09 AI-Enabled Cyber Weapons and Implications for Cybersecurity Muhammad Shoaib Introduction In recent years, the prospect of autonomous and self- learning weapon systems has attracted significant public attention. Consequently, advancements in the fields of artificial intelligence (AI) and cyberspace have raised both questions and concerns in the domain of national security as states continue moving towards acquiring these emerging technologies. Leading military powers of the world remain increasingly engaged in researching the process of developing AI applications for a number of military functions. The applications correspond to the fields of command and control (C2), intelligence collection and analysis, logistics, and semi-autonomous and autonomous weapons platforms. 1 Therefore, employing this technology and AI-based applications could foster greater effectiveness and strengthening of existing military functions, especially for carrying out an offensive. Due to their classified nature and because they are easier and cheaper to develop, the first militarily significant offensive and autonomous weapons system to be AI- enabled would probably be deployed in cyberspace. 2 In 2010, the Economist declared that warfare had entered the fifth domain of cyberspace. 3 A year later, in 2011, the US Defence Department officially incorporated the cyberspace as a new domain into its planning, doctrine, resourcing and operations; 4 NATO formally acknowledged cyberspace as an operational domain in 2016. 5 With cyberspace becoming an established domain
29
Embed
AI-Enabled Cyber Weapons and Implications for Cybersecurity · the world remain increasingly engaged in researching the process of developing AI applications for a number of military
This document is posted to help you gain knowledge. Please leave a comment to let me know what you think about it! Share it to your friends and learn new things together.
Transcript
09
AI-Enabled Cyber Weapons and Implications
for Cybersecurity
Muhammad Shoaib
Introduction
In recent years, the prospect of autonomous and self-
learning weapon systems has attracted significant public
attention. Consequently, advancements in the fields of
artificial intelligence (AI) and cyberspace have raised
both questions and concerns in the domain of national
security as states continue moving towards acquiring
these emerging technologies. Leading military powers of
the world remain increasingly engaged in researching the
process of developing AI applications for a number of
military functions. The applications correspond to the
fields of command and control (C2), intelligence
collection and analysis, logistics, and semi-autonomous
and autonomous weapons platforms.1 Therefore,
employing this technology and AI-based applications
could foster greater effectiveness and strengthening of
existing military functions, especially for carrying out an
offensive.
Due to their classified nature and because they are easier
and cheaper to develop, the first militarily significant
offensive and autonomous weapons system to be AI-
enabled would probably be deployed in cyberspace.2 In
2010, the Economist declared that warfare had entered
the fifth domain of cyberspace.3 A year later, in 2011,
the US Defence Department officially incorporated the
cyberspace as a new domain into its planning, doctrine,
resourcing and operations;4 NATO formally
acknowledged cyberspace as an operational domain in
2016.5 With cyberspace becoming an established domain
Journal of Strategic Affairs
10
of warfare, incorporating the AI technology into the
domain will undoubtedly have a significant impact on
the various strategies and doctrines of warfare. However,
the nexus of AI and cyberspace has also raised several
new concerns regarding its usability. Moreover, the
harnessing of this nexus to bolster both offensive and
defensive cyber capabilities of states has evoked
concerns among policy makers and academicians,
especially in the context of potential threats it carries for
national security.
When coupled with existing cyber warfare capabilities,
AI would enhance the capability and power of cyber
warfare apparatus of states. Rapid advances in AI and
increasing degrees of military autonomy would amplify
the speed, power, and scale of future attacks in
cyberspace. Adapting AI capabilities to existing cyber
warfare tools would make them effective and efficient,
hence augmenting their usability in carrying out
successful cyber-attacks.6
Cyber-attacks are becoming more and more common
and have been recognised amongst the most strategically
significant risks for states’ security. During recent years,
there have been several cyber-attacks against
governments and states’ critical infrastructure, various
private corporations, and non-profit organisations. The
trend signifies that no sector is immune from cyber-
attacks and also that the level of sophistication of the
threats is continually increasing. Malicious actors and
hackers are constantly devising new techniques,
adapting to the latest technology innovations including
machine learning and AI to create more destructive
forms of attack in the cyberspace. Apart from devising
offensive AI-enabled cyber capabilities, the technology
is also being employed to develop defensive
mechanisms in the cyberspace. To counter the emerging
AI-Enabled Cyber Weapons and Implications
11
cyber threats, that are based on technological
sophistication, states and entities also require AI tools in
order to be able to deal effectively with the challenges.
