第六章 結論
第二節 未來研究方向
國
立 政 治 大 學
‧
N a tio na
l C h engchi U ni ve rs it y
國際性網路安全事件難以跨界解決,現行的國際法無法完全反映各個不同文化期望 和優先順序。要讓網際空間的行為者建立一定秩序,這需要更多國家參與合作以及 多方監督過程。所以,與其他國家簽訂網路安全共同防禦相關條約也成為了美國的 主要網際空間戰略的目標。
第二節 未來研究方向
本論文係以網際空間國際安全情勢演進為背景,探討影響美國網際空間政策形 成之因素,並分析非國家組織及民營機構的網路安全策略,並分別由美國政策、戰 略及組織等三層面,分析各該因素對美國應對網路衝突對國家安全的影響。
惟當前在網際空間問題上,對於美國最大的挑戰,在於傳統法理主張的定位不 明確,各國主張的網際空間權益論述如何國際法相符合?其法理依據為何?在法律 定位難以明確的情勢下,網際空間的強國如中國大陸卻已運用網路間諜活動和攻擊,
積極主張享有專屬網路治理的權益,並不斷挑釁美國,美國政府應如何應對?在強 化網路安全的同時又要如何避免衝突擴大甚而引發戰爭?都是美國政府現階段在應 對網際空間的重大挑戰,且企圖主導網際空間情勢未來的發展。
目前網際空間情勢是美國積極連結中國、日本等區域外大國的勢力,並將爭議 訴諸聯合國等相關機構要求介入網路衝突,且在國際網路安全議題研討會中,由各 國專家共同對頻繁的網路攻擊提出質疑,然而,網路治理與監控對提倡民主自由的 美國而言,將會是在人權與國家安全中的拔河,美國要如何提出適當的政策論述?
相對於美國新上任川普政府的不確定性,中國習近平政府推出以大數據監控人民的
「社會信用系統」,卻更明確地展現了其網路治理的決心。
區塊鏈技術的發展讓虛擬貨幣形成一股挑戰國家治理的力量,中國大陸繼以科 技挑戰美國網路優勢之後,更挾其強大經濟影響力試圖打壓比特幣,惟其效果有限 後繼而發展符合其法規的虛擬貨幣。網路虛擬貨幣的興盛也代表著去中心化的管理,
‧ 國
立 政 治 大 學
‧
N a tio na
l C h engchi U ni ve rs it y
分散式信任機制,是一種對政府治理的挑戰,對於強勢阻斷去中心化的政府應如何 因應?另外,宣告透過人工智慧物聯網,中國大陸計畫要在 2025 年達成的人工智慧 製造業的願景,不僅是政策全力配合,更從教育扎根,目前人工智慧的基礎理論已 成為中國大陸高中的必修課目。再者,在面對資通科技日新月異的發展,網際空間 問題若從我國的利益思考,究應採取何種作為?若採積極作為,如強化網路戰攻擊 能力將會產生何種政策效應?若僅持續消及防護網路安全,是否真能毫無漏洞?我 國應如何應對?又應如何維護國家主權權利?
基此,當前網際空間威脅已經使國家安全產生結構性的變化,已不再侷限於傳 統領土主權爭端、資訊存取自由等議題,在面對情報蒐集、大數據分析的競爭與合 作、惡意軟體資訊分享等非傳統安全議題,不僅僅是美國未來應思考如何應對的挑 戰,亦同時是世界各國需要嚴謹面對的,值得吾人持續關注與深入探究。
近期國際局勢發展已趨向以協商合作共同面對網路威脅爲主,然在網路衝突上,
美國雖分別與中、日簽定安全協定,共同維護網際空間的和平穩定,但是中國大陸 認為目前相關國際法規範僅保障部分國家,並未符合新世界體系各國的利益,因此 為使國際秩序反映其地位的提升,更加強要求其在網際空間的權利,堅持由上而下 的網路治理,並主張攻擊是最好的防禦,未來在國家利益的驅使下,國際各國家預 測將不會停止其網際空間權利的擴展與爭取。面對中國大陸、北韓、俄羅斯等不斷 地網路攻擊,美國政府所堅持的紅線將面臨挑戰,是「攻」是「防」在決策上都面臨 極大考驗,此部分亦值得吾人持續關注。
‧
洪淑貞、王尉慈翻譯,布蘭‧克拉克(Blane Clark)、丹尼‧莫非(Dennis M.
