Cyber

May 25, 2017
The Internet of Things poses some risks to military forces, a draft report from NATO's Parliamentary Assembly points out. The report will be discussed at the assembly's spring session and will be updated over the summer.

The NATO Parliamentary Assembly has published a draft report titled "The Internet of Things: Promises and Perils of a Disruptive Technology." The report urges governments to take a more proactive role in defining the future of the Internet of Things (IoT).

"Policy makers, including national parliamentarians, need to start to proactively shape an IoT environment that remains open, innovative and secure. We have to find the right balance," the document states.

May 24, 2017
By Sandra Jontz
Adm. Michael Rogers, USN, makes a budget pitch before Congress on May 24, asking for 16 percent more in fiscal year 2018 than in 2017 for U.S. Cyber Command.

U.S. Cyber Command hopes for a bigger slice of the federal budget pie to cover operating costs in an increasingly volatile and dangerous cyber domain, said Adm. Michael Rogers, USN, head of U.S. Cyber Command and the National Security Agency (NSA).

He made his budget pitch before House lawmakers on Tuesday, seeking $647 million in fiscal year 2018—a 16 percent increase from fiscal year 2017—to address mounting cyber needs.

May 22, 2017
By J. Wayne Lloyd

As the Defense Information Services Agency (DISA) knows, a network that complies with standards is not necessarily secure. DISA’s new evaluation program, the Command Cyber Operational Readiness Inspection (CCORI), is designed to go beyond standards. Its goal is to provide site commanders and federal agencies an understanding of mission operational risks.   

May 15, 2017
By Sandra Jontz

The crippling ransomware attack last week that paralyzed hospitals, universities and businesses globally was just a cyber appetizer, experts warn. The main dish is still to come.

"That was just a big warning," says Rick McElroy, a security strategist at Carbon Black, which develops endpoint cybersecurity software to detect malicious behavior. "If you weren't impacted by this one, something is going to come down the pike that's more advanced that you’re probably not prepared for. So start to build your defenses today to get out in front of this stuff.”

May 11, 2017
By Sandra Jontz
White House homeland security adviser, Thomas Bossert, announces details of the White House’s long-awaited cybersecurity executive order, which President Donald Trump signed May 11.

President Donald Trump on Thursday signed a much-anticipated cybersecurity executive order that lays out the government's path toward strengthening federal networks.

“The trend is going in the wrong direction in cyberspace and it’s time to stop that trend and reverse it on behalf of the American people,” Thomas Bossert, White House homeland security adviser, said Thursday afternoon while announcing details of the order. The government has noted an increase in the number of attacks from “allies, adversaries, primarily nation-states, but also non nation-state actors,” Bossert said during a televised White House briefing.

May 9, 2017
By Sandra Jontz
 U.S. Coast Guard Academy cadets discuss strategy during a 2016 Cyber Defense Exercise, a competition between service academies conducted by the National Security Agency. U.S. Coast Guard photo by Petty Officer 2nd Class Richard Brahm, USCG

Technological development has transformed U.S. Coast Guard networks into warfighting platforms as the service operates in a dramatically different realm, a senior leader says.

“That’s significant for us,” says Rear Adm. Kevin Lunday, USCG, commander of Coast Guard Cyber Command and assistant commandant for Command, Control, Communications, Computers and Information Technology (C4IT). “It’s really the first time we’re creating an operating force for a new domain—cyberspace—since we created operating forces for aviation over a century ago.”

May 5, 2017
By Sandra Jontz
U.S. soldiers conduct cyberspace operations during a training rotation last January at the National Training Center at Fort Irwin, California. They are among several cyber organizations taking part in pilot programs to help the Army develop how it will build and employ cyber in its tactical formations.

Zipping past a Plan B for cyber defense solutions to the end of the alphabet, the U.S. Defense Department's research arm launched Plan X and advanced platforms to conduct and assess cyber warfare like kinetic warfare. 

After five years of development by the Defense Advanced Research Projects Agency (DARPA), Plan X is scheduled to transition in September to the Army's Program Executive Office for Enterprise Information Systems (PEO EIS) Project Manager Installation Information Infrastructure–Communications and Capabilities (I3C2). 

May 5, 2017
By Sandra Jontz

A new U.S. Army cyber-based task force hit the ground running this week to do a deep-dive, Army-wide review and strategically assess the service’s cyber needs, strengths, weaknesses and assets, officials say. Task Force Cyber Strong is one tangible outcome from a new cyber directorate created in July to spearhead the convergence of cybersecurity and electronic warfare.

May 3, 2017
Alex Rice, chief technology officer and co-founder of HackerOne Incorporated (l), speaks with Peter Kim, Air Force chief information security officer (c), and Chris Lynch, director, Defense Digital Service, about the upcoming Hack the Air Force event.

