Upload File

overview: background - public intelligence

5
OVERVIEW: UNCLASSIFIED IIFOR OFFICIAL USE ONLY MARCH 2009 ATTACK THE NETWORK METHODOLOGY: PART 2 CRITICAL VULNERABILITIES AND TARGETING ASYMMETRIC WARFARE GROUP 1 This document facilitates discussion, training, and implementation of effective targeting methods at the Battalion and Brigade level. This paper discusses the Center of Gravity analysis model for identify- ing threat networks, Critical Capabilities, and Critical Vulnerabilities; use of the methodology to determine the Intelligence Surveillance and Reconnaissance (ISR) focus; and as a basis for understanding Attack the Network concepts. BACKGROUND: The discussion must start with understanding the insurgent networks' capability to influence or control the Center Of Gravity (COG). Typically, in a Counter Insurgency (COIN) environment, the COG is the population. An adaptive threat will modify its Tactics, Techniques and Procedures to maintain control over the COG . Dr. Strange's COG model is extracted from the writings of Karl von Clausewitz, who empha- sized that a COG must be identified by ana lyzing one's adversary; Dr. St ra nge extended the 19 th century definition to include "the primary sources of moral or physical strength, power, and resistance" and fur- ther defined analytical elements (Critical Capabilities, Critical Requirements and Critical Vulnerabilities) necessary to enable practical operationa l use. 1 COG analysis is a five-step process (discussed in detail within AWG's AI Qaeda and Associated Networks Vulnerability Analysis Workbook, Understanding the Threat Series, Volume 1, 1 JUN 2008). (See AWG SIPR / NIPR websites on final page) Identifying the COG. Identifying Critical Capabilities for the COG to function. Identifying Critical Requirements for each Critical Capability to support the COG. Determining the Critical Vulnerabilities (through attack, interdiction [or neutrali- zation]) of each Critical Requirement. Developing plans that focus on exploiting Critical Vulnerabilities, which are in effect the development of our own Critical Requirements. 2 This method allows us to see the network by highlighting the functional capabilities required to sustain the network. Each Critical Capability and Critical Requirement requires human interaction, man- agement and support. These individuals are typically trusted agents capable of leading others. We iden- tify these individuals as Tier II targets. They were also called "intermediaries" within the Asymmetric War- fare Group's Attack the Network Part I paper. 1 UNCLASSIFIED//FOR OFFICIAL USE ONLY

Upload: others

Post on 15-Feb-2022

1 views

Category:

Documents


0 download

Report

TRANSCRIPT

Page 1: OVERVIEW: BACKGROUND - Public Intelligence

OVERVIEW:

UNCLASSIFIED IIFOR OFFICIAL USE ONLY

MARCH 2009

ATTACK THE NETWORK METHODOLOGY: PART 2 CRITICAL VULNERABILITIES AND TARGETING

ASYMMETRIC WARFARE GROUP

1

This document facilitates discussion, training, and implementation of effective targeting methods at the Battalion and Brigade level. This paper discusses the Center of Gravity analysis model for identify­ing threat networks, Critical Capabilities, and Critical Vulnerabilities; use of the methodology to determine the Intelligence Surveillance and Reconnaissance (ISR) focus; and as a basis for understanding Attack the Network concepts.

BACKGROUND:

The discussion must start with understanding the insurgent networks' capability to influence or control the Center Of Gravity (COG). Typically, in a Counter Insurgency (COIN) environment, the COG is the population. An adaptive threat will modify its Tactics, Techniques and Procedures to maintain control over the COG. Dr. Strange's COG model is extracted from the writings of Karl von Clausewitz, who empha­sized that a COG must be identified by ana lyzing one's adversary; Dr. Strange extended the 19th century definition to include "the primary sources of moral or physical strength, power, and resistance" and fu r­ther defined analytical elements (Critical Capabilities, Critical Requirements and Critical Vulnerabilities) necessary to enable practical operationa l use. 1

COG analysis is a five-step process (discussed in detail within AWG's AI Qaeda and Associated Networks Vulnerability Analysis Workbook, Understanding the Threat Series, Volume 1, 1 JUN 2008). (See AWG SIPR / NIPR websites on final page)

• Identifying the COG.

