Logo

American Security Council Foundation

Back to main site

Alan W. Dowd is a Senior Fellow with the American Security Council Foundation, where he writes on the full range of topics relating to national defense, foreign policy and international security. Dowd’s commentaries and essays have appeared in Policy Review, Parameters, Military Officer, The American Legion Magazine, The Journal of Diplomacy and International Relations, The Claremont Review of Books, World Politics Review, The Wall Street Journal Europe, The Jerusalem Post, The Financial Times Deutschland, The Washington Times, The Baltimore Sun, The Washington Examiner, The Detroit News, The Sacramento Bee, The Vancouver Sun, The National Post, The Landing Zone, Current, The World & I, The American Enterprise, Fraser Forum, American Outlook, The American and the online editions of Weekly Standard, National Review and American Interest. Beyond his work in opinion journalism, Dowd has served as an adjunct professor and university lecturer; congressional aide; and administrator, researcher and writer at leading think tanks, including the Hudson Institute, Sagamore Institute and Fraser Institute. An award-winning writer, Dowd has been interviewed by Fox News Channel, Cox News Service, The Washington Times, The National Post, the Australian Broadcasting Corporation and numerous radio programs across North America. In addition, his work has been quoted by and/or reprinted in The Guardian, CBS News, BBC News and the Council on Foreign Relations. Dowd holds degrees from Butler University and Indiana University. Follow him at twitter.com/alanwdowd.

ASCF News

Scott Tilley is a Senior Fellow at the American Security Council Foundation, where he writes the “Technical Power” column, focusing on the societal and national security implications of advanced technology in cybersecurity, space, and foreign relations.

He is an emeritus professor at the Florida Institute of Technology. Previously, he was with the University of California, Riverside, Carnegie Mellon University’s Software Engineering Institute, and IBM. His research and teaching were in the areas of computer science, software & systems engineering, educational technology, the design of communication, and business information systems.

He is president and founder of the Center for Technology & Society, president and co-founder of Big Data Florida, past president of INCOSE Space Coast, and a Space Coast Writers’ Guild Fellow.

He has authored over 150 academic papers and has published 28 books (technical and non-technical), most recently Systems Analysis & Design (Cengage, 2020), SPACE (Anthology Alliance, 2019), and Technical Justice (CTS Press, 2019). He wrote the “Technology Today” column for FLORIDA TODAY from 2010 to 2018.

He is a popular public speaker, having delivered numerous keynote presentations and “Tech Talks” for a general audience. Recent examples include the role of big data in the space program, a four-part series on machine learning, and a four-part series on fake news.

He holds a Ph.D. in computer science from the University of Victoria (1995).

Contact him at stilley@cts.today.

DHS Warns That American Businesses Face Ongoing Data Theft Threat From Vendors in China

Wednesday, January 6, 2021

Categories: ASCF News Cyber Security

Comments: 0

The Department of Homeland Security (DHS) has issued a broad warning to all American businesses about potential data theft by partners in China that have connections to the government. The advisory outlines “PRC legal regimes and known PRC data collection practices” that could present a risk to any organization not based in the country, warning that China’s ambitious plans to become the premier “global technological superpower” by 2049 translate into an increased focus on all types of data collection.- Advertisement -

According to Chad Wolf, Acting Secretary of the DHS: “For too long, U.S. networks and data have been exposed to cyber threats based in China which are using that data to give Chinese firms an unfair competitive advantage in the global marketplace. Practices that give the PRC government unauthorized access to sensitive data – both personal and proprietary – puts the U.S. economy and businesses at direct risk for exploitation. We urge businesses to exercise caution before entering into any agreement with a PRC-linked firm.”

Data theft warning highlights long-term strategic concerns for US

Underpinning the new data theft warning are two general concerns about the US’s most formidable rival: PRC government access to data held by Chinese companies under the 2017 National Intelligence Law, and the country’s collection of stated trade and economic growth plans.

The National Intelligence Law essentially requires companies in China to provide the government with access to any data they hold upon demand. The DHS warning thus essentially applies to all businesses based in the PRC: those that have an “ownership nexus” in country or that use equipment manufactured by such a company, along with firms that have PRC citizens in “key leadership and security-focused roles.”

The warning also highlights a collection of PRC initiatives meant to bear fruit by 2025-2050, all of which would be supported and accelerated by widespread data theft. The advisory names the “Made in China 2025” plan that seeks to reform the country’s manufacturing sector from a low-tech to a high-tech focus, the “Digital Silk Road” initiative that looks to export telecommunications infrastructure to targeted parts of the world, and the Military-Civil Fusion policy that seeks to have China’s armed forces at a “world class” level by 2049.

Nothing presented in the advisory is new information; it’s essentially an executive summary of the expected data theft risks from PRC entities that store data on Chinese servers or provide hardware, framed in terms of expectations based on geopolitical interests. The advisory echoes the core concerns of many cases that have emerged in the past couple of years, from the ban on Huawei hardware to the proposed ban on TikTok.

The DHS believes that, in keeping with these various strategic initiatives, the Chinese government is stepping up its collection of data through both legal and illegal channels. Its most immediate interest in data is in supporting its shift to a high-tech manufacturing base, something that espionage could provide a massive boost to. Longer-term, the CCP seeks data to improve both its intelligence and military goals by improving both technology and its ability to project propaganda to other nations.

The advisory identifies some specific entities that present an elevated risk of data theft: data centers owned or operated by PRC firms, foreign data centers built with PRC equipment, organizations that have a PRC firm as a joint venture partner, and devices or apps owned by Chinese companies.

d confidential intellectual property, biotech and genomic data, medical test data, personally identifiable information and geolocation data.

Long history of suspected data theft

Intellectual property theft in the interest of Chinese economic development has been a major problem for organizations in the US for many years, predating both the Trump and Obama administrations. The country has struggled to keep up with the West in technological innovation due to a number of factors, ranging from the nature of the government to domestic law that is weaker on data theft by competitors. A fundamental PRC strategy has been to simply infiltrate or hack into innovative foreign companies, steal confidential information, and use it to create domestic knockoffs. The “Thousand Talents Plan” for recruiting foreign tech and biological experts also essentially incentivized IP theft by requiring candidates to bring research with them, something that led to several high-profile cases of alleged espionage by American researchers.

DHS cautions that American companies should be concerned not just with targeted espionage, but also back doors (or “bugdoors”) built into hardware manufactured in the PRC and distributed for data theft purposes in a more broad fashion. The National Intelligence Law allows for hardware backdoors of this type if they are in the interests of the ruling government.

Photo and Link: https://www.cpomagazine.com/cyber-security/dhs-warns-that-american-businesses-face-ongoing-data-theft-threat-from-vendors-in-china/

Comments RSS feed for comments on this page

There are no comments yet. Be the first to add a comment by using the form below.