Vetted computer security specialists from across the United States and select partner nations are invited to hack some of the U.S. Air Force’s key public websites. The initiative is part of the Cyber Secure campaign the service’s chief information officer is sponsoring to further operationalize the domain and leverage talent from inside and outside of the Defense Department. HackerOne Incorporated, a security consulting firm, is managing the contest.

May 2, 2017
By Sandra Jontz

The White House has created a council charged with tackling federal information technology services. President Donald Trump signed the executive order that stands up the American Technology Council, or ATC, to "transform and modernize" federal IT. 

May 1, 2017
By George I. Seffers

The U.S. government is racing to identify technologies that will resist the threat from quantum computers, which will render today’s encryption obsolete.

May 1, 2017
By George I. Seffers

They do not necessarily match the hero stereotype, but computer scientists improving methods of generating random numbers just may save the day when it comes to cybersecurity.

Scientists at the University of Texas at Austin have delivered a mathematical revelation that could bring a number of benefits, but improved encryption tops the list. Cybersecurity, of course, depends on encryption, which relies on random data. Although the world is full of randomness—a roll of the dice, a flip of a coin, a lottery drawing—randomness is not always equal. When studied over time, air temperatures and stock market results, for example, actually produce predictable patterns.

May 1, 2017
By Sandra Jontz

You might think that homomorphic cryptography, obfuscation techniques and privacy concerns have nothing in common. You would be mistaken. 

The Defense Advanced Research Projects Agency (DARPA), a division of the U.S. Defense Department that creates breakthrough technologies, is advancing these complex but intrinsically connected concepts in a series of efforts that could alter the art of making and breaking code. 

May 1, 2017
By Sandra Jontz

U.S. adversaries know they can exploit cyber vulnerabilities and are getting away with it with ease and on the cheap. This reality is as befuddling to officials as it is enraging, and it has some experts calling on the federal government to embrace a new defense approach: Put up or shut up.

May 1, 2017
By Lt. Gen. Robert M. Shea, USMC (Ret.)

The need to secure data never has been greater, and that need is growing. Encrypting data is one of the main methods of securing information at the source, in storage and in transit. With data breaches becoming more common and more serious, organizations and individuals increasingly are encrypting information. This trend ultimately could lead to significant changes in the data security realm.

Fraud, theft and information corruption have become a way of life in cyberspace. Vital information such as health care data has joined financial and personal data as a prime target of hackers. 

May 1, 2017
By Sarah Christensen

Entitled. Self-centered. Disaffected. These are just a few of the divisive and disparaging words used to describe millennials. The largest generation in U.S. history—an emerging consumer powerhouse—is making significant cultural changes centered around revolutionary, life-enhancing technologies. Tomorrow’s successes are sure to stem from millennials who are pushing the limits.

Perhaps fewer ecosystems can benefit more from this work force’s M.O. than cyberspace, experts shared during the recent debut of a Young AFCEAN panel at West 2017.

May 1, 2017
By Maj. Gen. Earl D. Matthews, USAF (Ret.)

I’ve heard a lot of talk about cyberthreats over the past 15 years, yet I haven’t seen anyone offer a holistic way to address them. As I reflect on my own experiences and challenges in information and operational technology, the last problem of this magnitude that we had to face was the feared millennium bug, or Y2K. A mere 17 years later, the information technology landscape looks eerily the same. For many chief information officers (CIOs) and chief information security officers (CISOs), the size and scope of the millennium bug is about the same as today’s major security challenge: the cyber bug.

April 25, 2017
By Sandra Jontz
Daryl Haegley, with the U.S. Defense Department, discusses how a number of military networks are vulnerable to cyber attacks because of outdated and under-protected operating systems in the critical infrastructure domain.

Though the U.S. Defense Department has spent much time and money to protect high-value network assets such as emails from cyber intruders, the systems remain vulnerable to attacks. So imagine the weaknesses to systems that haven’t garnered as much defense attention or reinforcements, a senior official said.

“We have spent a lot of time—and have been very successful at—protecting our email information,” said Daryl Haegley, program manager for Business Enterprise Integration (BEI) in the Office of the Assistant Secretary of Defense for Energy, Installations and Environment. “But what about the control systems, manufacturing systems, facilities networks, medical devices? What we’re finding is ‘not so much.’ 

April 28, 2017

The Department of Homeland Security’s Science and Technology Directorate (S&T) announced the transition of Hyperion, a malware detection technology, to the commercial marketplace.

April 24, 2017
By Robert K. Ackerman
A panel discussion examines innovation as a security imperative at NITEC 2017 in Ottawa.

Needing innovation for cybersecurity more than ever, NATO and its member nations still do not have a concrete plan to speed new capabilities into alliance and national systems. Intricate procurement processes compound the absence of cooperation among firms while cyber adversaries continue to improve their methods and broaden their capabilities.

Pages