Misplaced Pages

#398601

64-602: The decision to create a joint intelligence organisation was made in 2011. Preparations for the creation of the JSCU began in late 2012, by a joint team from the General Intelligence and Security Service (AIVD) and the Dutch Military Intelligence and Security Service (MIVD) under the name Project Symbolon . The Joint Sigint Cyber Unit is governed by these two services. The JSCU headquarters

128-426: A central point, or perhaps to a distributed system in which all participate, such that the information can be correlated and a location computed. Modern SIGINT systems, therefore, have substantial communications among intercept platforms. Even if some platforms are clandestine, there is still a broadcast of information telling them where and how to look for signals. A United States targeting system under development in

192-472: A confirmation, followed by observation of artillery fire, may identify an automated counterbattery fire system. A radio signal that triggers navigational beacons could be a radio landing aid for an airstrip or helicopter pad that is intended to be low-profile. Patterns do emerge. A radio signal with certain characteristics, originating from a fixed headquarters, may strongly suggest that a particular unit will soon move out of its regular base. The contents of

256-458: A different ECCM way to identify frequencies not being jammed or not in use. The earliest, and still common, means of direction finding is to use directional antennas as goniometers , so that a line can be drawn from the receiver through the position of the signal of interest. (See HF/DF .) Knowing the compass bearing, from a single point, to the transmitter does not locate it. Where the bearings from multiple points, using goniometry, are plotted on

320-640: A lower level, German cryptanalysis, direction finding, and traffic analysis were vital to Rommel's early successes in the Western Desert Campaign until British forces tightened their communications discipline and Australian raiders destroyed his principle SIGINT Company. The United States Department of Defense has defined the term "signals intelligence" as: Being a broad field, SIGINT has many sub-disciplines. The two main ones are communications intelligence (COMINT) and electronic intelligence (ELINT). A collection system has to know to look for

384-407: A map, the transmitter will be located at the point where the bearings intersect. This is the simplest case; a target may try to confuse listeners by having multiple transmitters, giving the same signal from different locations, switching on and off in a pattern known to their user but apparently random to the listener. Individual directional antennas have to be manually or automatically turned to find

448-648: A particular signal. "System", in this context, has several nuances. Targeting is the process of developing collection requirements : First, atmospheric conditions, sunspots , the target's transmission schedule and antenna characteristics, and other factors create uncertainty that a given signal intercept sensor will be able to "hear" the signal of interest, even with a geographically fixed target and an opponent making no attempt to evade interception. Basic countermeasures against interception include frequent changing of radio frequency , polarization , and other transmission characteristics. An intercept aircraft could not get off

512-515: A peace-time codebreaking agency should be created. The Government Code and Cypher School (GC&CS) was the first peace-time codebreaking agency, with a public function "to advise as to the security of codes and cyphers used by all Government departments and to assist in their provision", but also with a secret directive to "study the methods of cypher communications used by foreign powers". GC&CS officially formed on 1 November 1919, and produced its first decrypt on 19 October. By 1940, GC&CS

576-523: A precise picture of the normal operation of the High Seas Fleet , to infer from the routes they chose where defensive minefields had been placed and where it was safe for ships to operate. Whenever a change to the normal pattern was seen, it immediately signalled that some operation was about to take place, and a warning could be given. Detailed information about submarine movements was also available. The use of radio-receiving equipment to pinpoint

640-401: A radar is operating. Once the radar is known to be in the area, the next step is to find its location. If operators know the probable frequencies of transmissions of interest, they may use a set of receivers, preset to the frequencies of interest. These are the frequency (horizontal axis) versus power (vertical axis) produced at the transmitter, before any filtering of signals that do not add to

704-718: A replacement for the former ground station in Zoutkamp in northern Groningen . The telecom operator Stratos (formerly Xantic ), operates a satellite ground station (formally Satellite ground station 12 , but more commonly known by its nickname: It Grutte Ear  [ fy ] ( The Big Ear ).) near Burum . The NSO interception station was created in the south-eastern corner of the existing Stratos satellite station property. Two large 18m diameter satellite dishes, nine smaller 11m diameter satellite dishes, and four so-called waffle-irons which are 4 meters in diameter were added for Sigint purposes. A second JSCU intercept station