Such intelligent agents likely form the basis of security
solutions for many current and future cyber-related
challenges. Therefore, AI holds a significant position as
a tool for Active Cyber Defence (ACD).
This study is an attempt to conceptualise the significance
of AI in cyberspace as a tool for enhancing the national
security of states. It examines the usability of AI as an
emerging technology for bolstering security in
cyberspace as well as the threats it carries for
cybersecurity. In conducting this study, the following
questions have been considered:- What are AI-enabled
cyber weapons and in what ways could this technology
be coupled with the cyberspace? How does AI-cyber
nexus bolster offensive and defensive cyber capabilities
of states? What are the policy implications of AI-enabled
cybersecurity? The study is qualitative in nature.
Secondary sources of data collection are used, primarily
from published journals, books and newspaper articles,
from both print and online publications. The study
focusses only on AI in cyberspace and AI-enabled cyber
weapons.
Conceptualising AI-enabled Cyber Weapons
AI is generally defined as technology and a branch of
computer science that creates intelligent software and
machines. It is viewed as the study of the design of
intelligent agents, where an intelligent agent means a
system that recognises its environment and takes actions
to enhance its chances of success.7 Intelligent agents are
components of software and carry features of intelligent
behaviour such as pro-activeness, reactivity and the
Journal of Strategic Affairs
12
ability to communicate; in other words, the ability to
make formulate decisions and then to act upon them.8
Additionally, AI may be outlined as the automation of
activities such as learning, decision-making, problem
solving, and examining the computations that make it
possible to discern, reason, and then act accordingly.9 It
can assist in various areas including “planning, learning,
natural language processing, robotics, computer vision,
speech recognition, and problem solving” that require
sizeable memory and processing time.10
AI could be
regarded as a science for creating methods for solving
complex problems that generally require a certain degree
of intelligence such as making the precise decisions
based on substantial amounts of data. Additionally, AI
may also be regarded as a science that aims at
discovering the essence of intelligence and developing
generally intelligent machines.11
These intelligent
machines could be employed for a variety of purposes
including for simple day-to-day use such as smart
phones as well as real world complex analytical tasks
such as data science and machine learning.12
Moreover,
methods for improving machine intelligence are
progressing in areas including language interaction, the
expression of emotion, and also face recognition.13
There are many examples where AI is currently being
used, for example; Deep Blue (IBM’s chess playing
computer), autonomous vehicles driving with traffic in
urban environments14
, IBM’s Watson (the computer
system capable of answering natural language
questions), and Sophia, the world’s first AI humanoid
robot.15
Moreover, several AI technologies such as data
mining and search methods are part of everyday use,
although these might not be obvious to those who are not
working in this field. This phenomenon is called the “AI
effect”, where a technique or method is not considered
AI-Enabled Cyber Weapons and Implications
13
as AI by the time it is commonly used by the general
public. This concept is particularly significant in
understanding public perception of AI, and also the
acceptance of these AI-based tools. Some common
examples of the AI effect include Apple’s Siri mobile
application which uses a natural language user interface
while answering questions and giving recommendations,
Google’s new Hummingbird algorithm which
understands the meaning of the search query in order to
provide more relevant “intuitive” search results, and
Google’s self-driving/autonomous cars.
