Feeds

Obama signs off on secret national cybersecurity plan

Meanwhile, Congress sits on its hands

Build a business case: developing custom apps

President Obama has signed off on Presidential Policy Directive 20, a cybersecurity plan that seeks to establish the rules of engagement for defending the US critical infrastructure against online attack.

"What it does, really for the first time, is it explicitly talks about how we will use cyber operations," a senior administration official who has seen the classified report told the Washington Post.

"Network defense is what you're doing inside your own networks. ... Cyber operations is stuff outside that space, and recognizing that you could be doing that for what might be called defensive purposes."

The new directive is the first time the official US position on cyber threats has been revised since 2004, and sets out the terms by which the military can operate on civilian networks in order to fight off online attacks. It's intended to stop infighting among different government departments in the event of an attack.

The Pentagon has already declared the online world as one where it must have both and offensive and defensive capability, and this new directive gives clear guidance as to what is permissible.

Of course, this directive may never be used if the national critical infrastructure is protected already. But that's unlikely to happen, thanks to the ongoing logjam in the US Congress, as neither political party is showing any signs of being able to solve the issue to each other's satisfaction.

In August, the proposed US Cybersecurity Act 2012, which requires mandatory security standards for those government departments and private networks that make up the US critical infrastructure, was shot down by Republicans in the Senate.

The legislation was up before the Senate again on Wednesday, but only got 51 votes to 47, allowing the Republicans once again to enforce the filibuster rule and kill the legislation. The move makes it more likely that President Obama will have to issue a decree on the issue to enforce some common security standards.

"It's imperative that Democrats and Republicans work together to address what national security experts have called 'the most serious challenge to our national security since the onset of the nuclear age sixty years ago'," said Senate majority leader Harry Reid in a statement. ®

Boost IT visibility and business value

More from The Register

next story
The police are WRONG: Watching YouTube videos is NOT illegal
And our man Corfield is pretty bloody cross about it
China hopes home-grown OS will oust Microsoft
Doesn't much like Apple or Google, either
Super Cali signs a kill-switch, campaigners say it's atrocious
Remote-death button bad news for crooks, protesters – and great news for hackers?
UK government accused of hiding TRUTH about Universal Credit fiasco
'Reset rating keeps secrets on one-dole-to-rule-them-all plan', say MPs
Fast And Furious 6 cammer thrown in slammer for nearly three years
Man jailed for dodgy cinema recording of Hollywood movie
Caught red-handed: UK cops, PCSOs, specials behaving badly… on social media
No Mr Fuzz, don't ask a crime victim to be your pal on Facebook
e-Borders fiasco: Brits stung for £224m after US IT giant sues UK govt
Defeat to Raytheon branded 'catastrophic result'
Don't even THINK about copyright violation, says Indian state
Pre-emptive arrest for pirates in Karnataka
prev story

Whitepapers

Implementing global e-invoicing with guaranteed legal certainty
Explaining the role local tax compliance plays in successful supply chain management and e-business and how leading global brands are addressing this.
Endpoint data privacy in the cloud is easier than you think
Innovations in encryption and storage resolve issues of data privacy and key requirements for companies to look for in a solution.
Scale data protection with your virtual environment
To scale at the rate of virtualization growth, data protection solutions need to adopt new capabilities and simplify current features.
Boost IT visibility and business value
How building a great service catalog relieves pressure points and demonstrates the value of IT service management.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?