what the Blue Economy is and how much it contributes to GDP.

Those interested in the China question, CMSI held a workshop in late 2014 addressing U.S. and Chinese perspectives on the Blue Economy to understand the similarities and differences. The Center for American Progress, a think tank in DC, has done a number of studies on the Blue Economy and U.S.-Chinese issues. They’ll be coming out with a report soon from a June dialogue which focused on the Blue Economy, fisheries, and the Arctic.

Those interested in the Maritime Silk Road should read the maritime vision white paper which China put out on 20 June to get a sense of how they promoting new blue partnerships not just domestically but in the entire region. In terms of other things, because I teach policy analysis, I picked up John Farrell’s new Nixon biography. I’m also just starting The Beautiful Country by John Pomfret.

Kathleen (Kate) Walsh is an Associate Professor of National Security Affairs in the National Security Affairs Department at the US Naval War College (NWC), where she teaches Policy Analysis. She is an affiliate of the China Maritime Studies Institute  and participates in NWC’s Asia Pacific Studies Group

Matthew Merighi is the Senior Producer of Sea Control and Assistant Director of Fletcher’s Maritime Studies Program.

Asia-Pacific, Capability Analysis

Chinese UAV Development and Implications for Joint Operations

Leave a comment

By Brandon Hughes

Drone Diplomacy

On December 15, 2016, a United States Navy (USN) unmanned underwater vehicle (UUV) was seized by the Chinese People’s Liberation Army Navy (PLAN) about 80 miles from Subic Bay, Philippines (Global Times, December 17, 2016). This was met with quick negotiations and the agreed return of the $150,000 research drone following complaints to Beijing. The then President-elect, Donald Trump, condemned the action from his twitter feed and responded, “Keep it!”, further escalating the situation and casting an unknown shadow on the future of the U.S.-China relationship (Reuters, December 18, 2016). Almost immediately, the seemingly mundane deployment of UUVs and unmanned aerial vehicles (UAVs) in the South China Sea became a potential flashpoint in the ever-contentious territorial disputes.

Countering President Trump’s South China Sea endeavors is a legislative move by Beijing to require all foreign submersibles transiting in China’s claimed territorial waters to travel on the surface and or be subject to confiscation (China News Service, February 15, 2017). The proposed change to the 1984 China Maritime Traffic Safety Law compares to China’s East China Sea Air Defense Identification Zone (ADIZ), set up in 2013. Codifying domestic maritime law further adds a layer of validity in the event a UAV or UUV is captured while patrolling in a disputed area. Assuming a more severe response is unlikely from the U.S., Beijing may use the law as an excuse to reduce unmanned foreign Intelligence, Surveillance, and Reconnaissance (ISR) assets in its periphery, regardless of international opinion.

While demonizing foreign ISR activities, China continues to bolster its own ISR efforts for deployment in maritime disputes, foreign surveillance, and warfighting capacity. Advances in armed/unarmed and stealth UAVs will further integrate UAVs into the Chinese People’s Liberation Army (PLA) joint forces array. Advances such as satellite data-link systems not only extend the range of these assets, but also allow for a more seamless integration of command and control (C2). This further enhances relatively low cost and low risk surveillance mechanisms.

UAVs are already an emerging capability within the PLA, law enforcement, and civil agencies and are playing a more prominent role in operations. Real-world testing will refine the PLA doctrinal use of these systems. Control, direction of development, and interoperability in joint operations are all questions yet to be answered. Developing an understanding of how these systems are incorporated into the PLA force structure may give insight into developing doctrine and political considerations. A clear understanding of both may support a potential framework for de-escalating unmanned vehicle incidents between nations where China has interests.

Deployment

On January 20th, 2017, the Chinese North Sea Fleet (NSF) received a request for help with a distress call initiated from the rescue center in Jiangsu Province to aid in the search and rescue of 13 crew members aboard a Chinese fishing boat that sank around 6 am that morning. The PLAN NSF dispatched two navy frigates, the ‘Suzhou’ and ‘Ji’an’ to the East China Sea to search for the crew of the lost fishing vessel, named the Liaoda Zhongyu 15126. What made this search-and-rescue effort unique was the announcement that a surveillance UAV (make unknown) aided in the search.