The AI effect is when an AI tech is no longer considered
an intelligent system as it was being considered
previously, when the technology was introduced. It
usually happens once the technology becomes widely
used. For example, a machine displays seemingly
intelligent behaviour that it could not have done before.
It is labelled as AI. But, after a while the way that the
machine completes that task becomes better understood
by the majority. Suddenly, that ability does not qualify
as true AI, and becomes just another computation.
Therefore, states and entities are employing continual
research and development in the AI domain. The
phenomenon is leading towards rampant incorporation
of the technology into other domains relevant to states’
security apparatuses including in the domain of
cyberspace.
Utilising AI-based technologies and techniques in the
cyberspace; especially in the areas of cybersecurity,
cyber defence or offence and active cyber defence
(ACD) could be explained in terms of the ability to assist
in automation. Many people contend that automation is
vital for dealing effectively with cyber-related threats
and that many cyber defence problems could only be
addressed by applying AI-based techniques. Highly
Journal of Strategic Affairs
14
intelligent malware and new advanced cyber capabilities
are evolving quickly, and according to experts, AI can
provide the required flexibility and learning capacity to
existing or new software.16 Therefore, Intelligent
software is being increasingly used in cyber operations
and according to experts, cyber defence systems could
be further accommodative and dynamically evolve with
changes in network conditions. This can be achieved
through the implementation of dynamic behaviour,
autonomy, and adaptation such as autonomic computing
or multi-agent systems.17
Therefore, increasing
intelligent cyber threats emanating from advanced
intelligent malware could only be addressed through the
use of similar intelligent software and advanced
autonomous cyber defence mechanisms.
This clearly shows that the AI-enabled cyber technology
could be harvested for both offensive and defensive
mechanisms in the cyberspace. With the evolution of
new technology, it can be argued that the future of
cybersecurity will be dominated by more advanced and
complicated threat actors. Future cyber-attackers will
certainly use AI to make the next major advancement in
cyber arms and will ultimately make malicious use of
this technology.18
AI’s essential ability to learn and
adapt will bring a new era in which highly-customised
and human-impersonating attacks are scalable. Offensive
AI mechanism will be able to mutate itself as it learns
about its environment, and to expertly compromise
systems with minimal chance of detection.19
Consequently, the future attacks would be more
penetrative; giving a certain degree of assurance towards
achieving the desired objectives. It is therefore important
to analyse offensive AI in the cyber domain for better
comprehension of AI-enabled cyber threats.
AI-Enabled Cyber Weapons and Implications
15
Offensive AI in Cyberspace
Recent progresses in AI technologies have brought
significant growth in automation and innovation. For
example, AI is being advanced to couple it with retail
marketing, autonomous cars and several other IT
operations. Companies around the world are investing in
teaching machines to think more like humans through
techniques like machine learning and neural networks.20
Although these AI technologies offer significant
benefits, they can be used maliciously.
Highly targeted and evasive attacks in simple and benign
carrier applications; have demonstrated the intentional
use of AI for harmful purposes.21
Distributed Denial of
Service (DDoS) attack, phishing attack, password attack,
malware attack; all such attacks could be operationalised
through simple applications the victims use on their
devices. For example, the 2018 DeepLocker malware
carries a fundamentally different approach from any
other current evasive and targeted malware. DeepLocker
hides its malicious payload in benign carrier
applications, such as a video conference software, to
avoid detection by most antivirus and malware scanners.
Threat actors are constantly changing and improving
their attack strategy with particular emphasis on the
application of AI-driven techniques in the attack process,
called AI-based cyberattack, which can be used in
conjunction with conventional attack techniques to cause
greater damage.22
Despite several studies on AI and
security, researchers have not been able to summarise
AI-based cyberattacks enough to be able to understand
the adversary’s actions and to develop proper defences
against such attacks.
Journal of Strategic Affairs
16
Notwithstanding this lack of information, AI-powered
cyber-attacks are not a hypothetical future idea. The
essential building blocks that are necessary for the use of