FBI Director Robert Mueller wants companies to share information with authorities after they have been victimized by cyber criminals.
In a recent speech at a cybersecurity conference in New York sponsored by the FBI and Fordham University, Mueller said bureau officials would do their best to minimize disruption to businesses that share such information and would in turn share the bureau's information about the means and methods of attack as quickly as possible.
“We do not want you to feel victimized a second time by an investigation,” he said Aug. 5, according to a copy of the speech released by the FBI.
The government wants industry to share more information about cyberattacks because most of the country’s critical infrastructure is in private hands. Meanwhile, some industry officials say the government needs to share more data with companies, and they worry that the data they share with the government could become public and hurt business.
Posted on Aug 09, 2010 at 7:22 PM2 comments
The 2010 Intelligence Authorization Act, which the Senate passed today, includes a provision that would increase oversight for intelligence-related multiagency cybersecurity programs that involve the use of personally identifiable information.
Section 337 of the bill (S. 3611) “sets forth a preliminary framework for executive and congressional oversight to ensure that the government’s national cybersecurity mission is consistent with legal authorities and preserves reasonable expectations of privacy,” according to a report from Senate Select Intelligence Committee that cleared the bill last month. The legislation that the Senate cleared today included one amendment, but it didn’t alter the focus of the bill’s cybersecurity provisions.
The report said the definition of cybersecurity programs in the section “intentionally excludes firewalls, anti-virus programs and other routine programs.” It also excludes individual cyber operations or cyber information-sharing conducted in a non-programmatic fashion, such as the sharing of a piece of information for a particular investigation.
Posted on Aug 05, 2010 at 7:22 PM0 comments
The Obama administration is working on an update to a classified presidential directive signed during the George W. Bush administration that guides the government’s overall cybersecurity efforts.
The White House’s National Security Staff is developing the update to the directive that established the Comprehensive National Cybersecurity Initiative (CNCI), according to a document released July 14. The resulting changes to the government’s national strategy will incorporate aspects of the President Barack Obama’s Comprehensive Cyberspace Policy Review, released in May 2009, the document said.
The administration described plans to update the directive in a document it released to highlight progress it said has been made since the release of that review during a speech by Obama on cybersecurity. The Obama administration released an unclassified outline of the CNCI earlier this year. The actual Bush-era directive remains a government secret.
Posted on Jul 15, 2010 at 7:22 PM0 comments