Od ofiary do światowego lidera. Estonia po cyberatakach z 2007 roku
DOI:
https://doi.org/10.12797/Politeja.20.2023.86.14Keywords:
Estonia, cyberattacks, cyberwar, cybersecurity, political conflictAbstract
FROM VICTIM TO LEADER – ESTONIA AFTER THE 2007 CYBERATTACKS
In the spring of 2007, Estonia became the target of co-ordinated cyberattacks. The attacks were part of a wider political conflict between Estonia and Russia over the relocation of a Soviet-era monument in Tallinn. The aim of this article is to present the effects of the cyberattacks on Estonian cybersecurity. The article consists of several parts. The first deals with the main causes of the conflict. In the second part, the author presents information about the direct results of the cyberattacks on Estonia. The last part presents strategic, legal and organisational changes in Estonian cybersecurity. At present, Estonia is one of the most developed nations regarding the ubiquitous use of information and communication technology in all aspects of state functioning. The study used the following research methods: historical method, comparative analysis, literature analysis and criticism, source analysis and criticism, and case study.
Downloads
References
Avaliku teabe seadus, Riigi Teataja, 15 XI 2000, [online] https://www.riigiteataja.ee/akt/122032011010.
Babraj R., NATO Locked Shields, NASK, 23 IV 2018, [online] https://cyberpolicy.nask.pl/nato-locked-shields/.
Baltrusaits D.F., Cyber War: Do We Have the Right Mindset?, [w:] Handbook of Cyber-Development, Cyber-Democracy, and Cyber-Defense, red. E.G. Carayannis, D.F.J. Campbell, M.P. Efthymiopoulos, Cham 2018, https://doi.org/10.1007/978-3-319-09069-6_24. DOI: https://doi.org/10.1007/978-3-319-09069-6_24
Bochyńska N., Estonia pod presją ataków DDoS. To może być dopiero początek, CyberDefence24, 23 VIII 2022, [online] https://cyberdefence24.pl/cyberbezpieczenstwo/estonia-pod-presja-atakow-ddos-to-moze-byc-dopiero-poczatek.
Bright A., Estonia Accuses Russia of „Cyberattack”, The Christian Science Monitor, 17 V 2007, [online] https://www.csmonitor.com/2007/0517/p99s01-duts.html.
Bryant C.C., Cybersecurity 2020: What Estonia Knows about Thwarting Russians, The Christian Science Monitor, 4 II 2020, [online] https://www.csmonitor.com/World/Europe/2020/0204/Cybersecurity-2020-What-Estonia-knows-about-thwarting-Russians.
Building Sustainable Peaces: Timing and Sequencing of Post-Conflict Reconstruction and Peacebuilding, red. A. Langer, G.K. Brown, Oxford 2016.
Collier J., Strategies of Cyber Crisis Management: Lessons from the Approaches of Estonia and the United Kingdom, [w:] Ethics and Policies for Cyber Operations: A NATO Cooperative Cyber Defence Centre of Excellence Initiative, red. M. Taddeo, L. Glorioso, Cham 2017, https://doi.org/10.1007/978-3-319-45300-2_11. DOI: https://doi.org/10.1007/978-3-319-45300-2_11
Cyber Security Strategy 2008, Ministry of Economic Affairs and Communication, 2014, [online] https://www.enisa.europa.eu/topics/national-cyber-security-strategies/ncss-map/stra tegies/cyber-security-strateg y/@@download_version/993354831bfc4d689c-20492459f8a086/file_en.
Czosseck C., Ottis R., Talihä A.M., Estonia After the 2007 Cyber Attacks: Legal, Strategic and Organisational Changes in Cyber Security, „Journal of Cyber Warfare and Terrorism” 2011, vol. 1, no. 1, https://doi.org/10.4018/ijcwt.2011010103. DOI: https://doi.org/10.4018/ijcwt.2011010103
Data Embassies: Sovereignty, Security, and Continuity for Nation-States, Complex Discovery, 9 II 2022, [online] https://complexdiscovery.com/data-embassies-sovereigntysecurity-and-continuity-for-nation-states/.
Davies P., Cyberattacks Likely to Rise in Wake of Ukraine War: This Is What Estonia Learnt from Web War One, Euronews, 1 VII 2022, [online] https://www.euronews.com/
next/2022/05/26/cyberattacks-likely-to-rise-in-wake-of-ukraine-war-this-is-what-estonialearnt-from-web-wa.
