Cyber Defence in Deep: Designing the Cyber Security Agency Organisation for Turkey

An academic article published about Turkey on “Journal of Naval Science and Engineering” in 2014, proposes an eight-layer “defense in depth architecture” for cyber security of Turkey.

According to article that was published by K Göztepe; R. Kılıç; ve A. Kayaaalp, twenty years ago, when cyber was a utopia, it became a reality now. This unexpected expansion of the cyber environment has made the world open to all kinds of cyber-attacks.

With the emergence of mobile devices and the implementation of the “internet of things” concept, people have begun to live in a cyber world, as well as the physical world. The developed countries have adopted the cyber space as the fifth operational area after land, sea, air and space, and it is envisaged by these countries that network security will be one of the greatest threats to security in the world in the next decade.

Cyber-attacks in Estonia in 2007 constitute a significant turning point in prioritizing the world’s cyber threat issue. Today, most states are aware of an inevitable reality of cyber warfare in the coming years, and have been designing their own cyber warfare procedures. According to the article; it is estimated that many states have an active cyber weapons development program. It is alleged that cyber weapons are developed secretly and have little knowledge about them.

It is seen that all developed countries, are aware of this new threat and that every countries approach to the issue involves different strategies. According to the research, Turkey has been left behind in terms of the institutionalization and related regulations of cyber security. Turkey is one of the major target countries that can be exposed to cyber-attacks and has been the target of these attacks, directly or indirectly. In order to ensure national security, an integrated cyber defense model should be developed that enhances the country’s capacity for cyber defense.

The study reveals that designing a cyber security agency for Turkey is an important issue in terms of effective cyber defense. For this reason, an in-depth defensive approach should be applied to construct the cyber defense activities, which guarantee the safety of the systems targeted by the cyber threats. In this context, an eight-layer “defense in depth architecture” and “Cyber Security Agency Organization” is proposed for Turkey.

The eight-layer defense depth architecture reveals eight essential elements for a successful cyber defense strategy. These elements are; national strategies and institution, legislative procedures and awareness, physical environment, human, hardware and technology, networks and communication, software and application and data. In line with these elements, a suitable Cyber ​​Security Agency for Turkey is also proposed in the research. The organizational structure of the proposed Cyber ​​Security Institution consists of three main units. These units are the Cyber Defense Coordination Center, the Cyber Technologies Research Center and the Cyber Operations Center. It is proposed that these three units could implement counter current defensive skills by improving the success of counter attack and total defensive skills, making all sorts of research and projects in cyber technology, and developing secret technologies.

For detailed information about the research

Goztepe, K., Kilic, R., Kayaalp, A., (2014), “Cyber Defence in Deep: Designing the Cyber Security Agency Organisation for Turkey”, Journal of Naval Science and Engineering, 10(2), 1-24.

http://oaji.net/articles/2016/3113-1458637852.pdf

 

This post is also available in: Italiano Română Türkçe