• Identifying Critical Capabilities for the COG to function.

• Identifying Critical Requirements for each Critical Capability to support the COG.

• Determining the Critical Vulnerabilities (through attack, interdiction [or neutrali­zation]) of each Critical Requirement.

• Developing plans that focus on exploiting Critical Vulnerabilities, which are in effect the development of our own Critical Requirements.2

This method allows us to see the network by highlighting the functional capabilities required to sustain the network. Each Critical Capability and Critical Requirement requires human interaction, man­agement and support. These individuals are typically trusted agents capable of leading others. We iden­tify these individuals as Tier II targets. They were also called "intermediaries" within the Asymmetric War­fare Group's Attack the Network Part I paper.

1

UNCLASSIFIED//FOR OFFICIAL USE ONLY

Page 2: OVERVIEW: BACKGROUND - Public Intelligence

UNCLASSIFIED/ /FOR OFFICIAL USE ONLY 2

This is the second example within the Attack the Network series of papers that highlights the need to focus targeting efforts against something other than the threat's strength. Often our efforts focus on reacting to "Who conducted the lED attack that affected Coalition Forces on this date?" which leads to allocation of resources against the lowest tiered targets rather than key individuals within a network. The compartmentalization of an insurgent cell and the large pool of recruits available as replacements indi­cate that pursuit of low level insurgents does not have long term significant impacts on the COIN fight. Low level insurgents are relatively easy to replace, and targeting them only succeeds in creating a "refiV reorganize cycle" . Units that focus on attacking the vulnerabilities related to the enemy's Critical Re­quirements will have more impact on the leadership of the network, as well as, reduce the number of en­emy attacks against them. For the purposes of this discussion, Critical Capabilities can be described as High Value Targets. The Multi-National Corps-Iraq Intelligence Officer (C2) recently described this in blunt terms, "Attacking the network is really about targeting High Va lue Individuals; the Counter-Insurgency fight is about key personalities that dominate the threat organization."3 This paper demonstrates the link­age of key individuals to key functions within an insurgent network to determine which targets should be prioritized for finding, fixing and f inishing the threat.

INSURGENT CAPABILITIES DESCRIBED THROUGH CENTER OF GRAVITY ANALYSIS:

Insurgents must be able to perform critical operations to control or influence the COG (the people) in the COIN environment. These operations, or Critical Capabilities, ensure key tasks are successful and can also be described as threat Warfighting functions. For example, a threat must have the following functions to be successful:

• Command and Control

• Intelligence Gathering

• Operational capability

• Logistics

• Recruitment and Training

Each of these functions can be labeled as Critical Capabilities under the CENTER OF GRAVITY ANALYSIS - Critical capabilities COG Analysis methodology. The MNC-I C2 indicated the importance of recog­nizing that in many insurgent organiza­tions one key person is responsible for more than one function. An effort should be made to diagnose each insur­gent organization's capabilities/ networks to determine their relative strengths and weaknesses. This will lead to an understanding of intersecting threat lines of operation and key lead­ers, and will help prioritize targeting ef­forts against networks and High Value Individuals (HVls).

2

UNCLASSIFIED/ /FOR OFFICIAL USE ONLY

Page 3: OVERVIEW: BACKGROUND - Public Intelligence

UNCLASSIFIED//FOR OFFICIAL USE ONLY 3

Required tasks within a Critical

Capability that must be successfully CENTER OF GRAVITY ANALYSIS - Critical Requirements accomplished to ensure the network functions are called Critical Require­ments. Another way to describe the importance of requirements and capa­bilities is to think of the association of Battle Tasks to Collective Tasks. Col­lective Tasks form the basis of a unit's expected capabilities. The same holds true for insurgent organizations. For example, if the enemy has to ensure it receives adequate resupply to conduct attacks against Coalition Forces then it is required to Fund Operations, Acquire Supplies and Move Supplies (Critical Requirements). After this level of analysis, staff elements should be able to evaluate which threat capabilities are strengths and wh ich are weaknesses to the enemy's organization. We should attack the threat's weaknesses and contain its strengths.

