Why it's So Difficult to Trace Cyber-Attacks
I’ve been asked this question by countless reporters in the past couple of weeks. Here’s a good explanation. Shorter answer: it’s easy to spoof source destination, and it’s easy to hijack unsuspecting middlemen and use them as proxies.
No, mandating attribution won’t solve the problem. Any Internet design will necessarily include anonymity.
GreenSquirrel • June 13, 2011 7:21 AM
I think that matters arent helped by people screaming out for punishments when ever anything goes wrong (or even a near miss).
Despite the rise of a “no blame” culture in various workplaces, it strikes me that as soon as ANYTHING goes wrong (internet or IRL), the first thing the public scream for is someone (or thing) to blame. Politicians are never going to ignore this (who wants to look “soft on crime” even when its the right policy and it isnt soft), so we will always have a public need to be able to track down who did what.
With ever hack, one of the first thing that people want to know is where did it come from – they dont want to hear that the Chinese IP it appears to come from could be spoofed, they want to hear the drone of rockets being launched at Beijing.