[ad_1]
America’s top cyber official is proposing to overhaul the government’s relationship with industry to stop hackers who can hold critical infrastructure hostage.
National Cyber Director John C. Inglis’ vision for the “Cyber Social Contract” includes new government standards, close collaboration with businesses, and new government bureaucracies modeled on those who run other industries.
Mr. The English outlined her aspirations in an article co-authored with her Harry Krejsa, strategy adviser for foreign affairs, said “market forces alone are insufficient” to provide the necessary cybersecurity for government and key industries dealing with things like fuel flow.
The US needs a new social contract for the digital age – one that meaningfully changes the relationship between the public and private sectors and proposes a new set of obligations for each. The English and Mr. Krejsa wrote in his article published on Monday.
Cyber officials said such changes would follow changes that led to changes in the Food and Drug Administration, the Pure Food and Drugs Act of 1906, the formation of the Environmental Protection Agency, the Clean Air Act of 1963, and its oversight. The aviation industry by the Federal Aviation Administration in the 1990s.
The Biden administration has already begun forming new government boards and cyber industry partnerships. The Cybersecurity and Infrastructure Security Agency took a leading role last year in the government’s creation of a Joint Cyber Defense Collaboration that enables tech companies to work with law enforcement and the national security community to combat cyber-attackers.
Mr. The English and Mr. Krejsa wrote that President Biden’s new “Cyber Security Review Board” is modeled after the National Transportation Safety Board, which investigates accidents in the transportation sector and makes recommendations on how the government and private sector should change.
The Biden administration commissioned the Cybersecurity Review Board to review a hack of the open-source logging platform Apache Log4J and is seeking a report with recommendations this summer.
Cyber officials said that to promote the professional and operational closeness that the Biden administration seeks, the government is “lightening the contractual barriers” that previously prevented non-government people from sharing threat information with the government.
“Translating this level of mobilization into systemic change across the private sector will be a more difficult proposition,” cyber officials wrote. “Doing so will require an unprecedented level of collaboration between government and industry.”
The unprecedented level of collaboration represents part of the US response to halt future software supply chain hacks following the breach of SolarWinds computer network management software that put nine federal agencies at risk. The US government linked the SolarWinds debacle to Russian hackers.
A new American approach to cooperation with the private sector is also distinctly different from China’s military-civilian cohesion policies, which mandate cooperation with academic and institutional institutions.
under mr The English and Mr. Krejsa’s vision is that the private sector should prioritize security and flexibility in software development and hardware production, and the government will seek ways to facilitate this transition, including “setting standards, promoting norms and providing information”.
“With a shared and positive vision, the public and private sectors can create a new social contract that facilitates this transition without undermining the cohesion and vitality necessary for an innovative economy,” the cyber officials said. “By identifying the digital future the United States wants to create and the social contract that can sustain it, Americans can strengthen their resilience and create rewards for good behavior and costs for bad behavior.”
[ad_2]
Source link