Davies P., Estonia Hit by „Most Extensive” Cyberattack since 2007 Amid Tensions with Russia over Ukraine War, Euronews, 19 VIII 2022, [online] https://www.euronews.com/
next/2022/08/18/estonia-hit-by-most-extensive-cyberattack-since-2007-amid-tensionswith-russia-over-ukrain.
Dereń J., Rabiak A., NATO a aspekty bezpieczeństwa w cyberprzestrzeni, [w:] Cyberbezpieczeństwo jako podstawa bezpiecznego państwa i społeczeństwa w XXI wieku, red. M. Górka, Warszawa 2014.
Doktryna cyberbezpieczeństwa Rzeczypospolitej Polskiej 2015, Warszawa 2015, [online] http://en.bbn.gov.pl/ftp/dok/01/DCB.pdf.
Electronic Communications Act, Riigi Teataja, 8 XII 2004, [online] https://www.riigiteataja.ee/en/eli/501042015003/consolide.
Establishing the First Data Embassy in the World, Observatory of Public Sector Innovation, 7 II 2017, [online] https://oecd-opsi.org/innovations/establishing-the-first-dataembassy-in-the-world/.
Estonia – ikona e-możliwości, Thompson&Stein, [online] https://www.thompsonstein.com/estonia-ikona-e-mozliwosci/.
Estonia Faces Its Most Extensive Cyberattacks since 2007 after Soviet Monument Removal, Baltic News Network, 18 VIII 2022, [online] https://bnn-news.com/estonia-faces-its-mostextensive-cyberattacks-since-2007-after-soviet-monument-removal-237275.
Estonia Presses Bush for Cyber-Attack Research Center, The Wall Streat Journal, 25 VI 2007, [online] https://www.wsj.com/articles/BL-WB-2739.
Estonia’s National Cybersecurity and Cyberdefense Posture: Policy and Organizations, Cyberdefense Report, Zürich, IX 2020, [online] https://css.ethz.ch/content/dam/ethz/special-interest/gess/cis/center-for-securities-studies/pdfs/Cyber-Reports-2020-09-Estonia.pdf.
Estonian Defence League’s Cyber Unit, Kaitseliit, [online] http://www.kaitseliit.ee/en/cyber-unit.
Fraser M., Prezydentka Estonii: brak ulg dla cyfrowych gigantów pozwolił na wzrost lokalnych startupów, CyberDefence24, 21 IX 2021, [online] https://cyberdefence24.pl/polityka-i-prawo/prezydentka-estonii-brak-ulg-dla-cyfrowych-gigantow-pozwolil-na-wzrostlokalnych-startupow.
Ghildiyal M., How Did Estonia Prepare for a Secure Cyber Security Achitecture?, CeSCube, 11 III 2022, [online] https://www.cescube.com/vp-how-did-estonia-prepare-for-a-securecyber-security-architecture.
Global Cybersecurity Index 2020, ITU, 2023, [online] https://www.itu.int/epublications/publication/D-STR-GCI.01-2021-HTM-E.
Herzog S., Ten Years after the Estonian Cyberattacks: Defense and Adaptation in the Age of Digital Insecurity, „Georgetown Journal of International Affairs” 2017, vol. 18, no. 3, https://doi.org/10.1353/gia.2017.0038. DOI: https://doi.org/10.1353/gia.2017.0038
How Estonia Became a Global Heavyweight in Cyber Security, e-Estonia, 14 VI 2017, [online] https://e-estonia.com/how-estonia-became-a-global-heavyweight-in-cyber-security/.
ICMP Flood, Fundacja Instytut Cyberbezpieczeństwa, 27 X 2022, [online] https://instytutcyber.pl/artykuly/icmp-flood/.
Ilves L., wpis na Twitterze, 18 VIII 2022, [online] https://twitter.com/luukasilves/status/1560105663933587458.
Information and Communication Technologies: Statistics Estonia, [online] https://www.stat.ee/en/find-statistics/statistics-theme/technology-innovation-and-rd/information-andcommunication.
Internet jako nowoczesne pole bitwy, [w:] Obywatel w internecie, red. M. Butkiewicz, P.P. Płatek, Warszawa 2017.
Jalonen J., Dni, które wstrząsnęły Estonią, przeł. P. Bukalska, Tygodnik Powszechny, 12 V 2019, [online] http://www.eesti.pl/index.php?dzial=panstwo&strona=cyberataki.
