oscar: red teaming
DESCRIPTION
What is ‘red teaming’? Red teaming has been defined as “the independent application of a range of structured, creative and critical thinking techniques to assist the end user make a better informed decision or produce a more robust product” (Ministry of Defence, 2013). By subjecting plans and ideas to rigorous challenge and analysis, they can be thoroughly assessed, and vulnerabilities and flaws can be identified. Thus, by using the red teaming technique, there is a more robust baseline for decision-making.TRANSCRIPT
Red teaming has been defined as “the independent application of a range of structured, creative and critical thinking techniques to assist the end user make a better informed decision or produce a more robust product” (Ministry of Defence, 2013). By subjecting plans and ideas to rigorous challenge and analysis, they can be thoroughly assessed, and vulnerabilities and flaws can be identified. Thus, by using the red teaming technique, there is a more robust baseline for decision-making.
Sunstein (2015) argues that red teams are formed to test proposals, plans and missions both at the level of concept and practice, by system-atically and deliberately identifying potential vulnerabilities and weak-points.
60secondb r i e f i n g p a p e r
H O W I S R E D T E A M I N G D O N E ?R e d Te a m i n g : A D y n a m i c M e t h o d o l o g y f o r C h a l l e n g i n g , C r i t i q u i n g & P o s i n g C o u n t e r f a c t u a l s
The US Defence Science Board (2003) identifies several different styles of red teaming. These include: “playing” adversaries/competitors; serving as devil’s advocates; offering alternative interpretations; and generally challenging established thinking within an enterprise. The evidence is that red teaming is difficult to perform effectively. The MoD (2013) make recom-mendations on how best to go about this:
The ‘end user’ should: identify the specific task they want to undertake; identify an appropriate team (a combination of subject matter experts, creative and critical thinkers, analysts, cultural advisors and role players); and task and empow-er the team leader so that he/she can run the team effectively. The end user should be recep-tive to criticism, provide good information and guidelines, and have a good working relationship with the red team leader.
The ‘red team leader’ is identified as the most important role in successful red teaming, and should: build a constructive relationship with the end user; build an appropriate team; ensure that the team receive all useful information; choose the tools and techniques to be used; organise, manage and help the team in generating and producing quality findings to feed back to the end user.
The red team should: be tailored appropriately for the project; be formed of a range of individu-als; and be of appropriate size. It should be noted here that the optimum team size is considered to be between five and nine people. The team should possess: analytical, creative and communication skills; the ability to ask questions of, and challenge traditional thinking, as well as self-awareness.
W H O U S E S I T ?
T H E C H A L L E N G E S O F R E D T E A M I N G
O S C A RC a r d i f f U n i v e r s i t y1 - 3 M u s e u m P l a c eC a r d i f fC F 1 0 3 B D
t : + 4 4 ( 0 ) 2 9 2 0 8 7 5 4 4 0e : o s c a r @ c a r d i f f . a c . u kw w w . u p s i . o r g . u k / o s c a r
Red teaming has been used in many different contexts. Large technology companies such as Apple and Microsoft use red teaming to hack their own software and identify areas needing improvement. Law firms also use a red team equivalent to ‘pre-try’ cases and test arguments by employing different firms to present a case against them (Sunstein, 2015).
Red teaming is most often associated with military/government action. A red team was used in the planning process of the raid on the compound thought to contain Osama Bin Laden, assessing the likelihood that he was actually inside the compound (The Telegraph, 2011). There is no set way of designing red teams, however the range of organisations and governments using them demonstrates the value they have for improving decision-making processes.
Ministry of Defence (2013) Red Teaming Guide. London: Ministry of Defence.Defense Science Board (2003) The role and status of DoD red teaming activities. Washington: Office of the Secretary of Defense. Sunstein, C. (2015) Cass Sunstein on Red Teaming.
Although successful red teaming is entirely possi-ble, it is also important to acknowledge the chal-lenges and when it does not necessarily work:
Red teams cannot always predict all possible means of attack (Meehan, 2007).Meehan argues that red teams tend to work off available knowledge and past experienc-es/events, and so are unable to predict surpris-es. Further to this, the US Defence Science Board (2003) point out some potential causes of difficulty, including issues like a failure to take the assignment seriously, marginalisation from the decision-process, and a loss of independence if “captured” by the end user (2003).
Longbine’s (2008) discussion of Operation IRAQI FREEDOM details failures to anticipate and prevent the conflicts and terrorism that arose out of the collapse of Saddam Hussein’s regime because those in charge of operations contin-ued to be preoccupied with, and mistakenly maintained their pre-war analysis and plan for the situation in Iraq, despite noticeable changes and criticisms from soldiers on the ground. Longbine attributes this failure to poor “self red-teaming”, which should have been done by an independent red team, again stressing the importance of method when using the tech-nique.
F U R T H E R R E A D I N G
1.
2.
3.