Threat actions that increase chances of detecting and capturing the threat are Critical Vulnerabili­ties. A series of individual tasks must be accomplished to constitute a collective task, just as collective tasks are combined to form the structure of a network. For analysis, it is not necessary to reinvent all as­sociated tasks. Staffs that have already determined the insurgent's weak­nesses, within the capabilities and re­quirements framework, can narrow thei r focus to those actions that can be ob­served with their internallSR assets. Just as in our own training doctrine, where individual tasks are often com­mon to various collective skills, threat Critical Vulnerabilities are typically com­mon requirements in different networks. Our ability to detect the threat is in­creased because the tasks overlap or one key individual is responsible for more than one requirement. Forexam­pIe, if the Critical Capability is to provide logistics and one of the Critical Require­

CENTER OF GRAVITY ANALYSIS - Critical Vulnerabilities

ments that we believe is a weakness is to move those supplies, then possible vulnerabilities may include the following: transfer supplies from a cache to vehicle, distribute materials from large truck to multiple vehicles, or conduct a personal meeting to coordinate resupply. There will be several tasks associated with the Critical Requirement. A staff will have to understand their Operating Environment, the threat's previous actions, and their own capabilities to understand which of those individual tasks are most vul­nerable to detection and action. The purpose of identifying Critical Vulnerabilities is to focus ISR, provide intelligence to the commander so that he can make a decision on how to neutralize the threat, and then take action.

3

UNCLASSIFIED//FOR OFFICIAL ONLY

Page 4: OVERVIEW: BACKGROUND - Public Intelligence

UNCLASSIFIED//FOR OFFICIAL USE ONLY 4

Returning to the therne that a key elernent of the COIN fight is personality targeting, key insurgent individuals who perform tasks that are vulnerable to detection/exploitation or supervise the execution of Critical Requirements are

those who should receive prior- CENTER OF GRAVITY ANALYSIS - Defeat the Network ity targeting. Individuals who perform tasks that are vulner­able to detection/exploitation and impact more than one Critical Requirement are a higher priority because of the role they play within the net­work. Multiple, near simulta­neous attacks against Critical Vulnerabilities significantly re­duce the capabilities of the network by shocking the sys­tem. Continuing with the ear­lier examples, a bomb maker that acquires supplies, coordi­nates meetings for delivering supplies, and also conducts reconnaissance of targets for future attacks deserves more priority for targeting than the insurgent that emplaced and triggered an lED. Combining actions to kill or capture this HVI as well as the cell leader responsible for planning and conducting the attacks both seriously degrades the Critical Re­quirement to resupply the network and critical capability to perform command and control ; a shock to the network has been introduced by Coalition Forces. This is not easy to do, even with excellent intelligence, but using this strategy and analysis drives ISR planning and target development towards this goal.

CONCLUSION:

In Attack the Network - Part I, the Oil Spot model was modified to discuss insurgent operations for influencing the COG and developing various networks. The analysis helped to illustrate that mid-tier level insurgents (Tier II or 'intermediaries") are worth more targeting effort at the BCT level than low-level Tier III-type targets. In this paper, employing COG analysis to determine Critical Capabilities, Critical Require­ments, and Critical Vulnerabilities shows that our ISR assets and targeting strategy need to be prioritized toward the enemy's weaknesses and NOT his strengths. Personality targeting is one of the keys to at­tacking an insurgent network. Units need to analyze both HVls and the associated tasks performed to accomplish Critical Capabilities in order to have a significant impact on the enemy. Part III will continue the discussion by describing doctrinal templating of insurgent networks, ISR focus, and synchronization to the commander's intent and scheme of maneuver.

Look for Attack the Network Methodology: Part 3 Observable Indicators and ISR Synchronization

4

UNCLASSIFIED/ /FOR OFFICIAL USE ONLY

Page 5: OVERVIEW: BACKGROUND - Public Intelligence

UNCLASSIFIED//FOR OFFIICIAL USE ONLY

REFERENCES:

lAsymmetric Warfare Group, AI Qaeda and Associated Networks Vulnerability Analysis Workbook, Understanding the Threat Series, Volume 1: 1 JUN 2008; page vii.

