Thursday, 22 March 2012

DOD Develops Cyberspace Rules of Engagement

 The Defense Department is updating its rules of engagement for cyberspace, but its role in this new domain still is evolving, and is complicated by three factors, lawmakers were told during two hearings on the department’s fiscal 2013 cyber operations budget.
The three factors: Much of the information infrastructure making up cyberspace is privately owned and operated, the sources of threats cannot be easily identified, and there is a shortage of cybersecurity talent to use in the nation’s defense.
“If it is an attack, the responsibility falls to the Defense Department” to respond, Gen. Keith Alexander, commander of the U.S. Cyber Command, told the House Armed Services subcommittee on Emerging Threats and Capabilities on March 20.


Describing DOD’s strategies for operating in cyberspace, Creedon said the department maintains more than 15,000 network enclaves and 7 million computing devices in installations around the globe.
“DOD continues to develop effective strategies for ensuring the United States is prepared for all cyber contingencies along the entire spectrum,” she added, “from peace to crisis to war.”
In times of fiscal constraint, Creedon said, DOD also is taking advantage of efficiencies provided by information technology advances.
“The department has been working around the clock, often in close cooperation with the Department of Homeland Security and other agencies,” she said, to protect the nation from cyber threats that include the theft of intellectual property, as well as damage to the defense industrial base, the economy and national security.
The department hit a “significant milestone” last July with the release of its first strategy for operating in cyberspace, Creedon said. The document builds on President Barack Obama’s International Strategy for Cyberspace and the DOD Quadrennial Defense Review, and guides the department’s military, business and intelligence activities in cyberspace in support of national interests, she said.
The DOD works closely with colleagues in the departments of Homeland Security, Justice, State, Treasury, Commerce and other agencies, she added, and pursues bilateral and multilateral engagements to enhance security and develop norms of behavior in cyberspace.
Takai told the panel that DOD’s $37 billion information technology budget request for fiscal year 2013 includes a range of IT investments, including $3.4 billion for cyber security efforts to protect information, information systems and networks against known cyber vulnerabilities.
It also includes $182 million for Cyber Command for cyber network defense, cryptographic systems, communications security, network resiliency, workforce development, and development of cyber security standards and technologies department-wide.
Among efforts to improve effectiveness and efficiency, Takai explained, “is consolidation of the department’s IT infrastructure, networks, computing services, data centers, application and data services, while simultaneously improving the ability to defend that infrastructure against growing cyber threats.”

No comments:

Post a Comment