Juurvee I., Mattiisen M., Report the Bronze Soldier Crisis of 2007: Revisiting an Early Case of Hybrid Conflict, VIII 2020, [online] https://icds.ee/wp-content/uploads/2020/08/ICDS_Report_The_Bronze_Soldier_Crises_of_2007_Juurvee_Mattiisen_August_2020.pdf.
Kofin M., Atak cybernetyczny i awaria systemów informatycznych – paraliż państwa i życia obywateli na przykładzie Estonii, Gruzji, Litwy oraz Polski, [w:] Obywatel w internecie, red. M. Butkiewicz, P.P. Płatek, Warszawa 2017.
Korzystanie z Internetu w 2022 roku, komunikat z badań CBOS, Centrum Badań Opinii Społecznej, 2022, nr 77, [online] https://www.cbos.pl/SPISKOM.POL/2022/K_077_22.PDF.
Kozłowski A., Comparative Analysis of Cyberattacks on Estonia, Georgia and Kyrgyzstan, „European Scientific Journal” 2020, vol. 3, https://10.19044/esj.2014.v10n7p%25p.
Küberväejuhatus, Eesti Kaitsevägi, [online] https://mil.ee/uksused/kubervaejuhatus/.
Lakomy M., Cyberprzestrzeń jako nowy wymiar rywalizacji i współpracy państw, Katowice 2015.
Landler M., Markoff J., In Estonia, What May Be the First War in Cyberspace, The New York Times, 28 V 2007, [online] https://www.nytimes.com/2007/05/28/business/worldbusiness/28iht-cyberwar.4.5901141.html.
Lee S., Ethics of Cyberattack, [w:] The Ethics of Information Warfare, red. K.W. Miller, M. Taddeo, Oxford 2014, https://doi.org/10.1007/978-3-319-04135-3_7. DOI: https://doi.org/10.1007/978-3-319-04135-3_7
Leksykon politologii, red. A. Antoszewski, R. Herbut, Wrocław 2004.
Lewis J.A., Advanced Experiences in Cybersecurity Policies and Practices: An Overview of Estonia, Israel, South Korea, and the United States, Institutions for Development Sector, VII 2016, [online] https://publications.iadb.org/publications/english/document/Advanced-Experiences-in-Cybersecurity-Policies-and-Practices-An-Overview-of-Estonia-Israel-South-Korea-and-the-United-States.pdf. DOI: https://doi.org/10.18235/0007970
Locked Shields 2022, Wojsko Polskie, [online] https://www.wojsko-polskie.pl/woc/articles/aktualnosci-w/locked-shields-2022/.
Majkowski W., Koniec śledztwa w sprawie cyberataku na Estonię, Polityka Globalna, 21 VIII 2012, [online] http://www.politykaglobalna.pl/2012/08/koniec-sledztwa-w-sprawie-cyberataku-na-estonie/.
Myers S.L., Russia Rebukes Estonia for Moving Soviet Statue, The New York Times, 27 IV 2007, [online] https://www.nytimes.com/2007/04/27/world/europe/27cnd-estonia.html.
National Security Concept of Estonia, Kaitseministeerium, 12 V 2010, [online] https://www.kaitseministeerium.ee/sites/default/files/elfinder/article_files/national_security_concept_of_estonia.pdf.
Nolte-Laird R., Peacebuilding Online: Dialogue and Enabling Positive Peace, Dunedin 2021, https://doi.org/10.1007/978-981-16-6013-9. DOI: https://doi.org/10.1007/978-981-16-6013-9
Nordic Baltic Cooperation (NB8), Republic of Estonia. Ministry of Foreign Affairs, [online] https://www.vm.ee/en/international-relations-estonian-diaspora/regional-cooperation/nordic-baltic-cooperation-nb8.
Nowak A., Cyberprzestrzeń jako nowa jakość zagrożeń, „Zeszyty Naukowe AON” 2013, no. 3.
Olejnik Ł., Kurasiński A., Filozofia cyberbezpieczeństwa. Jak zmienia się świat? Od złośliwego oprogramowania do cyberwojny, Warszawa 2022.
Penal Code, Riigi Teataja, 6 VI 2001, [online] https://www.riigiteataja.ee/en/eli/522012015002/consolide.
Pernik P., Maldre P., Rising Challenges: Cybersecurity in the Baltic Sea Region, [w:] Baltic Visions: European Cooperation, Regional Stability, red. K. Redłowska, Warszawa 2015.