SECTION 10

#1732797811399

768-401: A safe distance from the user of the transmitter. When locations are known, usage patterns may emerge, from which inferences may be drawn. Traffic analysis is the discipline of drawing patterns from information flow among a set of senders and receivers, whether those senders and receivers are designated by location determined through direction finding , by addressee and sender identifications in

832-404: A sensor is unique. MASINT then becomes more informative, as individual transmitters and antennas may have unique side lobes, unintentional radiation, pulse timing, etc. Network build-up , or analysis of emitters (communication transmitters) in a target region over a sufficient period of time, enables creation of the communications flows of a battlefield. COMINT ( com munications int elligence)

896-426: A tactical SIGINT requirement, whereas the larger aircraft tend to be assigned strategic/national missions. Before the detailed process of targeting begins, someone has to decide there is a value in collecting information about something. While it would be possible to direct signals intelligence collection at a major sports event, the systems would capture a great deal of noise, news signals, and perhaps announcements in

960-478: A tank battalion or tank-heavy task force. Another set of transmitters might identify the logistic net for that same unit. An inventory of ELINT sources might identify the medium - and long-range counter-artillery radars in a given area. Signals intelligence units will identify changes in the EOB, which might indicate enemy unit movement, changes in command relationships, and increases or decreases in capability. Using

1024-411: A vehicle. If these are regular reports over a period of time, they might reveal a patrol pattern. Direction-finding and radio frequency MASINT could help confirm that the traffic is not deception. The EOB buildup process is divided as following: Separation of the intercepted spectrum and the signals intercepted from each sensor must take place in an extremely small period of time, in order to separate

1088-578: Is Amplitude comparison . An alternative to tunable directional antennas or large omnidirectional arrays such as the Wullenweber is to measure the time of arrival of the signal at multiple points, using GPS or a similar method to have precise time synchronization. Receivers can be on ground stations, ships, aircraft, or satellites, giving great flexibility. A more accurate approach is Interferometer. Modern anti-radiation missiles can home in on and attack transmitters; military antennas are rarely

1152-417: Is a sub-category of signals intelligence that engages in dealing with messages or voice information derived from the interception of foreign communications. COMINT is commonly referred to as SIGINT, which can cause confusion when talking about the broader intelligence disciplines. The US Joint Chiefs of Staff defines it as "Technical information and intelligence derived from foreign communications by other than

1216-415: Is acquired by a given country. Knowledge of physics and electronic engineering further narrows the problem of what types of equipment might be in use. An intelligence aircraft flying well outside the borders of another country will listen for long-range search radars, not short-range fire control radars that would be used by a mobile air defense. Soldiers scouting the front lines of another army know that

1280-543: Is in the general area of the signal. The owner of the transmitter can assume someone is listening, so might set up tank radios in an area where he wants the other side to believe he has actual tanks. As part of Operation Quicksilver , part of the deception plan for the invasion of Europe at the Battle of Normandy , radio transmissions simulated the headquarters and subordinate units of the fictitious First United States Army Group (FUSAG), commanded by George S. Patton , to make

1344-771: Is located in the AIVD building in Zoetermeer , and houses approximately 350 employees. Other JSCU divisions are housed with the MIVD in The Hague . Before the founding of the JSCU, the Nationale SIGINT Organisatie (NSO) was the organisation tasked with interception of radio and satellite traffic. The NSO also operated under the joint command of the AIVD and MIVD. The NSO formally became part of JSCU when it

SECTION 20

#1732797811399

1408-724: Is located on the military base Kamp Holterhoek in Eibergen in the Achterhoek region. Since 1967 the 898th signal battalion, stationed at Eibergen , has been intercepting radio traffic from the former Eastern Bloc countries. In 1998 the battalion merged with the 1st Air Force signal battalion from Alphen , and part of the Naval Intelligence Service (the Technisch Informatie Verwerkingscentrum) from Eemnes , and became

