Australians’ reliance on digital services in spotlight after port, phone network, bank disruptions

Australians’ reliance on digital services in spotlight after port, phone network, bank disruptions


First, Optus’ mobile network goes down for 14 hours in a nationwide outage.

Days later, DP World is hacked and its port operations grind to a halt for days, leaving shipping containers piling up.

Weeks after that, Westpac customers were left unable to view or access their online accounts for 9 hours after a botched software update.

These outages at major Australian infrastructure and service providers — all occurring in the past month — at best inconvenienced millions and at worst created life-threatening situations, with some Optus customers reporting being unable to dial triple-0.

It was enough to bring Australians’ reliance on digital services into focus.

A Senate inquiry into the Optus outage is asking how, as a society, we can ensure reliable access to essential services.

But, why are we having these outages in the first place? Is it just the cost of living in the digital era?

Systems will go down

“We’ve generally done telecommunications so well that we as a society have come to expect that you can walk into any shop and pay with your phone,” Narelle Clark, CEO of the Internet Association of Australia, says.

“In reality, these things can and do go down periodically.”

There’s no silver bullet — in a hyper-connected world, services we rely on will occasionally fail.

How we deal with that reality, she says, comes down to a “cost equation and a risk equation”.

A portrait of an older woman wearing glasses and a pink top.

Narelle Clark is the CEO of the Internet Association of Australia.(Supplied: Narelle Clark)

“We will incur higher costs to deliver services at that level of reliability, if indeed that’s what we really truly want as a society.”

This poses difficult questions about what we can’t live without, and who is responsible for making sure the infrastructure needed to deliver it is up to the task.

We have an act for that

For the most critical infrastructure, such as supply chains and communication networks, the government has a role to play in its resilience.

It legislated the Security of Critical Infrastructure Act (SOCI) to facilitate this.

The SOCI Act enables the government to undertake risk assessments of critical infrastructure, and issue directions to operators to address national security risks.

An electricity tower, as seen from below, rises into a blue sky.

Critical infrastructure includes “physical facilities, supply chains, information technologies and communication networks”.(Pexels.com)

However, in 2021, the federal auditor-general found the Home Affairs Department’s management of the program wanting.

“[Home Affairs] does not have an established system to monitor existing critical infrastructure related compliance activity,” it wrote.

“Department records identify that compliance activities for only one category [of five] were finalised. The process was not completed for all assets.”

A case study in the report found that Home Affairs had failed to follow up with telecommunications carriers that had not engaged with the department.

This was said to be “due to resourcing constraints and other high priority tasks at the time”.

These criticisms are echoed by Narelle Clark. She is the CEO of the Internet Association of Australia, which operates internet exchanges that fall under the SOCI Act.

“Our concern with SOCI is that it imposes a whole lot of regulatory burden for very little payback,” she says.

“We’ve got a massive pile of paperwork to do that in reality distracts us from the actual work of securing our systems and infrastructure.”

Following the Optus and Medibank cyber attacks in 2022, Minister for Cyber Security Clare O’Neill flagged reforms to the SOCI Act to increase the government’s ability to intervene during cyber attacks.



Source link