Nine Takeaways From the White House Cyber-security Summit
-
Nine Takeaways From the White House Cyber-security Summit
by Chris Preimesberger -
Terrorist Threats Rocketing Up Since 2009
President Obama said in his remarks Feb. 13 that cyber-security-related terrorist threats to governments and companies have increased fivefold since 2009. He specifically mentioned the Sony Pictures hack of last fall. He also noted that more than 100 million businesses and individuals were hit by online-related fraud or theft in 2014 alone. "No company has ever said they worked too hard to protect their systems and customers," Obama said. -
Network of Industry 'Hubs' to Share Security Information
The president's executive order of Feb. 13 identifies best practices and standards for what constitutes optimal information-sharing units within vertical industries, and measures the effectiveness of communication. These units, called hubs, are designed to create industry-driven, cyber-security information-sharing networks before breaches happen, so when intruders do hit one of the members, faster reaction and containment can take place. Some of these hubs are already in operation. -
Institutionalized Information Sharing Will 'Keep Us in the Game'
J. Michael Daniel, cyber-security coordinator at the White House, told eWEEK: "We're not going to solve all of the really sophisticated actors or defeat all the advanced persistent threats just by increasing information sharing. But we have seen industries that have increased their information sharing—such as in the financial services industry—and that does make a meaningful difference in being able to cut out a lot of the low-level attacks and intrusions. When you do that, then you can focus your humans on the more sophisticated intruders. I see this as a sort of baseline for us just to stay in the game." -
Fortinet CEO: Industry is 'Extremely Short-Handed'
Ken Xie, CEO of Fortinet and a summit panelist, told eWEEK: "The biggest obstacle is that our industry is extremely short-handed: It's estimated we can only fulfill one in every 20 technology positions needed in the cyber-security space. Who will mitigate the threat? Where and who are the cyber-SWAT teams? Who will train the responders? These questions remain unanswered." -
Cyber-security: A National Public Safety Issue
Phil Smith, Trustwave senior vice president of government solutions and special investigations, said during a panel discussion that "cyber-security is a national security and public safety issue. Sharing threat intelligence across government agencies, law enforcement and the private sector is a critical component of strengthening data protection; however, it will not work without safe harbor protections for companies that participate." However, Smith said, an executive order can only go so far. "It takes congressional action to mandate information sharing on a national level that includes liability protection," he said. -
Privacy, Security and Business Interests All Intersect
Ryan Gillis, vice president of government affairs and policy at Palo Alto Networks and a former White House cyber-security official, told eWEEK: "The way that privacy, security and business interests all interact and mutually reinforce each other—that's something that's been missing in the messaging around information sharing in the legislative debates over the last few years. Too often, it's been [stated] that privacy is at odds with security in business. When you better protect your networks, better protecting me as a consumer and an individual, and as a company that's better protecting my customers, I have a better relationship because I'm not issuing data breach notifications to them that we've lost your Social Security number [to a hacker]." -
Obama: Cyber-world is the 'Wild, Wild West'
"The cyber-world is sort of the wild, wild West, and to some degree, we're asked to be the sheriff," Obama said. "When something like Sony [data breach] happens, people want to know, 'What can government do about this?' When information is being shared by terrorists, people want us to find ways of stopping that from happening. By necessity, that means government can use its own significant capabilities in the cyber-world. But then, people plainly ask: 'What safeguards do we have around government intruding on our own personal privacy?' It's hard. Government has to be continuously self-critical, and we need to continue to have an open debate on this." -
Feb. 13: Just the Latest Executive Order on Cyber-security
Previously, the president has signed directives involving improving critical infrastructure cyber-security, critical infrastructure security and resilience, and some federal policies in the cyber-security area, but no president has issued an order directing all sectors to share and share alike when it comes to finding out information about national and international bad actors in cyber-security. -
Tim Cook Talks Up Apple Pay as Safe Transactioning
Apple CEO Tim Cook, speaking before the president, explained that his company "will never sell our customers' information to anybody." He said that the new Apple Pay system, which was introduced last fall and enables iPhone users to conduct point-of-sale transactions without involving an exchange of personal information over the Internet, is "a huge improvement over a little plastic card with a magnetic stripe that we currently use." Apple doesn't store a user's credit card number or purchase history, he said, adding that information is between a person and his/her bank.
Cisco Cyber-Security Report Finds Server Threats Increased in 2016 
LG Watch Sport Designed to Take Advantage of Android Wear 2.0 
How Apple's New 'Spaceship' Headquarters Expresses Steve Job's Vision 
Phishing Site Study Reveals Why These Cyber-Scams Pervade the Web 
What's New in Google's Long-Awaited Android Wear 2.0 
10 Ways Enterprises Can Limit Third-Party Cyber-Risk 
Rumored Features That Could Make the HTC 11 a Top-Notch Smartphone 
Survey Weighs Importance of Passion for Innovation to Business Success 
Lenovo Designs Yoga A12 Android Hybrid PC for Business Users 
More Software Vulnerabilities Disclosed in 2016 Than Ever Before In May 2009, newly elected President Barack Obama—who was burning the midnight oil trying to revive a very sick U.S. economy—declared that cyber-security was going to be a national security priority within his administration. He described the nation's digital infrastructure—the networks and computers we depend on every day—as strategic national assets, and said they should be treated as such. Nearly six years later, the financial crisis is over, but the digital security issues have hardly been solved. In fact, they have become increasingly worse as outside hackers, crime syndicates, rogue nation-states, terrorists and untrusted insiders continue to wage war on enterprises, government agencies and individuals to the tune of billions of dollars. On Feb. 13 in an appearance at Stanford University, the president signed an executive order asking the IT sector to join with the federal government and the military to renew their efforts to strengthen data security by sharing security information. Here are key takeaways from the White House Cyber-security and Consumer Protection Summit. (Photos by eWEEK’s Chris Preimesberger and Stanford News Service)