The deployment of a UAV with two naval frigates, in coordination with a maritime rescue center, demonstrates the multi-functionality and capability of China’s UAVs. Additionally, it is likely the UAV was deployed from a non-naval platform due to the size of the helicopter deck and lack of hangar on a ‘Suzhou’ and ‘Ji’an’, both Type 056/056A corvettes (Janes, November 3, 2016; Navy Recognition, March 18, 2013). This proof of concept highlights the interoperability of air, land, and sea assets coordinating for a common purpose. What is unknown, specifically, is where the UAV was launched, who controlled it, and whether it was using a line-of-sight (LOS) or extended control system.

China’s 40th Jiangdao-class (Type 056/056A) corvette shortly before being launched on 28 October at the Huangpu shipyard in Guangzhou. (fyjs.cn)

Capitalizing on peacetime operations validates control and communication hand-offs and will integrate intelligence platforms, such as the PLAN’s newest electronic surveillance ship, the Kay Yangxin (开阳星 ), vastly expanding the reach of Chinese ISR. Additionally, integration of satellite-linked communication packages, utilizing the domestic constellation of GPS satellites known as the Beidou, or Compass, will continue to improve UAV navigation and targeting systems. These improved navigation and satellite aids will be integrated into existing UAV datalink systems and developed with future ISR systems in mind.

Command Guidance

The use of UAVs for military and ISR purposes can have unintended political and military consequences. The PLA command structure has always focused around centralization to retain political power over the military. It is fair to assume that the guidelines for deployment of UAVs used for strategic intelligence missions are developed at a high level. On November 26, 2015, President Xi Jinping rolled out one of the many updates to the Soviet-style military system that was part of a recent effort to make the PLA more efficient. According to Yue Gang, a retired Colonel in the PLA’s General Staff Department, placing all branches of the military under a “Joint Military Command” was the “biggest military overhaul since the 1950s.” On February 1, 2016, a few months after Yue Gang’s comments, China’s Defense Ministry Spokesman Yang Yujun stated that the PLA was consolidating seven military regions into five theater commands, a move likely to streamline C2 (China Military Online, February 2, 2016). The theater commands will be presided over by the Central Military Commission for overall military administration (See China Brief, February 4, 2016 and February 23, 2016).

Centralizing and reducing the number of commands will allow for each individual military component to focus on their own training objectives (China Military Online, February 2, 2016). This concept promotes component independence to enhance capability, but doesn’t talk to efforts to enhance integration of forces in joint military exercises. The logistical and financial burden of large-scale exercises naturally limit the frequency of exercises each region can conduct per year. What is not clear, yet important to understand for a high-end conflict, is how joint operations between military regions will be executed. Chinese Defense Ministry Spokesman Yang Yuju added that the new structure allows for the commands to have more decision-making power in responding to threats and requesting CMC support. (China Military Online, February 2, 2016).

Utilizing UAVs in regional operations to patrol disputed regions indicates that tactical control would be conducted at the highest level by a chief staff at a joint command center, but more likely relegated to a lower echelon headquarters element closer to the front lines. These lower-tiered units are likely bound by the strict left and right limits on where they patrol. Advances in simultaneous satellite data-link systems will allow for a more seamless handoff of ISR/strike assets between commands in a robust communications environment. The fielding of enhanced and interoperable satellite communications is likely to bolster the deployment of UAVs and further integrate them into PLA doctrine by supporting the “offshore waters defense” and “open seas protection” missions, as outlined in the PLA’s 2015 White Paper on Military Strategy (China Military Online, May 26, 2015).

Direct operational control of the PLA’s UAVs is generally given to the commander of the next higher echelon or to a commander on the ground. UAV technicians depicted on Chinese military websites tend to hold the ranks of junior non-commissioned officers E-5/OR-5 (Sergeant) to O- 2/OF-1 (First Lieutenant). This is similar to certain units of the United States Army, where platforms are directly controlled by enlisted and warrant officers. However, just like the U.S., guidance and direction is usually “tasked down” by a higher echelon, and UAVs with a strike package will likely be controlled or employed by officers under orders from above.

UAV units in the PLA are likely to be attached to a reconnaissance or communications company. Likewise, the PLA Air Force (PLAAF) and PLA Navy (PLAN) will likely have UAV-specific units. Advancements in communication will enable various command levels (i.e. company, battalion, brigade) to simultaneously pull UAV feeds and give guidance to the operator. Based on the size of various exercises, the training indicates UAV control is given down to the lowest level of command but under extremely strict guidance. Additionally, the authority to deploy or strike is likely to be held at the regional command level or higher. Specific rules of engagement are unknown, but those authorities will be developed through trial and error during a high-intensity conflict.