1472-545: Is provided by three bodies: The AIVD publishes an annual report which includes its budget. The published version contains redactions where information is deemed sensitive. The AIVD can be forced by the courts to publish any records held on a private citizen, but it may keep secret information that is relevant to current cases. No information that is less than five years old will be provided under any circumstance to private citizens about their records. Its main activities include: Its methods and authorities include: The latter

1536-587: Is technically the same as sourcing intelligence from a foreign intelligence service; this method has not been confirmed. The AIVD operates in tight concert with the Regional Intelligence Service (Regionale Inlichtingen Dienst, RID), to which members of the police are appointed in every police district. It also co-operates with over one hundred intelligence services. The service has been criticized for: On January 25, 2018, de Volkskrant and TV program Nieuwsuur reported that in 2014,

1600-511: Is usually encrypted , signals intelligence may necessarily involve cryptanalysis (to decipher the messages). Traffic analysis —the study of who is signaling to whom and in what quantity—is also used to integrate information, and it may complement cryptanalysis. Electronic interceptions appeared as early as 1900, during the Boer War of 1899–1902. The British Royal Navy had installed wireless sets produced by Marconi on board their ships in

1664-510: The Admiralty ; Room 40 . An interception service known as 'Y' service , together with the post office and Marconi stations, grew rapidly to the point where the British could intercept almost all official German messages. The German fleet was in the habit each day of wirelessing the exact position of each ship and giving regular position reports when at sea. It was possible to build up

1728-527: The Battle of Jutland as the British fleet was sent out to intercept them. The direction-finding capability allowed for the tracking and location of German ships, submarines, and Zeppelins . The system was so successful that by the end of the war, over 80 million words, comprising the totality of German wireless transmission over the course of the war, had been intercepted by the operators of the Y-stations and decrypted. However, its most astonishing success

1792-534: The Military Intelligence and Security Service (MIVD) focuses on international threats, specifically military and government-sponsored threats such as espionage. The AIVD is charged with collecting intelligence and assisting in combating domestic and foreign threats to national security. The Minister of the Interior and Kingdom Relations is politically responsible for the AIVD's actions. Oversight

1856-573: The Netherlands , tasked with domestic, foreign and signals intelligence and protecting national security as well as assisting the Five Eyes in investigating foreign citizens. The military counterpart is the Military Intelligence and Security Service (MIVD), which operates under the Ministry of Defence . The history of Dutch intelligence can trace itself back to 1914 with the creation of

1920-716: The Russian Army ’s advance early in World War I and led to their disastrous defeat by the Germans under Ludendorff and Hindenburg at the Battle of Tannenberg . In 1918, French intercept personnel captured a message written in the new ADFGVX cipher , which was cryptanalyzed by Georges Painvin . This gave the Allies advance warning of the German 1918 Spring Offensive . The British in particular, built up great expertise in

1984-782: The AIVD successfully infiltrated the computers of Cozy Bear and observed the hacking of the head office of the Democratic National Committee and subsequently the White House , as well as being the first to alert the National Security Agency (NSA) about the cyber-intrusion. In the Lair of the Cozy Bear (allegedly a translation of the Dutch novel In het hol van de Cozy Bear ) relates

Joint Sigint Cyber Unit - Misplaced Pages Continue

2048-652: The Bureau of National Security ( Bureau voor Nationale Veiligheid ) and in 1947, was later known as the Domestic Security Service ( Binnenlandse Veiligheidsdienst ) (BVD) which would be the predecessor of the AIVD. For the gathering of intelligence abroad, the Foreign Intelligence Service — Buitenlandse Inlichtingendienst (BID), renamed to Inlichtingendienst Buitenland (IDB) in 1972 — had existed since 1946. This service