Murphy)。《資訊戰入門》。八德市:國防大學,2010 年。
郭建中譯,約翰‧J‧菲亞卡(John J. Flalka)。《另一種形式的戰爭》。台北:海鴿 文化,1997 年。
楊南芳等譯,瑟勞賽維茲(Carl Von Clausewitz)。《戰爭論》Vom Kriege,台北:貓 頭鷹出版社,2001 年。
楊惠娟譯,James Glen Stovall。《網路新聞學:新媒體的運用實務與展望》。台北:
五南出版社,2006 年。
李育慈譯,Keith B. Alexander。〈網際空間作戰之道〉。《國防譯粹》,38 卷 8 期,2010 年 8 月,頁 37-42。
周敦彥譯,Willam E. Leigher。〈探究網際空間作戰〉。《國防譯粹》,38 卷 8 期,2010 年 8 月,頁 29-36。
‧
袁平譯,Williams, T. Brett。〈網際空間作戰的十大論點〉。《國防譯粹》,38 卷 8 期,2010 年 8 月,頁 4-17。
張中勇。〈美英反恐評估與對策〉。《戰略安全研析》,2007 年 9 月,頁 22-24。
張中勇。〈國家關鍵基礎建設防護之概念與實踐〉。《戰略安全研析》,2009 年 5 月,頁 37-41。
曾令權譯,Robert L. Caslen Jr. and Charles A. Flynn。〈卓越任務指揮中心〉。《國 防譯粹》,38 卷 8 期,2011 年 8 月,頁 77-81。
黃啟文譯,Balne R. Clark 作。〈以資訊戰作為武裝衝突嚇阻手段〉。《國防譯 粹》,37 卷 12 期,2010 年 12 月,頁 57-63。
鄒道勻。〈網路社群媒體的發展與影響—以突尼西亞、埃及民主革命為例〉。《軍 事社會科學專刊》,第九期(上冊),2011 年 12 月,頁 253-279。
齊珮文譯,James M.Dubik。〈資訊化時代的幹部訓練〉。《國防譯粹》,37 卷 4 期,2010 年 4 月,頁 33-40。
劉慶順譯,Stephen W. Korns。〈網路作戰之新制衡政策〉。《國防譯粹》,36 卷 10 期,2009 年 10 月,頁 43-50。
歐冠宇譯,B. Tom Gjelten 作。〈網路和平亦或網路自由-探究網路「限武」之 爭〉。《國防譯粹》,38 卷 8 期,2011 年 8 月,頁 43-50。
【網際網路專文】
“GCHQ",《IT Law Wikia》。http://itlaw.wikia.com/wiki/GCHQ (檢閱日期 2012/5/25)
〈印度欲建 1.5 萬人網軍,攻防目標直指中巴〉,《華夏經緯網》。
http://big5.huaxia.com/js/jswz/2008/00803123.html(檢閱日期 2012/4/18)
〈物聯網〉,《維基百科》。http://zh.wikipedia.org/wiki/%E7%89%A9% E8% 81%
94%E7%BD%91(檢閱日期 2012/5/15)
〈紅旗演習〉,《維基百科》 http://zh.wikipedia.org/wiki/%E7%B4%85
%E6%97%97%E6%BC%94%E7%BF%92 (檢閱日期 2012/5/24)
〈英國秘密情報局〉,《維基百科》。
http://zh.wikipedia.org/wiki/%E8%8B%B1%E5%9C%8B%E7%A7%98%E5%AF%
86%E6%83%85%E5%A0%B1%E5%B1%80 (檢閱日期 2012/5/25)
〈微軟公司切斷伊朗古巴朝鮮等 5 國 MSN 服務〉,《五朝網絡》。
http://tc.wangchao.net.cn/hi/detail_19472.html(檢閱日期 2012/5/14)
〈網路戰- 各國網路軍備概覽〉,《百度百科》。
%B1%8D%E9%9B%BB%E8%85%A6(檢閱日期 2012/5/14)
〈邏輯炸彈〉,《維基百科》http://zh.wikipedia.org/wiki/%E9%82%8F%E8%
BC%AF%E7%82%B8%E5%BD%88(檢閱日期 2012/5/15) 吳金雄。〈駭客入侵與網路安全〉,《海軍軍官學校》。
https://www.google.com.tw/search?sourceid=navclient&aq=f&oq=2002%E5%B9%
B4+%E5%A5%A7%E8%96%A9%E7%91%AA+%E5%8F%B0%E7%81%A3+%E
‧
E6%93%8A&gs_upl=0l0l1l38342lllllllllll0 (檢閱日期 2012/5/14) 李華。〈美空軍提高網路戰能力〉,《求是理論網》。
http://military.people.com.cn/BIG5/1077/3612120.html (檢閱日期 2012/4/18) 鄭大誠。〈中共網軍的發展與評估〉,《鄭大誠博士部落格》
http://tw.myblog.yahoo.com/jw!0RhCSD.LHwIcZmpXnmtWD_6tdQ--/article?mid=
319&prev=306&l=f&fid=6 (檢閱日期 2012/5/18) 二、外文部分
【專書】
Ackerman R., "Funding constraints help define Dutch military networks Signal Online, May 2011.
Benitez J., "Norway increasing its 2013 defense budget, including 30% boost for cyber security", Atlantic Council, 8 October, 2012.