Interoperability

Communications infrastructure improvements are evident in the development of over-the-horizon satellite datalink programs and communication relays. The CH-5 “Rainbow” (Cai Hong) drone, for example, resembles a U.S. Atomic General MQ-9 “Reaper” and is made to function with data systems capable of integrating with previous CH-4 and CH-3 models (Global Times, November 3, 2016). The newest model is capable of 250 km line-of-sight datalink, with up to 2000 km communications range when linked into a secure satellite (Janes, November 7, 2016).

It is likely that improvements in interoperability will be shared among service branches. Recent developments in Ku-Band UAV data-link systems, highlighted during the 11th China International Aviation and Aerospace Exposition in November 2016, will further synchronize intelligence sharing and over-the-horizon control of armed and unarmed UAVs (Taihainet.com, November 2, 2016).

PLA Signal Units already train on implementing UAV communication relays (China Military Online, April 8, 2016). Exercises like these indicate a desire to increase the interoperability in a joint environment. UAVs with relay packages will improve functionality beyond ISR & strike platforms. Units traversing austere environments or maritime domains could utilize UAV coverage to extend the range of VHF or HF radios to direct artillery or missile strikes from greater distances. If keyed to the same encrypted channels, these transmissions could be tracked at multiple command levels.

Joined with a UAV satellite datalink, ground or air communications could be relayed from thousands of kilometers away. At the same time, a Tactical Operations Center (TOC) could directly receive transmissions before passing UAV control to a ground force commander. In a South China Sea or East China Sea contingency, UAVs could link unofficial maritime militias (dubbed “Little Blue Men”) via VHF to Chinese Coast Guard Vessels or Naval ships. These messages could also be relayed to PLA Rocket Force units in the event of an anti-access area denial (A2AD) campaign.

Capping off China’s already enormous communication infrastructure is the implementation of dedicated fiber-optic cables, most likely linking garrisoned units and alternate sites to leadership nodes. Future use technologies such as “quantum encryption” for both fiber-optic and satellite based communication platforms could lead to uninhibited communication during a military scenario (The Telegraph, November 7, 2014; Xinhua, August 16, 2016).

Functionality 

Based on the use of Chinese UAVs overseas and in recent exercises, UAVs will continue to be utilized on military deployments in the South China Sea for patrol and ISR support. In the event of a contingency operation or the implementation of an A2/AD strategy, UAVs will likely be used for targeting efforts, battle damage assessments, and small scale engagements. Against a low-tech opponent, the UAV offers an asymmetric advantage. However, the use of UAVs for something other than ISR would be greatly contested by more modern powers. UAVs are generally slow, loud, and observable by modern radar. Many larger UAVs can carry EW packages, although there is little information on how the datalink systems handle EW interference. Ventures in stealth technology, such as the “Anjian/ Dark Sword,” (暗剑) and “Lijian/ Sharp sword” (利剑) projects, would increase Beijing’s UAV survivability and first strike capability if deployed in a contingency operation (Mil.Sohu.com, November, 24, 2013). However, a large-scale deployment of stealth UAV assets is not likely in the near future due to cost and material constraints.

To reduce the risk of high-intensity engagements, China may expand its reliance on UAVs to harass U.S., Taiwanese, Japanese, Philippine, and Vietnamese vessels. Additionally, UAVs may be utilized abroad in the prosecution of transnational threats. So far, China has stuck to a no-strike policy against individuals, although it was considered as an option to prosecute a drug kingpin hiding out in Northeast Myanmar (Global Times, February 19, 2016). The “Rainbow/Cai Hong” variant and “Yilong / Pterodactyl,” made by Chengdu Aircraft Design & Research Institute (CADI), represent some of the more well-known commercial ventures used by the PLAAF (PLA Air Force) and sold on the global market. These variants are often used for ISR in counter-insurgency and counterterrorism operations (The Diplomat, October 6, 2016; Airforce-technology.com, no date).

Strike capability, aided by satellite datalink systems, is another growing capability of China’s UAV programs (Popular Science, June 8, 2016). In late 2015, the Iraqi army released images from a UAV strike against an insurgent element utilizing the Chinese-made export variant “Rainbow 4” (彩虹 4) running on a Window’s XP platform (Sohu.com, January 2, 2016; Popular Science, December 15, 2015). PLA UAVs already patrol border regions, conduct maritime patrols, and assist in geological surveys and disaster relief.