2112-548: The COMINT gathering method enables the intelligence officer to produce an electronic order of battle by traffic analysis and content analysis among several enemy units. For example, if the following messages were intercepted: This sequence shows that there are two units in the battlefield, unit 1 is mobile, while unit 2 is in a higher hierarchical level, perhaps a command post. One can also understand that unit 1 moved from one point to another which are distant from each 20 minutes with

2176-788: The Generale Staf III (GS III) during the outbreak of World War I . The year following the end of the war, GS III was replaced by the Centrale Inlichtingendienst (CI) in 1919. After Nazi Germany invaded the Netherlands , the Dutch government-in-exile deemed the CI to be inadequate for their war efforts and so created the Bureau Inlichtingen (BI) in 1942. After the war, in 1945, Netherlands replaced

2240-438: The German defense think that the main invasion was to come at another location. In like manner, fake radio transmissions from Japanese aircraft carriers, before the Battle of Pearl Harbor , were made from Japanese local waters, while the attacking ships moved under strict radio silence. Traffic analysis need not focus on human communications. For example, a sequence of a radar signal, followed by an exchange of targeting data and

2304-573: The JSCU operates two interception stations, formerly managed by the NSO : at Burum for the interception of satellite traffic and at Eibergen for the interception of high-frequency radio traffic. The interception station for satellite traffic is located in Burum ( Kollumerland c.a. municipality) in the province of Friesland . It became fully operational in 2006. Construction of this station (officially named 'Satelliet Grondstation Burum') began in 2005 as

2368-599: The Russian fleet prepared for conflict with Japan in 1904, the British ship HMS Diana stationed in the Suez Canal intercepted Russian naval wireless signals being sent out for the mobilization of the fleet, for the first time in history. Over the course of the First World War , a new method of signals intelligence reached maturity. Russia’s failure to properly protect its communications fatally compromised

2432-453: The actual information is at 800 kHz and 1.2 MHz. Real-world transmitters and receivers usually are directional. In the figure to the left, assume that each display is connected to a spectrum analyzer connected to a directional antenna aimed in the indicated direction. Spread-spectrum communications is an electronic counter-countermeasures (ECCM) technique to defeat looking for particular frequencies. Spectrum analysis can be used in

2496-506: The broader organizational order of battle . EOB covers both COMINT and ELINT. The Defense Intelligence Agency maintains an EOB by location. The Joint Spectrum Center (JSC) of the Defense Information Systems Agency supplements this location database with five more technical databases: For example, several voice transmitters might be identified as the command net (i.e., top commander and direct reports) in

2560-446: The decision to target is made, the various interception points need to cooperate, since resources are limited. Knowing what interception equipment to use becomes easier when a target country buys its radars and radios from known manufacturers, or is given them as military aid . National intelligence services keep libraries of devices manufactured by their own country and others, and then use a variety of techniques to learn what equipment

2624-469: The different signals to different transmitters in the battlefield. The complexity of the separation process depends on the complexity of the transmission methods (e.g., hopping or time-division multiple access (TDMA)). By gathering and clustering data from each sensor, the measurements of the direction of signals can be optimized and get much more accurate than the basic measurements of a standard direction finding sensor. By calculating larger samples of

Joint Sigint Cyber Unit - Misplaced Pages Continue

2688-512: The fronts, that we won the war!" Supreme Allied Commander, Dwight D. Eisenhower , at the end of the war, described Ultra as having been "decisive" to Allied victory. Official historian of British Intelligence in World War II Sir Harry Hinsley argued that Ultra shortened the war "by not less than two years and probably by four years"; and that, in the absence of Ultra, it is uncertain how the war would have ended. At

2752-420: The ground if it had to carry antennas and receivers for every possible frequency and signal type to deal with such countermeasures. Second, locating the transmitter's position is usually part of SIGINT. Triangulation and more sophisticated radio location techniques, such as time of arrival methods, require multiple receiving points at different locations. These receivers send location-relevant information to