Buckland B.S., Schreier F, and Winkler TH., "Democratic Governance and the
Challenges of Cybersecurity". Geneva Centre for the Democratic Control of Armed Forces.
Jeffrey Carr, "Inside Cyber Warfare". USA, O’Reilly Media, 2011.
Chief of Defence of the Republic of Lithuania, "Lithuanian Military Doctrine". 10 March 2010, pp. 21, 50
Defensiva Linha, "Brazilian Army prepares its CDCiber, the 'Cyber Defence Center'". 8 May 2012
Diniz G. and Muggah R. A Fine Balance: Mapping Cyber (In)Security in Latin America, Instituto Igarapé, 2012, pp. 13-14
Dutch Ministry of Security and Justice, The National Cybersecurity Strategy: Success Through Cooperation, 2011.
Eijndhoven D., "Dutch government to design cyber defense doctrine Infosec Island, 27 February 2011
Eijndhoven D., "Dutch military intelligence dives into cyber". Argent Consulting, 21 May 2012
‧
Finish Government Communications Unit, "National cybersecurity strategy to be drafted in 2012". press release 16 March 2012.
Finnish Government Communications Unit, "Cyber security preparedness". press release 8 March 2011.
Golubev V., "Fighting cybercrime in CIS: strategies and tactics". Computer Crime Research Center, 29 June 2005.
Grauman B., "Cyber-Security: The Mexed Question of Global Rules, security and Defence Agenda". 2012.
Grevatt J., "Indonesia to establish cyber-defence unit", IHS Jane's, 30 November 2012 Jackson W., "The big target in cyber war isn't military anymore". GCN, 12 April 2012.
Krepinevich, Andrew F., "Cyber warfare – A “Nuclear Option”? ", USA,CSBA,
2012.
Kuehl, Daniel T., "From Cyberspace to Cyberpower", in Franklin D. Kramer, Stuart Starr, and Larry K. Wentz, eds., Cyberpower and National Security, Washington, DC:
National Defense University Press, 2009.
Lewis, James A., Neuneck, Götz, "The Cyber Index : International Security Trends and Realities".United Nations Institute for Disarmament Research,Geneva, Switzerland, New York and Geneva, 2013.
Stokes Mark and Hsiao L.C. Russell, "Countering Chinese Cyber Operations:
Opportunities and Challenges for U.S. Interests". Project 2049 Institute, 2012.
Norwegian Ministry of Defence, "The Norwegian Long-term Defence Plan summary", 17 April 2012.
Sommer P and Brown L, "Reducing System Cybersecurity Risk". OECD, 2011.
Swiatkowska J., "cyber security in Poland ". 2012.
R A. "Cyberwar: The Next Threat to National Security and What to Do About It". 2010.