The arrival of off-the-shelf UAVs contributes to the growing integration of dual-use platforms. Technology and imagination are the only limits to the growing UAV industry. Additionally, the export of high-end military UAVs will only continue to grow as they are cheaper than U.S. models and growing in capability. The profit from these sales will certainly aid research and development efforts in creating a near-peer equivalent to the U.S. systems. For a struggling African nation held hostage by rebels (e.g. Nigeria) or an established U.S. ally in the Middle East (e.g. Jordan), the purchase of UAVs at a relatively low price will increase good will and allow for an operational environment to refine each platform’s own capability (The Diplomat, October 6, 2016; The Daily Caller, December 2, 2016).

Conclusion

UAVs for military operations are not new, however, improvements in lethal payloads, targeting, and ISR capabilities will change the role in which UAVs are utilized. Considering China’s own drone diplomacy, the deployment of UAVs is as much a political statement as it is a tactical platform. State-run media has highlighted the successes of its drone program but has not been clear on who, or at what command level, operational control of UAVs is granted. Due to Beijing’s standing policy against lethal targeting, release authority is most likely relegated to the Central Military Commission, or even President Xi himself.

The extent that doctrine has been developed in planning for a high or low-intensity conflict is still unclear. The advent of satellite data-links and communication relays means the tactical control of UAVs may be seamlessly transferred between commanders. The rapid development of UAVs will continue to be integrated into the joint forces array but must be done as part of an overall doctrine and C4ISR infrastructure. Failure to exercise their UAVs in a joint environment will affect combined arms operations and reduce the PLA’s ability to synchronize modern technology with centralized command decisions and rigid doctrine.

Brandon Hughes is the founder of FAO Global, a specialized research firm, and the Senior Regional Analyst-Asia for Planet Risk. He has previously worked with the U.S. Army, the Carnegie-Tsinghua Center for Global Policy, and Asia Society. He is a combat veteran and has conducted research on a wide variety of regional conflicts and foreign affairs. Brandon holds a Masters of Law in International Relations from Tsinghua University, Beijing and has extensive overseas experience focused on international security and U.S.-China relations. He can be reached via email at DC@FAOGLOBAL.com.

Featured Image: CASC’s CH-5 strike-capable UAV made its inaugural public appearance at Airshow China 2016 (IHS/Kelvin Wong)

Capability Analysis

Get Ready For The Spectrum Melee

Leave a comment

By Douglas Wahl and Tim McGeehan

A New Era

In 1903, Guglielmo Marconi, the father of modern radio, was demonstrating an improved version of his device for wireless telegraphy at the Royal Institution in London. He had planned to transmit a message in Morse code from 300 miles away in Cornwall to the lecture hall in London, where it would be received and deciphered by an associate in front of the waiting audience. As the demonstration commenced the machine began receiving a signal. It repeatedly spelled the word “rats” before beginning a message that scandalously mocked Marconi: “there was a young fellow of Italy, who diddled the public quite prettily…”1 The press soon reported that someone had made a “deliberate and cowardly attempt to wreck the experiment.”2

This event was sensational because this version of Marconi’s wireless had been advertised as being specially tuned and therefore secure from outside interception or interference. The ‘scientific hooligan’ behind the interference was Nevil Maskelyne, a local magician and wireless competitor, who sought to demonstrate that the radio signals were neither as private nor as secure as Marconi had claimed.3

Although technology has progressed significantly over the last 100-plus years, this episode still has serious ramifications today, as it could be considered the first episode of communications electronic attack (EA) or spoofing. Maskelyne, who had set up his own transmitter nearby, seized control of the electromagnetic spectrum (EMS) and disrupted Marconi’s communications signal by overpowering it and injecting his own signal in its place, thereby delivering the new message to the intended receiver. Maskelyne’s 1903 stunt had also heralded a new era in warfare, where the EMS itself could and would be a contested battleground. Today, both non-state actors and adversary nations seek to use EA to deny the use of the EMS, which has become critical to both our daily lives and military operations. Fortunately, disruptive technologies are emerging to fill the urgent need to sense, characterize, and exploit the EMS, while at the same time deny it to our adversaries.

Our Reliance

As U.S. forces continue to become more technologically advanced, we continue to become more reliant on access to the EMS. Communications, sensor feeds, and command, control, and intelligence data all flow through the EMS and we have become increasingly addicted to the bandwidth available in permissive environments, with applications ranging from routine radio traffic to fire control radars. This demand will only increase.

