U.S.: Cyberattacks: Too Much How, Not Enough Why - UNPAN - United Nations Public Administration Network - Public Administration News

Home > United Nations Online Network in Public Administration and Finance (UNPAN)

1. Global: Global
2. Africa: Africa
3. Arab States: Arab States
4. Asia & Pacific: Asia & Pacific
5. Europe: Europe
6. Latin America & Caribbean: Latin America & Caribbean
7. North America: North America

UNPAN North America

Register | Login


Home About UNPAN UNPAN Coordinator (DPADM) UNPAN Partners UNPAN Newsletter UNPAN User's Survey UNPAN CMS UNPAN Portal Guide FAQs DPADM Intranet My UNPAN RSS feeds Contact Us Regions Global Africa Arab States Asia & Pacific Europe Latin America & Caribbean North America Standards/Codes International Code of Conduct Regional Public Service Charter National Codes of Conducts Standard of Excellence in PA Education&Training; Ethics, Transparency and Accountability E-Learning Online Training Centre Featured Learning Materials Learning Materials News Public Administration News Governance World Watch Governance Asia-Pacific Watch RCOCI Informatization Bulletin Library Search Documents Advanced Search Major Publications UN E-Government Surveys World Public Sector Report Digital Governance in Municipalities Worldwide DPADM E-Library Resolutions UN E-Government Development Database Knowledge Base of E-Government Practices Knowledge Base of ICT for Public Service Knowledge Base of UN Public Service Awards Thematic Project Websites Technical Project Highlights UNPAN Photos UNPAN Videos Events The Committee of Experts on Public Administration DPADM Monthly Bulletin UN Public Service Day UN Public Service Awards Browse Events by Calendar Browse Events by UNPAN Partner Global Forum Directories Practitioners/Experts Glossary Employment Opportunities Blog Contact Us

Public Administration News

U.S.: Cyberattacks: Too Much How, Not Enough Why

Source:	fcw.com
Source Date:	Monday, March 31, 2014
Focus:	ICT for MDGs
Country:	United States
Created:	Apr 08, 2014

Legislators, executive branch agencies and industry pay too much attention to the mechanics of cyberattacks and not enough to why the attacks occur, according to a report by the Intelligence and National Security Alliance. The nonprofit, public/private INSA's March publication "Strategic Cyber Intelligence" states that national security and intelligence communities need to identify the broader goals and perspective on cyberattacks to properly allocate resources and counter assaults. INSA seeks to recognize and promote standards in the national security and intelligence communities. Its members include current and former high-ranking intelligence, military and government leaders, analysts, and experts from industry and academia. Tactics dominate the discussion of cybersecurity, the reports states. The tactical focus is apparent in the Cyber Intelligence Sharing and Protection Act, which defines cyber intelligence as "information in the possession of an element of the intelligence community directly pertaining to a vulnerability of, or threat to, a system or network of a government or private entity including information pertaining to the protection of a network or system." The focus on "system" and "network" instead of an organization's intellectual property, trade secrets, sensitive operations, and other competitive and mission-oriented data misses the larger point, according to INSA. A broader strategic vision that looks for reasons why an attack is occurring and what the attackers are after can lead to better tactical, on-the-ground defenses. "Many organizations do not consider themselves to be attractive targets for a cyber incident until after the threat occurs," the paper states. INSA officials said they hope to help C-suite executives, top managers and other senior-level leaders interpret and understand the full context of cyber threats, including the bond between strategic cyber intelligence and risk management. They also want a more thorough consideration of the role of strategic cyber intelligence analysis based on the National Institute of Standards and Technology's risk assessment methods. Among other vulnerability exercises, INSA recommends "red teaming" to understand possible attackers' motives, goals and potential targets. Vulnerability assessments that follow NIST's recommendations are also essential to any risk management plan, the report states. (By Mark Rockwell)

Rate:

0 ratings

Views:

22

Comments:

0

Bookmarked:

0

Tagged:

0

0 Comments | Login to add comment

| | |

Copyright 2008-2010 by UNPAN - United Nations Public Administration Network