Wendt Alexander, "Social Theory of International Politics". Cambridge University Press ,2012.
【政府出版品】
Australia. Cyber Security Strategy, 2009.
Austrian Federal Ministry of Defence and Sport, Weissbuch 2008, 2009.
Belarusian Telegraph Agency, "Belarusian army to combat cyber threats", 7 December 2011.
Brazilian Ministry of Defence, National Strategy of Defence, 2008.
Canada, Canada's Cyber Security Strategy, 2010.
Caruanaa Paul. "Fighting cybercrime in Malta", Cyber Crime Unit Malta,
https://www.terena.org/ activities/tf-csirt/meeting13/Cyber-Crime-Malta-Caruana.pdf Grauman B. Cyber-Security: The Vexed Question of Global Rules. 2012, Security and
Defence Agenda 2012
‧
Canada. Canada's Cyber Security Strategy, 2010, p. 29
Center for Strategic and International Studies, “Cybersecurity and Cyberwarfare:
Preliminary Assessment of National Doctrine and Organization”, UNIDIR, 2011.
Computer Network Operations, Joint Publication 3-13, 2006.
Darmanin E. "National ICT Strategy and Malta Information Technology Agency", Malta Information Technology Agency, 3 June 2011, http://www.comnet. org.mt/wp-content/uploads/2011/06/MITA-Strategic-Plan-COMNET-Legal- Frameworks-for-ICT-Jun2011-v2.pdf
Dutch National Cyber Security Centre, Cyber Security Assessment Netherlands, 2011;
Dutch National Cyber Security Centre, Checklist Security of ICS/SCADA Systems, 2012.
Dutch Ministry of Defence, Defensie cyber Strategie, 27 June 2012, pp. 4, 6, 11 Dutch Ministry of Security and Justice, The National Cybersecurity Strategy: Success
Through Cooperation, 2011, p. 12.
Estonian Ministry of Defence, Cyber Security Strategy, 2008. P.6.
Estonian president calls for greater cooperation on cyber defence, Estonian Review, 2, May 2012.
European Network and Information Security Agency, "Exercises boost cooperation", 13 June 2012.
European Network and Information Security Agency, France Country Report, 2011, p.10.
European Network and Information Security Agency, Greece Country Report, 2011, pp.14, 26.
European Network and Information Security Agency, Hungary Country Report, 2011, pp.16, 25-26.
European Network and Information Security Agency, Italy Country Report, 2011, p. 9.
European Network and Information Security Agency, Italy Country Report 2011, pp.9-10 European Network and Information Security Agency, Latvia Country Report, 2011, p.9.
Europoin Network and Information Security Agency, Luxembourg County Report, 2011, pp.5, 10-11
European Network and Information Security Agency, Malta Country Report, 2011, p. 5 France Network and Information Security Agency, Information System Defence and
Security: France’s Stragic, 2011.
France, The France White Paper on Defence and National Security, 2008, p3
German Federal Ministry of the Interior, "Cybersecurity Strategy for Germany ". 2011, pp.8-10.
Georgian Ministry of Defence, Minister’s Vision 2012-2013, 2012.
Government of Mauritius, The Information and Communications Technologies Act 2001, Legal Supplement of 2010, 5 August 2010.
High lechnology Crimes Investigation Division, National Police of Peru. "Msson, visión y
valores", www.policiainformatica.gob.pe/nosotros.htm
‧
Hungarian Ministry of Foreign Affiars, Magyarorszag Nemzeti Biztonsagi strategiaja 2012, p.13.
Indian Ministry of Communications and Information Technology, Discussion Draft on National Cyber Security Policy, 26 March 2011
Israeli Prime Minister's Office, "Cabinet approves the creation of the National Cyber Directorate", 7 August 2011.
Israeli Ministry of ForeignAffairs, "National Cyber Bureau work plan presented", 7 June 2012.Information Office of the State Council of the People's Republic of China, China's National Defense in 2010, 2011
J.A Lewis and K. Timlin, "Cybersecurity and Cyberwarfare: Preliminary Assessment of National Dorctrine and Organization ". UNIDIR, 2011
Japanese National Information Security Policy Council, The First National Strategy on Information Security, 2006, p. 1
Japanese National Information Security Policy Council, The Second National Strategy on Information Security, 2009, p.54
Japanese Ministry of Defence, Defence of Japan 2010, part l, chp. 1, s 3.