Now, momentum is building in the drive to decouple sensors from shooters, further increasing reliance and demand on assured access to the EMS. The Naval Integrated Fire Control–Counter Air (NIFC-CA) capability distributes the AEGIS shipboard fire control data across diverse networks of remote sensors. This provides the AEGIS combat system the means to achieve independent engagement of over-the-horizon (OTH) targets with the Standard Missile (SM-6).4 In the future, engagement information will be passively provided to AEGIS from other platforms networked into NIFA-CA. Surface picket ships, aircraft like the E-2D Advanced Hawkeye, and future Unmanned Aerial Vehicles (UAV) will all be threads in the Navy’s kill web. The first generation of NIFC-CA is already here; the USS THEODORE ROOSEVELT Carrier Strike Group completed its deployment as the first NIFC-CA enabled strike group in 2015.5

Net-Enabled Weapons (NEW), like the Tactical Tomahawk that can be launched at a target and then directed inflight to a new, different target, are likewise EMS dependent.6 Future NEW weapons systems will no longer be confined to a set system of dedicated sensors, but will instead draw on the many sensors available in kill webs. These weapons will include swarms of unmanned platforms and loitering munitions that can circle overhead until being directed into a target. Similarly, our existing Tactical Data Links (Link 4A, Link 11, and Link 16) and NIFC-CA are spectrum dependent; they must be able to network, communicate, and exchange data. Our adversaries know this too and are investing in capabilities that which specifically target our access to the EMS itself as part of their Anti-Access/Area Denial (A2/AD) strategies.

In general, the A2/AD model is based on the tenants of both Clausewitz and Mahan in that it is focused on controlling the battlespace and attrition of the adversary’s forces. To counter this the surface Navy continues to develop its “distributed lethality” concept. Distributed lethality explores how dispersing forces could enhance warfighting by “countering A2/AD’s attrition model through maneuver warfare’s intent to probe for weakness” and once found, exploit it, and disable or destroy the adversary’s forces.7 Dispersion creates more room to maneuver, and “strains the anti-access mission and forces the adversary into executing area denial simultaneously.”8 However, distributed lethality will exacerbate the burden on the EMS as the distributed forces must be able to communicate and coordinate in order to mass effects when and where required.

That said, distributed lethality has a role to play in denying the EMS to our adversaries. Sun Tzu placed high value on spies and defeating adversaries before the battle. Distributed forces can test and stimulate adversary intelligence, surveillance, and reconnaissance (ISR) capabilities to determine their scope and breadth in preparation for follow-on operations. Mapping the spectral dependencies of adversary systems before conflict is key to configuring our kill web, disrupting our adversary’s Command, Control, Communications, Computers, Intelligence, Surveillance, and Reconnaissance (C4ISR) systems, and breaking their kill chains before weapons are launched.

Spectrum control is not a “future” issue; it is an urgent issue that has been long neglected and must be addressed now – as observed in Russia’s operations in Ukraine. In 2015, then-Deputy Secretary of Defense Bob Work recently summarized the situation stating “Ukrainian commanders reported to us that, within minutes of coming up on the radio net, they were targeted by concentrated artillery strikes…  They [Russian backed separatists] jam GPS signals, causing Ukrainian UAVs to drop out of the sky. And they jam proximity fuses on artillery shells, turning them into duds.”9  Likewise in the recent past, Iran claimed to have hacked into the mission-control system of a Lockheed Martin RQ-170 SENTINEL UAV flying near their Afghan border, taken control of it, and successfully landed it in Iran.10 Tehran claimed that they jammed the UAV’s communications and when it switched to autopilot they spoofed its GPS system with false coordinates, fooling it into thinking it was close to home and landing in Iran.11 Regardless of the veracity of Iran’s version of this story, it illustrates the mindset of our adversaries. We need to ensure that the multiple entry points and data links required to fully realize concepts like “distributed lethality” don’t turn them instead into “distributed vulnerability.” Ukraine is a cautionary tale of real-world vulnerability and the A2/AD investments of potential adversaries signal intent for more of the same. As part of its mandate to ensure All Domain Access, the U.S. Navy must be able to sense, characterize, and exploit a contested EMS, while at the same time deny it to our adversaries – we need to own the spectrum.12

