Security

National Cyber Security Centre to shift UK to 'active' defence

Cyber chief calls for 'offensive' weapons

By John Leyden

53 SHARE

The head of the UK’s new National Cyber Security Centre (NCSC) has detailed plans to move the UK to "active cyber-defence", to better protect government networks and improve the UK’s overall security.

The strategy update by NCSC chief exec Ciaran Martin comes just weeks before the new centre is due to open next month and days after the publication of a damning report by the National Audit Office into the UK government’s current approach to digital security.

Martin called for the "development of lawful and carefully governed offensive cyber capabilities to combat and deter the most aggressive threats".

Active cyber defence means hacking back against attackers to disrupt assaults, in US parlance at least. Martin defined the approach more narrowly as "where the government takes specific action with industry to address large-scale, non-sophisticated attacks".

During his speech at the Billington Cyber Security Summit in Washington DC, NCSC's Martin also floated the idea of sharing government network security tools such as DNS filters with private-sector ISPs, as previously reported.

Security vendors praised the UK government's more pro-active approach to cybersecurity, arguing it’s (if anything) overdue.

“The Government is right to look for innovative ways to disrupt organised cybercrime,” said Paul Taylor, partner and UK Head of cyber security at management consultants KPMG. “It’s crucial that we stay one step ahead of attackers and that takes constant innovation and coordination. No one is immune from cyber-attacks but UK small businesses are especially vulnerable as the reality is that many struggle to deal with an onslaught of ransomware and cyber enabled frauds.”

Taylor also backed the greater sharing of information security intelligence, a key plank in the NCSC’s policy that’s viewed with suspicion by privacy advocates*.

“A new partnership between Government and industry is needed to protect our society, take the offensive against criminals, and work together to disrupt digital crime,” Taylor explained. “At the moment many companies are reluctant to share information on attacks they’ve suffered, we need to build a safe space for Government and industry to share intelligence so that we have the best chance of tackling cybercrime.”

Matt Walker, VP Northern Europe, HEAT Software, noted that stronger defences were needed as government services such as universal credit become available online.

“The protection of citizens’ information from the threat of cyber-attack needs to become a higher priority for central and local government as we continue to move more and more interaction online,” Walker said. “The universal credit system alone will pay out seven per cent of UK GDP– making it a target for online fraud. Equally, the ransomware attack that locked Lincolnshire County Council out of its own systems for days had repercussions for mission-critical services such as health and social care.”

The NCSC will act as a hub for sharing best practices in security between public and private sectors as well as taking a lead role in national cyber incident response. The organisation will report to GCHQ, the signals intelligence agency.

Bootnote

*The US's Cybersecurity Information Sharing Act was bitterly but ultimately unsuccessfully opposed by privacy activists.

Sign up to our NewsletterGet IT in your inbox daily

53 Comments

More from The Register

GCHQ asks tech firms to pretty please make IoT devices secure

Hive, HP Inc sign up to refreshed code of practice

IoT shouters Chirp get themselves added to Microsoft Azure IoT

Now your devices can join you in bellowing at Redmond's products

'Cyber kangaroo' ratings for IoT security? Jump to it, says Australia's cyber security minister

Proposed labelling scheme will try to match similar efforts in UK, USA

The wheel turns slowly, but it turns: Feds emit IoT security tip sheet

Alexa! Are you part of a botnet?

Fending off cyber attacks as important as combatting terrorism, says new GCHQ chief

Director Jeremy Fleming sets out priorities for intel agency

UK's National Cyber Security Centre gives itself big ol' pat on the back in annual review

Nixing 139k phishing sites is pretty good going to be fair

UK cyber security boffins dispense Ubuntu 18.04 wisdom

GCHQ: Yeah, but maybe don't make it too secure, ok?

Enterprise IoT security sucks so much, it's made Intel and Arm work together to tackle it

Chip rivals lock lips to make customers happy

Security execs must prep for post-Brexit cyber challenges – report

Time to start planning now, people!

Security MadLibs: Your IoT electrical outlet can now pwn your smart TV

McAfee finds new way to break thing that shouldn't be on your home network in the first place