This Article 
   
 Share 
   
 Bibliographic References 
   
 Add to: 
 
Digg
Furl
Spurl
Blink
Simpy
Google
Del.icio.us
Y!MyWeb
 
 Search 
   
A Life or Death InfoSec Subversion
September/October 2008 (vol. 6 no. 5)
pp. 74-76
Camilo Viecco, Indiana University
Jean Camp, Indiana University
Details about failures of complex and well-implemented information-based attacks on systems are extremely difficult to obtain. However, here the authors examine a real-life analogue—an information attack on a highly complex security system, that of the Colombian guerrilla group FARC. This operation included a man-in-the-middle attack, targeted denial of service (DoS), and authentication subversion. The attack on FARC's communications structure is interesting not only because of its electronic and analog components, but also because it was a life or death matter. The authors examine the hostages' liberation from an information security perspective, compiling data from several Colombian newspapers and magazines and using the most accepted version of the events.

1. "Libres!" Revista Cambio, edition 783, 3 July 2008; www.cambio.com.co/portadacambio/783Articulo-web-nota_interior_cambio-4358236.html .
2. "Liberacion: El Gran Golpe," Revista Semana, edition 1366, 5 July 2008; www.semana.comwf_InfoArticulo.aspx?IdArt=113305 .
3. "Detalles Desconocidos de la 'Operacion Jaque,'" Periodico El Tiempo,6 July 2008; www.eltiempo.com/archivo/documentoCMS-4363688 (registration required).
4. "Destino USA," Revista Semana Extradición, edition 1366, 5 July 2008; www.semana.comwf_InfoArticulo.aspx?IdArt=113291 .

Index Terms:
information security, FARC, man-in-the-middle attacks, Colombian hostages, secure systems
Citation:
Camilo Viecco, Jean Camp, "A Life or Death InfoSec Subversion," IEEE Security & Privacy, vol. 6, no. 5, pp. 74-76, Sept.-Oct. 2008, doi:10.1109/MSP.2008.109
Usage of this product signifies your acceptance of the Terms of Use.