The Technology

Real-Time Spectrum Operations (RTSO) is a new and highly automated capability theorized to provide warfighters the ability to understand and drive their forces’ use of EMS resources. RTSO predictions are based on three mainstays: physics algorithms, sensor characteristics, and numerical weather predictions (NWP). All three must work together for RTSO to transition from theory to reality:

Sense. We need sensors distributed throughout the battlespace to constantly measure the environment and accordingly adjust our weapon systems, continuously tailoring their settings to optimize performance. The “environment” includes both the ambient EM signals and the physical environment through which they propagate. As a forward deployed service, the Navy often operates in data-sparse regions, thus every platform, manned and unmanned, must be a sensor. We need environmental and ES sensors on all of our ships and aircraft from autonomous surface vehicles to UAVs and from logistics ships to strike fighters. All this data has to be collected, processed, and most importantly sent back to our modeling and fusion centers to provide information for optimizing future operations.

Massive amounts of environmental data can also be gathered “through the sensor,” in addition to the actual desired signal.13 This is analogous to the “by-catch” of commercial fishing, where additional marine species are caught in addition to the type of fish targeted by the fisherman. The bycatch is often discarded at sea, resulting in a wasted resource. The same happens during the processing of sensor data, where the extraneous signals are removed. However, this resource can be not only salvaged but used to provide a new capability. For example, Doppler radar weather data can be extracted from SPS-48 air search radars of our big-deck aviation platforms as well as from the SPY-1 radar of the AEGIS weapon system. With the multitude of sensors available there are many untapped sources of environmental data.

We also need to take advantage of commercial off the shelf (COTS) data collection systems, such as the Aircraft Meteorological Data Relay (AMDAR) program that has been adopted by over 40 commercial airlines.14 AMDAR uses existing aircraft sensors, processing systems, and communication networks to collect, process, format, and transmit meteorological data to ground stations where it is relayed to National Meteorological and Hydrological Services to be processed, quality controlled, and transmitted on the World Meteorological Organization’s Global Telecommunications System. The Navy could incorporate a similar system into its platforms to collect and transmit data on both the EMS and physical environment.

Characterize. Once we have the environmental data in hand, we can use it to characterize the environment. In the EMS this includes mapping the frequencies in use by all actors and inferring their operations and intent. For the physical environment it includes incorporating collected data into our NWPs to forecast the future physical environment itself, which can then be fed into the EMS analysis to predict how sensors and receivers will respond to new conditions. To do this effectively we must invest in supercomputing and shared processing. In the future, an advanced version of Consolidated Afloat Networks and Enterprise Services (CANES) and the Navy’s Tactical Cloud may provide the ability to have a supercomputer on each of our large deck surface platforms, enabling this capability even when reach back data-links are degraded or denied.15

SAN DIEGO (Nov. 19, 2013) Information Systems Technician 2nd Class Anthony Pisciotto, right, familiarizes Information Systems Technician Seaman Cameron Treanor with the Consolidated Afloat Ships Network Enterprise Services (CANES) system in the Local Area Network (LAN) Equipment Room aboard the guided missile destroyer USS Milius (DDG 69).  (U.S. Navy photo by Rick Naystatt)

Exploit. Once we understand the environment, we must exploit it by adapting our tactics. We need to “seize spectral high ground” and apply maneuver warfare principles to the spectrum to assure our bandwidth. Understanding the environment better than our adversaries will allow us to evaluate trade-offs and turn Battlespace Awareness into Information Warfare. Only this will allow our forces to have the operational advantage and overmatch our adversaries by fully integrating the Navy’s information functions, capabilities, and resources to optimize decision-making and maximize warfighting effects.

Deny. Finally, we need to deny the spectrum to our adversaries by further developing systems such as the Surface Electronic Warfare Improvement Program (SEWIP) and delivering the Next Generation Jammer. We must expand the HAVE QUICK radio system with the Defense Advanced Research Projects Agency (DARPA) Analog-to-Digital Converter (ADC)16 to provide anti-jam, frequency hopping secure communications that use ultra-high frequency (UHF) and require smaller antennas.

We must also deny our spectral emissions to our adversaries. A good rule of thumb is that if your radar can range 100 nautical miles, the adversary can detect it at least to 200 nautical miles. With an eye toward preventing unwanted detection, we need to revisit how we communicate. With the widespread use of direction finding in World War II, radio silence was a normal operating procedure and information was passed between ships using semaphore. Today, Laser Communication Relay Systems exist that are both extremely secure and have high data rates. As a bonus, these systems use less energy and when paired with satellites, these line-of-sight systems have unlimited potential.

