Hathaway: cybersecurity must be joint effort
President Obama’s top cybersecurity adviser: The fragility of the world’s digital infrastructure is “one of the most serious economic and national security challenges of the 21st century”
Melissa Hathaway, the top cybersecurity adviser to President Barack Obama, in her first public appearance since completing a still-secret 60-day study on the U.S. computer security, said yesterday that the challenge of protecting the U.S. government’s computer networks is too big for any one agency to handle alone. Some read her words to mean the administration does not intend to consolidate control of U.S. cybersecurity under a single department like the National Security Agency (NSA), as some have feared.
Brian Krebs writes in the Washington Post that the comments were light on details but offered hints on how the administration plans to address the turf wars and confusion surrounding the country’s patchwork cybersecurity policies. Hathaway did not offer any specifics about her findings or proposals in her talk at the RSA security conference in San Francisco. She said those will be released in the “coming days” after the administration reviews her report.
The fragility of the world’s digital infrastructure is “one of the most serious economic and national security challenges of the 21st century,” Hathaway said, and the responsibility for locking down networks in the United States “transcends the jurisdictional purview of individual departments and agencies.”
“Although each agency has a unique contribution to make, no single agency has a broad enough perspective to match the sweep of the challenges,” she added.
Hackers, identity thieves, and spies are stepping up their attacks on the U.S. power grids, military networks, and other government networks loaded with sensitive data, as evidenced by the number of break-ins that have come to light in recent months. Meanwhile, the administration has struggled with how to organize the nation’s cyberspace programs.
In March, the head of the nation’s cybersecurity center — Rod Beckstrom — resigned in March, blaming a shortage of money and a clash over whether the NSA should control cyber efforts. Suggestions from intelligence officials that the NSA should coordinate the U.S. overall cybersecurity effort have triggered protests over whether it is appropriate to give such control to spy agencies.
NSA director Keith Alexander, also speaking at the security conference, said the NSA wants to be inclusive. “We do not want to run cyber security for the U.S. government,” he said. “That’s a big job. It’s going to take a team to do it.”
