Computer Network Exploitation

TECHNICAL DEFINITION

Computer Network Exploitation (CNE) is a military and intelligence cyber operation that involves penetrating an adversary's computer networks and systems to exfiltrate data and gather intelligence. CNE leverages software vulnerabilities and intrusion techniques to establish persistent access for long-term information collection, forming a key component of Signals Intelligence (SIGINT) alongside Computer Network Attack (CNA) and Defense (CND).

BACKGROUND

Computer network operations (CNO) is a broad term that has both military and civilian application. Conventional wisdom is that information is power, and more and more of the information necessary to make decisions is digitized and conveyed over an ever-expanding network of computers and other electronic devices. Computer network operations are deliberate actions taken to leverage and optimize these networks to improve human endeavor and enterprise or, in warfare, to gain information superiority and deny the enemy this enabling capability.

SYNONYMS & ALIASES

• Cyber Espionage
• Digital Network Intelligence (DNI)
• Network Infiltration
• Offensive Cyber Operations
• Cyber Reconnaissance
• Intrusion and Exfiltration

USAGE NOTE

CNE is distinct from a Computer Network Attack (CNA) as its primary goal is clandestine intelligence gathering, not disruption or destruction of the target network.

DEVELOPERS

Organizations developing technology related to Computer Network Exploitation.

• United States Cyber Command (USCYBERCOM)

  A unified combatant command of the U.S. Department of Defense that directs, synchronizes, and coordinates cyberspace planning and operations to defend and advance national interests. It is a primary entity for conducting Computer Network Exploitation (CNE) for military purposes.

• National Security Agency (NSA)

  A U.S. intelligence agency responsible for global monitoring, collection, and processing of information and data for foreign and domestic intelligence and counterintelligence purposes. The NSA is a leader in developing and executing advanced Computer Network Exploitation techniques and tools.

• Northrop Grumman

  A major American aerospace and defense technology company. It provides a full range of cyber solutions, including developing tools and tradecraft for computer network exploitation, attack, and defense for national security missions.

• RTX (formerly Raytheon Technologies)

  A multinational aerospace and defense conglomerate that develops advanced cyber warfare capabilities. Its Intelligence & Space division creates offensive and defensive cyber tools, including technologies for network exploitation, for government and military clients.

• BAE Systems

  A British multinational defense, security, and aerospace company. Its Applied Intelligence division delivers solutions which help governments and commercial companies to manage cyber risks and threats, including the development of CNE capabilities.

• Leidos

  An American defense, aviation, information technology, and biomedical research company that is a major contractor for the DoD and Intelligence Community. They develop and deploy a wide range of cyber solutions, including support for Computer Network Operations and exploitation.

• Booz Allen Hamilton

  A management and technology consulting firm that is a major contractor for the U.S. government. The company provides extensive cybersecurity services, including engineering and developing platforms for cyber operations and exploitation.

• The MITRE Corporation

  A not-for-profit organization that manages federally funded research and development centers (FFRDCs). MITRE conducts extensive research in cybersecurity on behalf of U.S. government agencies, advancing the state-of-the-art in CNE techniques and tradecraft, famously developing the ATT&CK framework.