Risks, Barriers, and Integration

There are multiple risks and barriers to integrating these technologies. From the operational aspect, these technologies have to interface with currently fielded systems. Spectrum management and deconfliction are already ostensibly done through Operational Tasking Communications (OPTASK COMMS) and the Afloat Electromagnetic Spectrum Operations Program (AESOP), but we still routinely have electromagnetic interference (EMI) between our systems. The commander of the Air Force’s Space Command said that in the first 11 months of 2015 there were over 261 cases of satellite downlink jamming. When asked how many of these incidents were caused by actual adversaries, he responded “I really don’t know. My guess is zero,” and that the real cause was “almost always self-jamming.”17 In a way, this suggests that the problem might be as much cultural as it is technical. A military workforce that has grown up in the age of unlimited and uncontested bandwidth is less aware of their EMS operations, filling (and over-filling) all available bandwidth with little discipline. This nonchalance will be difficult to overcome, but the fielding of new high-end capabilities must be accompanied by a change in mindset in order to realize maximum benefit.

CAPE CANAVERAL, Fla. (Aug. 19, 2015) The U.S. Navy’s fourth Mobile User Objective System (MUOS) satellite, encapsulated in a 5-meter payload fairing, is mated to an Atlas V booster inside the Vertical Integration Facility at Cape Canaveral’s Space Launch Complex-41. (Photo courtesy United Launch Alliance/Released)

EMI is not confined to just our own systems. Used indiscriminately, military radar systems may be strong enough to interfere with wireless systems, air traffic control radars, and cellphone systems. In the late 1980s, a Dutch naval radar caused the Supervisory Control and Data Acquisition (SCADA) system of a natural gas pipeline near the naval port of Den Helder to open and close a valve, ultimately leading to an explosion.18 Despite a crowded spectrum at home, the U.S. government continues to sell off bandwidth and civil users continue to encroach upon what remains. The net effect is an increasing limitation on the military’s ability to effectively train stateside.

Another barrier to progress in the acquisition and integration of new systems is the U.S. military’s acquisition system itself. It is too slow and vulnerable to espionage and theft. In military acquisitions the mantra is that “we don’t fight the enemy, we fight the budget,” which is often shaped more by political considerations than by the needs of the services. In 2016, Assistant Secretary of the Navy for Research, Development, and Acquisition Sean Stackley testified that Navy needs more authority to spend on experimentation and prototyping (not necessarily programs of record), because “the pace of technology is outpacing” the services’ ability to work their way through the “long and lengthy process” of fielding weapons systems.19

In terms of security, plans to assure access to the EMS should begin before these systems are even fielded. Espionage and theft are rampant from cleared defense contractors, evidenced by the striking similarity of ‘new’ adversary platforms to our own. However, the threat even extends to university and research labs. Today’s high-tech research becomes tomorrow’s classified projects and programs; we need to ensure these capabilities are protected throughout their entire development as an early compromise of one of these technologies gives our adversaries years to either improve upon it or develop a counter.

Investment

As we wage the battle of Washington, we need to prioritize investment in the capabilities described above. Roadmaps and plans are aspirational without resources and in this constrained fiscal environment there are many promising programs that will fall “below the cut line” and not be funded. However, capabilities that will enable us to own the spectrum when and where required are just as important, if not more important, than any particular ship or handful of strike fighters. At the cost of $100-plus million dollars per unit, would one F-35 Joint Strike Fighter be missed if the Navy was to reallocate this funding towards a RTSO program? If we lose the battle for the spectrum, many platforms like these will be seriously impaired and vulnerable, if not completely blind, deaf, and dumb and thus defenseless.

Luckily, there have been recent admissions from senior Department of Defense leadership that these types of capabilities are critical as we move forward. This support may help identify funding for rapid transition or similar acquisition “fast track” opportunities to get these technologies to the Fleet quickly. However, the true level of commitment will be clear in the budget.

Conclusion

The spectrum is a battleground whose control is absolutely fundamental to warfare in the information age. The U.S. military must seize upon emerging technologies that will enable it to maintain superiority in this congested and contested environment. To paraphrase Sun Tzu, “Know the enemy, know yourself; your victory will never be endangered. Know the electromagnetic terrain, know the weather; your victory will then be total.”  The spectrum is no longer an “enabler” to military operations; it is the battlefield.

Douglas T. Wahl is the METOC Pillar Lead and a Systems Engineer at Science Applications International Corporation.