2816-448: The information being transmitted. Received energy on a particular frequency may start a recorder, and alert a human to listen to the signals if they are intelligible (i.e., COMINT). If the frequency is not known, the operators may look for power on primary or sideband frequencies using a spectrum analyzer . Information from the spectrum analyzer is then used to tune receivers to signals of interest. For example, in this simplified spectrum,

2880-541: The late 1890s, and the British Army used some limited wireless signalling. The Boers captured some wireless sets and used them to make vital transmissions. Since the British were the only people transmitting at the time, the British did not need special interpretation of the signals that they were. The birth of signals intelligence in a modern sense dates from the Russo-Japanese War of 1904–1905. As

2944-541: The late 1990s, PSTS, constantly sends out information that helps the interceptors properly aim their antennas and tune their receivers. Larger intercept aircraft, such as the EP-3 or RC-135 , have the on-board capability to do some target analysis and planning, but others, such as the RC-12 GUARDRAIL , are completely under ground direction. GUARDRAIL aircraft are fairly small and usually work in units of three to cover

3008-574: The location of any single transmitter was also developed during the war. Captain H.J. Round , working for Marconi , began carrying out experiments with direction-finding radio equipment for the army in France in 1915. By May 1915, the Admiralty was able to track German submarines crossing the North Sea. Some of these stations also acted as 'Y' stations to collect German messages, but a new section

3072-564: The message need not be known to infer the movement. There is an art as well as science of traffic analysis. Expert analysts develop a sense for what is real and what is deceptive. Harry Kidder , for example, was one of the star cryptanalysts of World War II, a star hidden behind the secret curtain of SIGINT. Generating an electronic order of battle (EOB) requires identifying SIGINT emitters in an area of interest, determining their geographic location or range of mobility, characterizing their signals, and, where possible, determining their role in

3136-410: The message, or even MASINT techniques for "fingerprinting" transmitters or operators. Message content other than the sender and receiver is not necessary to do traffic analysis, although more information can be helpful. For example, if a certain type of radio is known to be used only by tank units, even if the position is not precisely determined by direction finding, it may be assumed that a tank unit

3200-410: The new Operationeel Verbindings-Inlichtingen Centrum (Operational Signal-Intelligence Centre, OVIC), at Eibergen . General Intelligence and Security Service The General Intelligence and Security Service ( Dutch : Algemene Inlichtingen- en Veiligheidsdienst [ˈɑlɣəmeːnə ˈʔɪnlɪxtɪŋən ɛn ˈvɛiləxɦɛitsˌdinst, -ŋə ʔɛn -] ; AIVD ) is the intelligence and security agency of

3264-492: The newly emerging field of signals intelligence and codebreaking (synonymous with cryptanalysis). On the declaration of war, Britain cut all German undersea cables. This forced the Germans to communicate exclusively via either (A) a telegraph line that connected through the British network and thus could be tapped; or (B) through radio which the British could then intercept. Rear Admiral Henry Oliver appointed Sir Alfred Ewing to establish an interception and decryption service at

SECTION 50

#1732797811399

3328-461: The other side will be using radios that must be portable and not have huge antennas. Even if a signal is human communications (e.g., a radio), the intelligence collection specialists have to know it exists. If the targeting function described above learns that a country has a radar that operates in a certain frequency range, the first step is to use a sensitive receiver, with one or more antennas that listen in every direction, to find an area where such

3392-417: The sensor's output data in near real-time, together with historical information of signals, better results are achieved. Data fusion correlates data samples from different frequencies from the same sensor, "same" being confirmed by direction finding or radiofrequency MASINT. If an emitter is mobile, direction finding, other than discovering a repetitive pattern of movement, is of limited value in determining if

3456-509: The signal direction, which may be too slow when the signal is of short duration. One alternative is the Wullenweber array technique. In this method, several concentric rings of antenna elements simultaneously receive the signal, so that the best bearing will ideally be clearly on a single antenna or a small set. Wullenweber arrays for high-frequency signals are enormous, referred to as "elephant cages" by their users. A more advance approach

