Officials from the P5+1 and the European Union gather at the Beau Rivage Palace Hotel in Lausanne, Switzerland, in 2015 to discuss the Iran nuclear deal.
(photo credit: REUTERS)
US President Donald Trump recently announced he will withdraw the United States from the Joint Comprehensive Plan of Action (JCPOA), otherwise known as the Iran deal, an agreement signed by Trump’s predecessor Barak Obama and meant to delay Iran’s development of nuclear weapons. Although this move is not surprising (Trump has been saying he would do this for a while), the world is now discussing the possibility of Iran resuming its nuclear weapons program. Fears abound as to whether the Islamic Republic will practice restraint if it really does get the bomb.
Of course, there is the legitimate fear that Iranian nukes would fall into the wrong hands – most notably those of Iran’s proxies, Hezbollah chief among them. Nonetheless, I believe Iran is more than rational enough to understand that using a nuclear weapon itself would be catastrophic to its most basic interests. Indeed, every passing decade since WWII has proven that most, if not all, current nuclear powers share this understanding.
But there is one type of weapon that is possibly even more dangerous than a nuclear bomb: cyberspace. On the first day of this year’s annual Herzliya Conference, former head of the Mossad and current president of the innovative cyber-security startup XM Cyber Tamir Pardo explained that a cyber attacks targeting civilian nuclear reactors can cause Chernobyl-style meltdowns without expending a single shot or dollar. In addition, because cyber attacks leave no easily traceable “fingerprints,” the time it would take to react to such attacks may be far too long. One may point to the 2007 alleged Russian cyber attacks on Estonia, or the North Korea-linked ransomware attack of 2017 to illustrate this difficulty; in both cases, the states affected by these attacks offered only rhetorical retaliation, while the damages ended up running into the billions of dollars.
A cyber attack on a nuclear facility – military or civilian – would cost not only billions of dollars but also potentially millions of lives, and unlike nuclear weapons, anyone can mount such an attack. All they need is a computer and the right know-how. It is for this reason that cyber security and counter-terrorism expert Dr. Gil-Ad Ariely, echoing the words of Thomas A. Stewart, asserts that knowledge is a “thermonuclear weapon for terrorists in the information age.” In a later work, Ariely continues: “Cyberspace is habitat [sic] for knowledge and information, and terrorists are knowledge-workers proficient in it.” I would venture further to say that cyberspace is itself a weapon of mass destruction (WMDs) – if used as such. So WMDs are already in the hands of everyone, terrorists included.
The thought of an aggressive state or a terrorist organization effecting a nuclear meltdown without firing a single shot or leaving more than a small trace of their activities is far more worrying than the prospect of spreading nuclear proliferation. Pardo noted in his talk that while a nuclear weapon can cause massive destruction, a cyber attack can bring down “an entire society.”
Anyway, back to Iran. With or without the JCPOA, a nuclear Iran seems a feasible reality of the near future. But there is still much we can do to discourage Iran, aside from sanctions and military strikes. Those who wish to disincentivize Iran, and any other proliferators for that matter, should invest heavily in cyber. Strong cyber capability that can shut down nuclear facilities is the ultimate deterrent to anyone seeking a nuclear weapon. The successful development of such cyber capabilities would, in fact, make nuclear sites a general vulnerability, reversing the deterrent factor of nuclear power that would-be nuclear states arguably seek most.
The US should be the leader in this push away from nuclear and toward cyber. Israel, in line with its rebranding as “cyber nation” and opposition to Iranian proliferation, should take an active role as well. Rapid development of cyber capabilities would either be sufficient to stop Iranian proliferation or make a nuclear- armed Iran a non-issue.
At the same time, we must beware that in the quest to render nuclear weapons a thing of the past by superseding them with cyber capabilities, we are creating a monster more menacing than the nuclear bomb. That is where the burgeoning field of cyber security comes in, and it is entities like Pardo’s XM Cyber that will ensure this monster does not go out of control.The author is currently studying for a BA in Israel at IDC Herzliya and is a research assistant at the Institute for National Security Studies (INSS) and International Institute for Counter-Terrorism (ICT).