On Tuesday, March 3, 2010, the U.S. Federal government released a declassified description of the Comprehensive National Cybersecurity Initiative (CNCI). Established in the previous administration's final year, the program's goal is to secure the nation?s critical IT security assets with cooperation between the government and private sector.
Howard Schmidt, the White House Cybersecurity Coordinator (and highly-regarded computer security expert), announced the release during his RSA keynote address and on The White House Blog. Twelve key initiatives were revealed:
- Manage the Federal Enterprise Network as a single network enterprise with Trusted Internet Connections.
- Deploy an intrusion detection system of sensors across the Federal enterprise.
- Pursue deployment of intrusion prevention systems across the Federal enterprise.
- Coordinate and redirect R&D efforts.
- Connect current cyber ops centers to enhance situational awareness.
- Develop and implement a government-wide cyber counterintelligence (CI) plan.
- Increase the security of our classified networks.
- Expand cyber education.
- Define and develop enduring ?leap-ahead? technology, strategies, and programs.
- Define and develop enduring deterrence strategies and programs.
- Develop a multi-pronged approach for global supply chain risk management.
- Define the Federal role for extending cybersecurity into critical infrastructure domains.
From Schmidt?s blog post:
In order to be successful against today's cybersecurity threats, we must continue to seek out innovative new partnerships not only within government, but also among industry, government, and the American public. Transparency improves our collective knowledge and helps bind our partnerships together to form the most powerful cyber tools that we have. We will not defeat our cyber adversaries because they are weakening, we will defeat them by becoming collectively stronger, through stronger technology, a stronger cadre of security professionals, and stronger partnerships.?