President Obama’s Executive Order On Cybersecurity Focuses on Information Sharing

Feb. 13, 2013
As you have undoubtedly heard by now, President Obama has signed an executive order regarding cybersecurity. This was done ostensibly to protect infrastructure, like the electrical grid, from cyberattacks or worse yet cyberterrorism. Here's a recap of the salient points of the order.

As you have undoubtedly heard by now, President Obama has signed an executive order regarding cybersecurity. This was done ostensibly to protect infrastructure, like the electrical grid, from cyberattacks or worse yet cyberterrorism. You can read the entire executive order at the White House web site. The second sentence essentially spells out the problem: The cyber threat to critical infrastructure continues to grow and represents one of the most serious national security challenges we must confront. Scary stuff.

The government plan to deal with this problem concerns mostly the sharing of information. The excutive order states: It is the policy of the United States Government to increase the volume, timeliness, and quality of cyber threat information shared with U.S. private sector entities so that these entities may better protect and defend themselves against cyber threats

Apparently, the government plans to tap people in the private sector who have special talents for dealing with these threats. The order goes on to say:  In order to maximize the utility of cyber threat information sharing with the private sector, the Secretary of Homeland Security shall expand the use of programs that bring private sector subject-matter experts into Federal service on a temporary basis. These subject matter experts should provide advice regarding the content, structure, and types of information most useful to critical infrastructure owners and operators in reducing and mitigating cyber risks.

Related Articles
President Obama Is Interested In Unemployed Engineers
Silver Can Turn Into Gold
DIY movement Sparks Engineering Education

The order also gets into privacy and civil liberties protections by stating that agencies shall coordinate their activities under this order with their senior agency officials for privacy and civil liberties and ensure that privacy and civil liberties protections are incorporated into such activities.

The organization responsible for setting the baseline framework for reducing cyber risk to critical infrastructure is none other than the National Institute of Standards and Technology. The framework will include a set of standards, methodologies, procedures, and processes that align policy, business, and technological approaches to address cyber risks. When completed, the Secretary, in coordination with Sector-Specific Agencies, will establish a voluntary program to support the adoption of the Cybersecurity Framework by owners and operators of critical infrastructure and any other interested entities.

So who is perpetrating these attacks on critical U.S. infrastructure? A glance at Google results for “cyber attacks on U.S.” reveals that hackers are suspected or known to be from countries like Iran and China. The origins of some attacks, though, are still a mystery. Not surprisingly, some attacks still fall under the denial-of-service category, a technique that has been around for quite a while, but still is difficult to defend against.

As for an official response to this latest executive order, the only one I’ve seen so far is from the Edison Electric Institute, which said the following:

The Edison Electric Institute (EEI) shares the President’s goal of protecting critical infrastructure from cyber attacks.  As the only industry subject to mandatory and enforceable cybersecurity standards, the electric power sector already is taking significant steps to protect the electric grid and to work closely with the government to prevent, detect, and respond to cyber threats.  The Executive Order represents another step toward improving government-industry coordination, but it does not preclude the need for congressional action to address statutory changes that will improve information sharing and access to classified information that the private sector needs to serve as the first line of defense in the protection of its critical infrastructure.  EEI and its members look forward to continuing to work with the Administration and Congress to address this national security priority.

Sponsored Recommendations

Highly Integrated 20A Digital Power Module for High Current Applications

March 20, 2024
Renesas latest power module delivers the highest efficiency (up to 94% peak) and fast time-to-market solution in an extremely small footprint. The RRM12120 is ideal for space...

Empowering Innovation: Your Power Partner for Tomorrow's Challenges

March 20, 2024
Discover how innovation, quality, and reliability are embedded into every aspect of Renesas' power products.

Article: Meeting the challenges of power conversion in e-bikes

March 18, 2024
Managing electrical noise in a compact and lightweight vehicle is a perpetual obstacle

Power modules provide high-efficiency conversion between 400V and 800V systems for electric vehicles

March 18, 2024
Porsche, Hyundai and GMC all are converting 400 – 800V today in very different ways. Learn more about how power modules stack up to these discrete designs.

Comments

To join the conversation, and become an exclusive member of Electronic Design, create an account today!