Tim McGeehan is a U.S. Navy Officer currently serving in Washington.  

The ideas presented are those of the authors alone and do not reflect the views of the Department of the Navy or Department of Defense.

References

1. Lulz, Dot-dash-diss: The gentleman hacker’s 1903, New Scientist, https://www.newscientist.com/article/mg21228440-700-dot-dash-diss-the-gentleman-hackers-1903-lulz/

2. Staff Writer, Further Developments in Wireless Telegraphy, The Evening Telegram, June 29, 1903,  https://news.google.com/newspapers?nid=35&dat=19030629&id=j6kHAAAAIBAJ&sjid=kjoDAAAAIBAJ&pg=6469,6605289&hl=en

3. Staff Writer, Interesting Marconigrams, Evening Post, August 15, 1903, http://paperspast.natlib.govt.nz/cgi-bin/paperspast?a=d&d=EP19030815.2.53

4. Jeffrey H. McConnell, (14 NOV 2013) Naval Integrated Fire Control–Counter Air Capability‐Based System of Systems Engineering, Naval Surface Warfare Center, Dahlgren Division,  http://www.acq.osd.mil/se/webinars/2013_11_14-SOSECIE-McConnell-brief.pdf

5. Sam LaGrone, (5 March 2015), “Roosevelt Carrier Strike Group to Depart for Middle East on Monday in First NIFC-CA Deployment”, http://news.usni.org/2015/03/05/roosevelt-carrier-strike-group-to-depart-for-middle-east-on-monday-in-first-nifc-ca-deployment ; Final Ship of Theodore Roosevelt Carrier Strike Group Returns Home, 14 December 2015, http://www.navy.mil/submit/display.asp?story_id=92414

6. Managing the Net-Enabled Weapons Kill Chain Testing in a Live-Virtual-Constructive Environment, Joint Command and Control for Net-Enabled Weapons (JC2NEW), Joint Test, Alexandria, VA, 22311.

7. Dmitry Filipoff, Distributed Lethality and Concepts of Future War, CIMSEC, January 4, 2016 https://cimsec.org/distributed-lethality-and-concepts-of-future-war/20831

8. Dmitry Filipoff, Distributed Lethality and Concepts of Future War, CIMSEC, January 4, 2016 https://cimsec.org/distributed-lethality-and-concepts-of-future-war/20831

9. Bob Work,  Deputy Secretary of Defense Speech at CNAS Defense Forum, December 14, 2015 http://www.defense.gov/News/Speeches/Speech-View/Article/634214/cnas-defense-forum

10. David Axe, Nah, Iran Probably Didn’t Hack the CIA;s Stealth Drone, Wired, http://www.wired.com/2012/04/iran-drone-hack/

11. Adam Rawnsley, Iran’s Alleged Drone Hack: Tough but Possible, Wired,  http://www.wired.com/2011/12/iran-drone-hack-gps/

12. A Cooperative Strategy for 21st Century Seapower:  Forward, Engaged, Ready, March 2015.

13. Tim Gallaudet, Charting the ‘Invisible Terrain’ Proceedings, July 2015.

14. https://www.wmo.int/pages/prog/www/GOS/ABO/AMDAR/AMDAR_System.html

15. The Navy Wants a Tactical Cloud, http://www.defenseone.com/technology/2014/09/navy-wants-tactical-cloud/95129/

16. Thomas Gibbons-Neff, “This new DARPA chip could give U.S. a leg up in electronic warfare”, 12 January 2016, The Washington Post.

17. Syndey Freedberg, U.S. Jammed Own Satellites 261 Times; What if Enemy Did?, Breaking Defense, December 02, 2015, http://breakingdefense.com/2015/12/us-jammed-own-satellites-261-times-in-2015-what-if-an-enemy-tried/

18. IBID Zetter

19. John Grady, Sean Stackley Asks Congress for More Department of Navy Flexibility in Acquisition, 7 January 2016, USNI News, http://news.usni.org/2016/01/07/sean-stackley-asks-congress-for-more-department-of-navy-flexibility-in-acquisition#more-16380

Featured Image: ARABIAN SEA (June 11, 2011) Operations Specialist 2nd Class Stephen Sittner, from Denver, identifies and tracks air contacts in the Combat Direction Center of the aircraft carrier USS Ronald Reagan (CVN 76).  (U.S. Navy photo by Mass Communication Specialist 3rd Class Alexander Tidd/Released)