Feeds

Task force aims to improve US cybersecurity

'This is not a tech focus; it is a Washington focus'

Choosing a cloud hosting partner with confidence

A blue-ribbon panel of three dozen security experts hopes to craft a strategy to improve the United States' cybersecurity by the time the next president takes office, the Center for Strategic and International Studies (CSIS), and the task force's Congressional sponsors, announced on Tuesday.

The bipartisan Commission on Cyber Security for the 44th Presidency will be tasked with creating a plan to secure the nation's computers and critical infrastructure and presenting that plan to the next president. The task force is headed by Representatives Jim Langevin (D-RI) and Michael McCaul (R-TX), Microsoft's vice president for Trustworthy Computing Scott Charney and retired Navy admiral Bobby Inman.

The commission will have at least four major meetings over the next year to hash out an agenda, investigate the issues and make recommendations, James Lewis, senior fellow at the Center for Strategic and International Studies (CSIS), which is funding the commission.

"This is not a tech focus; it is a Washington focus," Lewis said. "You always have an opportunity, when a new administration comes in, to do some quick fixes and that is what we are trying to do with this commission."

Cybersecurity has not been a major priority for past administrations. In 1998, President Clinton signed Presidential Decision Directive No. 63, which required agencies to take steps to protect eight critical infrastructures.

In 2000, the Clinton Administration unveiled its National Plan to Protect Critical Infrastructure, but failed to fund critical programs to push federal agencies to secure their systems.

While many of those agencies have slowly improved their security compliance scores under the Federal Information System Management Act (FISMA) of 2002, the Bush Administration has also largely failed to create strong recommendations or requirements to improve cybersecurity.

This year, the House Subcommittee on Emerging Threats, Cyber Security and Science and Technology has taken an increasing interest in federal agencies' failure to protect themselves against online attacks.

The Department of State acknowledged in June 2006 that attackers had installed remote access software on systems in the agency and abroad, stolen passwords and targeted information on China and North Korea. In October 2006, the Department of Commerce took hundreds of computers offline following a series of attacks aimed at federal employees' computer accounts by online thieves that appear to be based in China.

"I believe the government, across all levels, is too complacent when it comes to protecting their digital assets and this needs to change,” commission co-chair Rep. Langevin, who also heads the Homeland Security Subcommittee on Emerging Threats, Cyber Security and Science and Technology, said in a statement.

Beginner's guide to SSL certificates

More from The Register

next story
Russian hackers exploit 'Sandworm' bug 'to spy on NATO, EU PCs'
Fix imminent from Microsoft for Vista, Server 2008, other stuff
Microsoft pulls another dodgy patch
Redmond makes a hash of hashing add-on
FYI: OS X Yosemite's Spotlight tells Apple EVERYTHING you're looking for
It's on by default – didn't you read the small print?
'LulzSec leader Aush0k' found to be naughty boy not worthy of jail
15 months home detention leaves egg on feds' faces as they grab for more power
Forget passwords, let's use SELFIES, says Obama's cyber tsar
Michael Daniel wants to kill passwords dead
FBI boss: We don't want a backdoor, we want the front door to phones
Claims it's what the Founding Fathers would have wanted – catching killers and pedos
Kill off SSL 3.0 NOW: HTTPS savaged by vicious POODLE
Pull it out ASAP, it is SWISS CHEESE
prev story

Whitepapers

Forging a new future with identity relationship management
Learn about ForgeRock's next generation IRM platform and how it is designed to empower CEOS's and enterprises to engage with consumers.
Cloud and hybrid-cloud data protection for VMware
Learn how quick and easy it is to configure backups and perform restores for VMware environments.
Three 1TB solid state scorchers up for grabs
Big SSDs can be expensive but think big and think free because you could be the lucky winner of one of three 1TB Samsung SSD 840 EVO drives that we’re giving away worth over £300 apiece.
Reg Reader Research: SaaS based Email and Office Productivity Tools
Read this Reg reader report which provides advice and guidance for SMBs towards the use of SaaS based email and Office productivity tools.
Security for virtualized datacentres
Legacy security solutions are inefficient due to the architectural differences between physical and virtual environments.