3520-451: The stadium. If, however, an anti-terrorist organization believed that a small group would be trying to coordinate their efforts using short-range unlicensed radios at the event, SIGINT targeting of radios of that type would be reasonable. Targeting would not know where in the stadium the radios might be located or the exact frequency they are using; those are the functions of subsequent steps such as signal detection and direction finding. Once

3584-509: The story of Operation SALAM , László Almásy 's mission across the desert behind Allied lines in 1942. Prior to the Normandy landings on D-Day in June 1944, the Allies knew the locations of all but two of Germany's fifty-eight Western Front divisions. Winston Churchill was reported to have told King George VI : "It is thanks to the secret weapon of General Menzies , put into use on all

3648-525: The story of the infiltration of Cozy Bear told from the perspective of an American liaison officer attached to the AIVD. Signals intelligence Signals intelligence ( SIGINT ) is the act and field of intelligence-gathering by interception of signals , whether communications between people ( communications intelligence —abbreviated to COMINT ) or from electronic signals not directly used in communication ( electronic intelligence —abbreviated to ELINT ). As classified and sensitive information

3712-562: The whole of the British forces in World War II came under the code name " Ultra ", managed from Government Code and Cypher School at Bletchley Park . Properly used, the German Enigma and Lorenz ciphers should have been virtually unbreakable, but flaws in German cryptographic procedures, and poor discipline among the personnel carrying them out, created vulnerabilities which made Bletchley's attacks feasible. Bletchley's work

3776-543: Was created on June 15, 2014. The JSCU specializes in Sigint and Cyber. Sigint includes intelligence gathered from (tele)communications. AIVD defines 'Cyber' as a group of activities related to computer networks and data streams. Examples given are mapping out the Internet landscape in (new) mission areas, informing allies about dangerous computer viruses , or hacking terrorist websites. To intercept wireless communication

3840-595: Was created within Room 40 to plot the positions of ships from the directional reports. Room 40 played an important role in several naval engagements during the war, notably in detecting major German sorties into the North Sea . The battle of Dogger Bank was won in no small part due to the intercepts that allowed the Navy to position its ships in the right place. It played a vital role in subsequent naval clashes, including at

3904-686: Was essential to defeating the U-boats in the Battle of the Atlantic , and to the British naval victories in the Battle of Cape Matapan and the Battle of North Cape . In 1941, Ultra exerted a powerful effect on the North African desert campaign against German forces under General Erwin Rommel . General Sir Claude Auchinleck wrote that were it not for Ultra, "Rommel would have certainly got through to Cairo". Ultra decrypts featured prominently in

SECTION 60

#1732797811399

3968-712: Was in decrypting the Zimmermann Telegram , a telegram from the German Foreign Office sent via Washington to its ambassador Heinrich von Eckardt in Mexico. With the importance of interception and decryption firmly established by the wartime experience, countries established permanent agencies dedicated to this task in the interwar period. In 1919, the British Cabinet's Secret Service Committee, chaired by Lord Curzon , recommended that

4032-643: Was located in Villa Maarheeze in Wassenaar, just north of The Hague. IDB was dissolved in 1994 after heavy internal turmoil. The foreign intelligence task was eventually handed over to the BVD, which in doing so turned into a combined intelligence and security service. For this reason, it was rebranded Algemene Inlichtingen en Veiligheidsdienst (AIVD) on 29 May 2002. The AIVD focuses mostly on domestic non-military threats to Dutch national security , whereas

4096-680: Was working on the diplomatic codes and ciphers of 26 countries, tackling over 150 diplomatic cryptosystems. The US Cipher Bureau was established in 1919 and achieved some success at the Washington Naval Conference in 1921, through cryptanalysis by Herbert Yardley . Secretary of War Henry L. Stimson closed the US Cipher Bureau in 1929 with the words "Gentlemen do not read each other's mail." The use of SIGINT had even greater implications during World War II . The combined effort of intercepts and cryptanalysis for

#398601