- MEMBERS RECEIVE ACCESS TO:
- CIO Leadership Group
  CIO Leadership Task Force provides a unique forum for Chief Information Officers from the largest cities and counties in the U.S. to privately interact, both through an online collaboration site and in regular face-to-face meetings. It offers these leaders an on-going opportunity to share information and experiences, and to discussing IT challenges facing larger community jurisdictions.
- Digital Infrastructure
  Task Force
  The Digital Infrastructure Task Force is a collaborative networking group for government IT professionals. Through timely exchange of information and experiences, both online and through regular face to face meetings, municipal and regional government members help each other to make smarter technology decisions for their communities.
- Law Enforcement
  IT Task Force
  The Law Enforcement Task Force is a collaborative networking group for local law enforcement officials from across the nation. In online and regular face to face meetings, both sworn and civilian law enforcement officials come here to discuss technology trends, collaboration and information sharing opportunities within the local law enforcement community.
- Private Events
  and Webinars
- Exclusive White Papers
- JOIN:
- Public Sector
- Private Sector
Digital Communities Home
Introduction
Feature Articles
Local Government Events
Contact
Digital Communities Blogs
Digital Citizen Pulse
Broadband Nation
Web 2.0 Convergence
In the Trenches
International Beat
Notes from a City CIO
Intelligent Communities
MuniGov 2.0
Surveys and Awards
Digital Cities Survey
Digital Counties Survey
DGAA Awards
Best of the Web Awards
Reference and
Resource Library
White Papers
Exclusives
Webinars
Best Practices
Digital Communities
Special Focus
Current Issue
Past Issues
Subscribe

Digital Communities
Industry Members

Click sponsor logos for whitepapers, case studies, and best practices.

Clarity and Execution: The Next Steps in Cyber-Security

June 3, 2004 By Blake Harris

Paul Kurtz is a former special assistant to the president and senior director for critical infrastructure protection on the White House's Homeland Security Council (HSC). He was responsible for developing the White House's strategy for protecting critical physical and cyber assets across the U.S. economy. Before joining the HSC in 2003, Kurtz served on the White House National Security Council (NSC) as senior director for national security in the Office of Cyberspace Security, and was a member of the President's Critical Infrastructure Protection Board, where he developed the National Security and International Cyberspace Security Cooperation section of the President's National Strategy to Secure Cyberspace. Kurtz currently is executive director of the Cyber Security Industry Alliance, a public-policy advocacy group composed of security software, hardware and service vendors addressing key cyber-security issues.

Q: Given your extensive experience dealing with national cyber-security issues, what is your assessment of the current state of cyber-security?

A: A couple of thoughts come to mind. First, I would say the cyber-attacks we are seeing are increasingly sophisticated. They are multipronged. They morph. They spread more quickly. And they are causing significant damage in terms of downtime and having to rebuild systems, and in terms of the loss of intellectual property and identity-related information -- in other words, identity theft. So the gravity or severity of what's going on is increasing.

My second point would be that while there is an increasing awareness that we have cyber-security problems, there is little understanding of what to do about it.

Q: Based on the viciousness of the attacks we are seeing, are the attacks exploiting vulnerabilities at a much faster rate?

A: Speed of propagation is one issue. Then the virus writers' ability to identify and take advantage of vulnerability -- that period of time is going down as well. I think this is occurring because virus writers are starting to take advantage of technology to improve their capabilities. For example, they are sharing files in peer-to-peer networks in what you might call the underground.

Q: That computer underground has existed for many years. In your assessment, is this expanding and becoming more sophisticated?

A: Yes. Which gets back to the second point I made. Now people are talking about cyber-security problems, and there is a heightened sense of awareness about this. People on the street are aware cyber-attacks are taking place. They are concerned about it, but there isn't an understanding about what to do. There is confusion at multiple levels. There is confusion at the large enterprise level. There is confusion at the small- or medium-size enterprise level. And there is confusion among home users as to exactly what they need to do. The Cyber Security Industry Alliance would like to bring clarity to the situation -- not simply increase awareness of the problems, but increase understanding about what can be done to make systems more secure.

Q: It seems to me this increased understanding would require a better differentiation of the threats so reasonable strategies could be adopted based on security concerns.

A: To be frank, it would be extremely difficult to educate all users on the nature of threats and how they are evolving. Things are moving too fast. I think they will always move too fast. You have to create a level of understanding and offer solutions to those in a position to affect overall security. That means working with large enterprises, Internet service providers, governments -- federal, state and local -- and large educational institutions to improve cyber-security. In other words, it is going to be difficult to educate 250 million Americans -- not to mention the rest of the world -- on what they need to

PREV 1 | 2 | 3 | 4 | 5 NEXT

| More

Comments

Add Your Comment

Name *

Comment *

You are solely responsible for the content of your comments. We reserve the right to remove comments that are considered profane, vulgar, obscene, factually inaccurate, off-topic, or considered a personal attack.

In Our Library

White Papers | Exclusives Reports | Webinar Archives | Best Practices and Case Studies

Mobile Capture - taking the first step: Download this whitepaper and learn how to reduce costs and improve the value of services to compete effectively. This insightful use case demonstrates the benefits of providing branch employees, field representatives and customers with the ability to capture application forms and supporting documents with a mobile phone or tablet, and immediately have them validated and fed directly into the back office process.
Hurricane Preparedness: Make sure you are prepared for hurricane season before it is here. Join in this Digital Communities teleconference and gain insight on how to prepare from experts who have been on the ground during major hurricanes.
Government-to-Government IT Services: What Works and What's Left to Work Out: This paper offers some best practices for shared government-to-government services, but also points out challenges that government and industry still must overcome before this model gains widespread adoption.

Latest From Digital Communities Features

Follow @dcommunities

Government Best Practices

Mobile Capture - taking the first step

Digital Cities & Digital Counties Survey: Best Practice Guide

Real Time for McAfee ePolicy Orchestrator

Public Safety Guide: From Call to Car to Crisis

Public Safety Mobile Apps for 4G Networks

10 Requirements for a Successful Oracle R12 Upgrade

Business Intelligence Roadmap

Featured White Papers & Reports

Government-to-Government IT Services: What Works and What's Left to Work Out

This Digital Communities white paper highlights discussions with IT officials in four counties that have adopted shared services models. Our aim was to learn about the obstacles these governments have faced when it comes to shared services and what it takes to overcome those roadblocks. We also spoke with several members of the IT industry who have thought long and hard about these issues. The paper offers some best practices for shared government-to-government services, but also points out challenges that government and industry still must overcome before this model gains widespread adoption.

View Full Library

Events

GTC East

Don't miss this opportunity to see the latest in digital government solutions, keep abreast of current policy issues and network with key government executives, technologists and industry specialists.

View All Events