Polacy z ABW, SKW, MON-u, WAT-u oraz CERT.PL zwyciężyli w ćwiczeniach NATO symulujących ataki internetowe, Niebezpiecznik, 24 V 2022, [online] https://niebezpiecznik.pl/post/polacy-z-abw-skw-mon-u-oraz-cert-pl-zwyciezyli-w-cwiczeniach-nato-dot-atakowinternetowych/.
Pomerantsev P., To nie jest propaganda. Przygody na wojnie z rzeczywistością, przeł. A. Paszkowska, Warszawa 2020.
Public Information Act, Riigi Teataja, 15 XI 2000, [online] https://www.riigiteataja.ee/en/eli/514112013001/consolide.
Regional Activities, Republic of Estonia. Ministry of Foreign Affairs, [online] https://vm.ee/en/international-law-cyber-diplomacy/cyber-diplomacy/regional-activities.
Renteria S., Nadbałtycka Dolina Krzemowa, PFR, 31 XII 2019, [online] https://pfr.pl/blog/nadbaltycka-dolina-krzemowa.html.
Rid T., Cyberwar and Peace: Hacking Can Reduce Real-World Violence, „Foreign Affairs” 2013, vol. 92, no. 6, [online] https://www.foreignaffairs.com/cyberwar-and-peace.
Rid T., Wojna informacyjna, przeł. F. Tryl, Warszawa 2022.
Riigi küberturvalisuse tagamine, Majandus-ja Kommunikatsiooniministeerium, [online] https:// www.mkm.ee/digiriik-ja-uhenduvus/kuberturvalisus/riigi-kuberturvalisuse-tagamine.
Ruus K., Cyber War I: Estonia Attacked from Russia, The European Institute, [online] https:// www.europeaninstitute.org/index.php/component/content/article?id=67:cyber-wari-estonia-attacked-from-russia.
Rzucidło J., Prawo dostępu do Internetu jako podstawowe prawo człowieka. Część I, „Kwartalnik Naukowy Prawo Mediów Elektronicznych” 2010, no. 2, [online] http://www.bibliotekacyfrowa.pl/Content/38666/PDF/009.pdf.
Setting Up Government 3.0 Solutions Based on Open Source Software: The Case of X-Road, [w:] Electronic Government: 18th IFIP WG 8.5 International Conference, EGOV 2019, San Benedetto Del Tronto, Italy, September 2–4, 2019. Proceedings, red. I. Lindgren i in., Cham 2019.
Socor V., Estonian President’s U.S. Visit Reflects a Special Relationship, The Jamestown Foundation, 28 VI 2007, [online] https://jamestown.org/program/estonian-presidents-u-s-visit-reflects-a-special-relationship/.
Strona FIRST, [online] http://www.first.org/.
Strona GEANT, [online] https://geant.org/.
Strona Kaitseministeerium, [online] https://kaitseministeerium.ee/et.
Strona NATO Cooperative Cyber Defence Centre of Excellence, [online] https://ccdcoe.org/about-us/.
Strona X-Road, [online] https://x-road.global/.
Szabaciuk A., Polityka etniczna Republiki Estońskiej, „Wschodnioznawstwo” 2016, no. 10.
Szymański P., Nowe pomysły na obronę totalną. Bezpieczeństwo całościowe w Finlandii i Estonii, Warszawa 2020.
The Tallinn Manual, CCDCOE, [online] https://ccdcoe.org/research/tallinn-manual/.
TCP SYN Flood, Imperva, [online] https://www.imperva.com/learn/ddos/syn-flood/.
Tiido A., Wpływ kwestii mniejszości rosyjskiej na stosunki pomiędzy Republiką Estońską a Federacją Rosyjską, [online] https://depotuw.ceon.pl/bitstream/handle/item/2197/streszczenie.pdf ?sequence=3.
Tomic D., Saljic E., Cupic D., Cybersecurity Policies of East European Countries, Dubai 2018, https://doi.org/10.1007/978-3-319-06091-0_59-1. DOI: https://doi.org/10.1007/978-3-319-06091-0_59-1
Venemaa sõda Ukrainas läbi küberdomeeni prisma, Riigi Infosüsteemi Amet, 1 III 2022, [online] https://www.ria.ee/kuberturvalisus/kuberruumi-analuus-ja-ennetus/ohuhinnangudview_instance=1¤t_page=1.
Downloads
Published
Issue
Section
License
This work is licensed under a Creative Commons Attribution-NonCommercial-NoDerivatives 4.0 International License.
