NSA director: Securing U.S. cyber infrastructure
NSA director: Securing U.S. cyber infrastructure is a team effort
SAN FRANCISCO — The director of the National Security Agency assured an audience at the RSA Conference today that his agency has no ambitions to be in charge of the country’s cyber infrastructure.
“We do not want to run cybersecurity for the United States government,” said Lt. Gen. Keith Alexander, who has been at NSA for four years. “That’s a big job. We need a team to do it.”
He said the Homeland Security Department is a necessary part of that team and discounted the rumors of competition between the two for cyber primacy.
“DHS has a really tough job,” he said. “They have to operate and secure the rest of the .gov networks.”
NSA is ready to help with technical and operational expertise, but Alexander said NSA has enough on its hands looking after the .mil domain and the intelligence community and national security systems.
With the Obama administration’s 60-day national cybersecurity review wrapping up, people are asking who is in charge of national cybersecurity and who should be in charge. There has been speculation of competition between NSA and DHS for the role.
Administration officials have said the White House will take the lead in cybersecurity policy and will centralize operational responsibilities. Melissa Hathaway, the administration official who is conducting the cybersecurity review, is scheduled to speak at the conference April 22 about the findings.
Alexander outlined the scope of the challenges facing NSA, which has been in charge of government code-making and code-breaking since World War II. Terrorists are active on more than 4,000 Web sites, he said, and there are an estimated 32,000 suspected cyberattacks each day. NSA needs to cooperate with the rest of government, foreign governments, industry and academia to mount an adequate cyber defense. That requires better network visibility and information sharing, but sharing also poses a risk to U.S. security, Alexander said.
“How do we share [classified information] with industry?” he asked. “In sharing it, you’re giving out secrets.
So NSA is not leading the effort, there is no leader yet for US cybersecurity.
NSA's paradigm maybe short sighted, they defend only a small part of the WWW."NSA has enough on its hands looking after the .mil domain and the intelligence community and national security systems."
But if the WWW is taken down NSA efforts to defend the mil domain are for naught.
As mil domain would be crippled by taking down the WWW.
He left open the question of defense vs offense.
They have no cyber weapons, and I haven't heard anythng about going
offensive against the hackers and bot hearders.
The risk for attacking US systems is minimal,
They are not even part of the conflicker team. Conflicker is the worlds biggest bot herd.
So much for team efforts.
Why hasn't NSA taken down
conflicker? Potential as a WMD. Cyber Pearl Harbor
They don't know how.
Stop securing the infrastructure, develop an offensive capability.