J. Benitez, "Norway increasing its 2013 defense budget, including 30% boost for cyber security", Atlantic Council, 8 October, 2012.
J. Swiatkowska, ‘cyber security in Poland', Atlantic Council, 8 October, 2012.
Lasme H. “Estonia: cyber window into the future of NATO”, Joint Force Quarterly, no.63, 2011.
Latvian Ministry of Defence, The State Defence Concept: Executive Summary, 2012, pp.
6-7, 9, http://www.mod.gov.lv/Par_aizsardzibas_nozari/Politikas_planosana/
Koncepcijas/~/media/AM/Par_aizsardzibas_nozari/Plani,%20koncepcijas/2012_va_E N.ashx
Mauritsius. "Republic of Mauritius", CyberCrime Law, 15 July 2003, www.cybercrimelaw. net/Mauritsius.html
Ministry of National Defence, Vision of the Polish Armed Forces 2030 2008, p. 14
Moldova Ministry of Foreign Affairs and European Integration, National Security
Concept of the Republic of Moldova, www.mfa.gov.md/img/docs/national- security-concept-of-the-RM.doc
Morocco Ministry, Trade and New Technologies, Digital Morocco 2013. The National Strategy for Information Society and Digital Economy, 2009, p. 22
Moldova National Participation Council, "National Security Strategy went into force", 17 October 2011, www.cnp.
md/en/working-groups/foreign-security-and-defense-policy/stiri/item/568-strategia-securit % C4 % 8396C8 % 9Bii - na % C8 % 9Bionale-a-intrat-%C3% AEn-vigoare
NATO launches cyber defence centre in Estonia. Agence France-Presse 14 May 2008.
New Zealand Defence Force, Statement of Intent 2011-2014, pp. 12, 16.
‧
Norwegian Ministry of Defence, "The Norwegian Long-term Defence Plan summary", 17 April 2012.
Parliament, Directorate-General for External Policies. Policy Department cybersecurity and Cyberpower concepts, Conditions and us European capabilities for Cooperation for Action within the EU, 2011, p. 5
Peru National Office of Electronic Government and Information, http://www.peru. gob.pe /pecert /label .html
Peru National Office of Electronic Government and Information Technology, "Quienes somos", www.ongei gob.pe/quienes/ongei_ QUIENES.asp.
Polish Ministry of National Defence, Defence Strategy of the Republic of Poland, 2009, p. 5.
Prime Minister's office of Finland. Finnish Security and Defence Policy 2009, 2009, p. 93
Qatar Supreme Council of Information and Communication Technology, National ICT
Plan 2015: Advancing the Digital Agenda.
Republic of Peru, Resolución Ministerial No 129-2012-PCM, 23 May 2012.
http://www.pcm.gob.pe/ normaslegales/2012/RM-129-2012-PCM.pdf The Decree of
the Minister of Communication and Information Technology number26/PER/M.KOMINFO/5/2007 on Securing the Making Use of Internet Protocol Based Telecommunication Network.
【期刊論文】
Anand V. "Integrating the Indian military: retrospect and prospect", Journal of Defence Studies, Vol. 2, no. 2, 2008, pp.37
APCERT Secretariat, APCERT Annual Report 2011, 2011, p. 169.
Ashton W. "Burma receives advances from its silent suitors in Singapore", Jane's Intelligence Review, 1 March 1998, p.114.
"Benelux sign memorandum of understanding on cybersecurity", European Urban Knowledge Network, 12 April 2011, pp.15-17.
Camillo E Di, Miranda V, and Felician S. "Cyber-Security: Europe e Italia", Osservatorio di politica internazionale, no. 32, 2011, pp.33-44.
Colombian Ministry of Defence, Ciberseguridad y Ciberdefensa: Una Primera Aproximacion. 2009, pp.12-24.
Colombian Ministry of Defence, Ciberseguridad y Ciberdefensa: Una Primera Aproximacion. 2009, pp.12-24.