2Asymmetric Warfare Group, AI Qaeda and Associated Networks Vulnerability AnalYSis Workbook, Understand ing the Threat Series, Volume 1: ·1 JUN 2008; page A-5.

3MNC-1 C2, Multi-National Corps - Iraq, Personal Interview: 24 NOV 08.

4 AWG Attack the f';Jetwork Part 1: March 09

ATTACK THE NETWORK METHODOLOGY: PART 2 CRITICAL VULNERABILITIES AND TARGETING

ASYMMETRIC WARFARE GROUP

SIPR: http://anny.daiis.mi.army.smil.mil/org/aawo/awg/default.aspx NIPR: https://portal.awg.army.mil

Asymmetric Warfare Group 2282 Morrison Street

Fort George G. Meade, MD 20755 301.833.5258

5

UNClASSIFIED//FOR OFFICIAL USE ONLY

5


Regulatory Intelligence Overview - Pittsburgh - Homepitt.afdo.org/uploads/1/5/9/4/15948626/06.28.16-torres.pdfJun 28, 2016  · Regulatory Intelligence Overview. Regulatory Intelligence

Artificial Intelligence overview

Intelligence CHAPTER OVERVIEW What Is Intelligence? Study Guide.pdf · Intelligence CHAPTER OVERVIEW What Is Intelligence? ... th form 1 for compnting IQ, ... Describe the normal

Data Intelligence Overview

Intelligence Overview

1 Intelligence Module 25. 2 Thinking, Language, & Intelligence Overview Intelligence What Is Intelligence? Theories of Intelligence Assessing Intelligence

Overview Soccer: Benchmark for Artificial Intelligence ... · Soccer: Benchmark for Artificial Intelligence Methods and Robotics Overview `Introduction to RoboCup `Artificial Intelligence

IARPC Environmental Intelligence Overview

Artificial Intelligence: Background, Selected Issues, and

PROJECT OVERVIEW & BACKGROUND · PROJECT OVERVIEW & BACKGROUND PROJECT OVERVIEW & BACKGROUND. In 2012, the Smithsonian Steering Committee . developed project goals and priorities

Intelligence Overview - Afghanistan (Feb08)

Overview and Background

Appendix I OVERVIEW OF ARTIFICIAL INTELLIGENCE RESEARCH ... · PDF fileAppendix I OVERVIEW OF ARTIFICIAL INTELLIGENCE RESEARCH Appendjx z OVERVIEW -. OF ARTIFICIAL INTELLIGENCE RESEARCH

Insurance Regulation: Background, Overview, and ... · Insurance Regulation: Background, Overview, and Legislation ... Insurance Regulation: Background, Overview, and ... regulation

Business Intelligence - Concepts Overview

ON INTELLIGENCE Overview 2.4

BACKGROUND AND OVERVIEW

Russian Military Intelligence: Background and Issues for

Copyright, 2005 All rights reserved L. Manevitz1 Artificial Intelligence Background and Overview L. Manevitz

Ambient Intelligence: An Overview

TomPeters_Business Intelligence Overview

Cisco SecurityCisco Security Intelligence Operations (Cisco SIO) Overview… · Cisco SecurityCisco Security Intelligence Operations (Cisco SIO) Overview(Cisco SIO) Overview Karaked

Lawrence Kerr December 5, 2013. Overview Background Foreign Intelligence Surveillance Act (FISA) USA PARTRIOT Act Proposed changes FISA Improvements

Background & Overview

Oracle Business Intelligence Applications Overview - …hosteddocs.ittoolbox.com/bi_us_en_wp_biappsoverview.pdf · Oracle Business Intelligence Applications Overview Page 2 Note:

Deck: Ad Intelligence Overview

Overview of Business Intelligence

Company Background - BM Intelligence

Open Source Intelligence Overview

Congressional Oversight of Intelligence: Background and

Business Intelligence an overview

JSBI Business Intelligence Overview

Research & Market Intelligence Overview

INTELLIGENCE ACROSS CULTURES. LECTURE OUTLINE I Background and objectives I Background and objectives II Intelligence and its measurement II Intelligence

Site-Intelligence Product Overview