Feeds

Lawmakers voice concerns over cybersecurity plan

Too little too late?

Intelligent flash storage arrays

The latest effort by the Bush Administration is the so-called "Cyber Initiative" - a plan to minimize the number of trusted internet connections, or TICs, and improve EINSTEIN's monitoring on those connection to prevent attacks in real time. The Bush Administration has budgeted $30bn over the next five to seven years for the programme, according to statements by Committee members. The 2009 budget has requested $294m for US-CERT to hire more analysts and fund the additional deployment of the system.

During Thursday's hearing, officials from the Office of Management and Budget and the Department of Homeland Security answered the Committee's questions on the non-classified components of the initiative.

As part of the Cyber Initiative, a major effort is under way to reduce the number of interconnections between federal agencies and the public Internet. Currently, more than 4,000 trusted internet connections (TICs) link the federal government to the internet, according to Robert Jamison, Under Secretary for the DHS's National Protection and Programs Directorate. Under the Cyber Initiative, that will be reduced to 50.

The DHS and the Office of Management and Budget (OMB) share responsibility for consolidating the network connections, said Karen Evans, the administrator for OMB's Electronic Government and Information Technology division. The initiative applies to all connections, no matter the agency, she said.

"Any external connection to an entity causes a risk," Evans said. "All agencies have to report to the OMB all external connections, and that means all of them."

Agencies already have submitted plans to reduce the number of access points to Evans' office. The initial deadline for complying with the OMB's mandate is June 2008.

The second part of the Cyber Initiative calls for improvement to the EINSTEIN intrusion detection system and the deployment of the system to monitor all 50 internet access points. Currently, EINSTEIN conducts flow analysis - tracking the source, destination, port and size of packets on the networks of 15 federal agencies.

"We only monitor a very small percentage of federal network traffic," Jamison told the committee members. "We want, through this initiative, to increase that to 100 per cent of all federal network traffic."

The information is analyzed on a daily basis, and so cannot detect threats in real time, DHS's Jamison said. The system would be enhanced to do more real-time analysis, he said.

"We are currently not looking at any content. We are proposing that we are going to do that. The threats are real. Our adversaries are really adept at hiding their attacks in normal everyday traffic. The only way to really protect your networks is to have intrusion detection capabilities."

Internet Security Threat Report 2014

More from The Register

next story
Facebook, Apple: LADIES! Why not FREEZE your EGGS? It's on the company!
No biological clockwatching when you work in Silicon Valley
Doctor Who's Flatline: Cool monsters, yes, but utterly limp subplots
We know what the Doctor does, stop going on about it already
'Cowardly, venomous trolls' threatened with TWO-YEAR sentences for menacing posts
UK government: 'Taking a stand against a baying cyber-mob'
Happiness economics is bollocks. Oh, UK.gov just adopted it? Er ...
Opportunity doesn't knock; it costs us instead
Arab States make play for greater government control of the internet
Nerds told to get lost in last-minute power grab bid at UN meeting
Zippy one-liners, broken promises: Doctor Who on the Orient Express
Series finally hits stride, but Clara's U-turn is baffling
Don't bother telling people if you lose their data, say Euro bods
You read that right – with the proviso that it's encrypted
Apple SILENCES Bose, YANKS headphones from stores
The, er, Beats go on after noise-cancelling spat
prev story

Whitepapers

Forging a new future with identity relationship management
Learn about ForgeRock's next generation IRM platform and how it is designed to empower CEOS's and enterprises to engage with consumers.
Why cloud backup?
Combining the latest advancements in disk-based backup with secure, integrated, cloud technologies offer organizations fast and assured recovery of their critical enterprise data.
Win a year’s supply of chocolate
There is no techie angle to this competition so we're not going to pretend there is, but everyone loves chocolate so who cares.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?
Intelligent flash storage arrays
Tegile Intelligent Storage Arrays with IntelliFlash helps IT boost storage utilization and effciency while delivering unmatched storage savings and performance.