Congress to address important cybersecurity initiatives
Congress is setting to tackle important cybersecurity-related issues — including the confirmation hearing on Army Lt. Gen. Keith Alexander to be military cyber commander, markup sessions on bills to fund cybersecurity research and development, and realign the National Institute of Standards and Technology’s (NIST) laboratories
Congress, back from spring break, is not wasting time tackling some key cybersecurity and IT security-related initiatives. Eric Chabrow writes in GovInfoSecurity that in the next few weeks, congressional committees will hold sessions to tackle some of the hottest information security-related items, including the confirmation hearing on Army Lt. Gen. Keith Alexander to be military cyber commander, markup sessions on bills to fund cybersecurity research and development, and realign the National Institute of Standards and Technology’s (NIST) laboratories and a hearing on combating cyber crime and identity theft.
Alexander confirmation hearing
Thursday’s Senate Armed Services Committee confirmation hearing comes nearly ten months after Alexander was nominated by President Obama to be the first military cyber commander. If confirmed, he would retain his current job, director of the National Security Agency (NSA), and be promoted to full general. No one is suggesting that Alexander will not be confirmed, but concerns have been raised that having the same officer overseeing the cyber command and NSA poses potential conflicts: Should the top spy also be the general in charge of protecting the computer systems and networks employed to support the nation’s warfighters?
Chabrow notes that it has been questions about that dual role that has delayed the confirmation process. As GovInfoSecurity reported last month, the committee sent a questionnaire to Alexander on 6 March seeking answers about how he would balance the two jobs. Though the NSA is a DoD agency, it works with civilian agencies to secure federal IT, raising additional concerns about potential military involvement in civilian matters. “They are working through some of the hard problems and that is what the reason for the delay is,” James Lewis, senior fellow at the Center for International and Strategic Studies (CSIS) and expert on government and military cybersecurity policy, told GovInfoSecurity.com.
Cybersecurity R&D funding
Also on Thursday, the House Homeland Security Committee will markup an appropriations bill for the DHS’s Science and Technology Directorate (S&T) that includes more than $150 million in funding for cybersecurity research and development.
The bill, H.R. 4842, would appropriate $75 million in each of the next two fiscal years to fund research and development projects to improve the U.S. ability to prevent, protect, detect, respond to, and recover from cyber acts, focusing on large-scale, high-impact attacks. Among the R&D work to be funded:
- More secure versions of fundamental Internet protocols and architectures, including domain name systems and routing protocols
- Technologies to detect attacks
