- The Washington Times - Sunday, March 8, 2009




We’ve all felt the moment of panic when our laptop or home computer locks up or when we see the dreaded “threat detected” warning after running a virus scan.

In just over 10 years, the use of Internet- and networking-based technologies has exploded, and are now part of our everyday lives. Even the fundamental make-up of our society - from how we communicate with each other to our financial portfolios to our nation’s electricity grid - has positively transformed productivity and quality of life in America and around the world.

Unfortunately, this interconnectedness also has led to an increased dependence on the Internet, and thus, increased vulnerability for individuals and for our country’s cyber-security. This increased exposure has been accompanied by real and growing threats from basement hackers stealing credit card and Social Security numbers to cyber-terrorists shutting down our nation’s power grid, to hostile foreign governments invading our military’s defense networks.

Hassles created by Internet tricksters can slow or even stymie businesses. The threats to our physical infrastructure - such as the networks supporting our telecommunications, financial systems, and national security and defensive capabilities - are also very real. Former Director of National Intelligence Michael McConnell appropriately refers to these vulnerabilities as “the soft underbelly” of our nation’s security.

In December 2007, hackers stole data from millions of credit and debit cards of shoppers from a large retail chain. Today, hackers drive cars wired with laptops and other anti-security devices to steal confidential information from wireless users in their own homes.

Two weeks ago, the French Navy grounded its fighter planes because an infected USB drive led to a virus infection that blocked pilots from downloading flight information. Similarly, last month it was reported the British Defense Ministry had begun investigating what appeared to be a major security breach affecting more than 24 Royal Air Force bases.

Just days ago, it was revealed cyber-attacks on U.S. government computer networks climbed 40 percent last year, and more infiltrators are trying to plant malicious software they could use to control or steal sensitive data.

Most recently, the federal government reported the Departments of Defense, State, Homeland Security and Commerce have all suffered major intrusions in which sensitive data were compromised. Government networks often are targeted by foreign nations seeking intelligence as well as criminal groups and individuals who may want to disrupt power, communication or financial systems.

This is on top of the millions of private citizens who will have their personal information stolen this year.

Because secure networking is imperative to our economic safety and national security, the federal government has an obvious responsibility to provide comprehensive leadership in preventing these types of attacks.

Until recently, however, our cyber-defense efforts were largely an uncoordinated hodgepodge of various programs and policies.

President George W. Bush issued a Presidential Directive establishing the Comprehensive National Cyber-security Initiative (CNCI) in January 2008. The CNCI aims to bring strategic planning, coordination and additional resources to our nation’s cyber-security efforts. It is a comprehensive program designed to strengthen efforts from immediate detection and prevention of network intrusions to counterintelligence, information-sharing, and collaboration with the private sector.

But technological advancement is likely to be the most important factor in the long-term success of the initiative and the future of cyber-security. Because security was not a focus of the original architects of the Internet, there are fundamental vulnerabilities in the basic “backbone” that governs data exchange over networks. Exploitation of these inherent vulnerabilities require immediate and aggressive attention, but ultimately is a cat-and-mouse game that cannot persist forever, especially given today’s increased dependencies and vulnerabilities.

As such, the CNCI supports research and development (R&D) in pursuit of transformational advances in Internet architecture that will allow us to leap ahead of our adversaries with a fundamentally securable Internet.

This R&D effort is just beginning, and thus should and will be a priority of the House Science and Technology Committee, which maintains oversight of cyber-security R&D and the Department of Homeland Security’s science and technology efforts. Dealing with these issues in a forward thinking manner, I am fortunate to have the opportunity to work with Rep. David Wu, Oregon Democrat and chairman of the Technology and Innovation Subcommittee.

A final word of caution on our approach to cyber-security: Some advocate greater government regulatory control over private sector networks. While I agree government must work closely with the private sector and that it is appropriate to share information, technologies and best practices, we should be careful to avoid government intervention that reduces the ability of - and incentives for - the private sector to aggressively undertake its own security measures.

President Barack Obama recently called for a 60-day review of the cyber-defense policies. This effort will consider responding to and preventing cyber-attacks on individuals, businesses and our military; privacy and civil liberties protections; and restrictions on the use of any data the government collects. This is an appropriate action, and it is my hope President Obama’s administration will build upon the recent progress we have made in securing our networks.

The return on our government’s investment in research and development has been considerable, but never before has technological research and development been so important to our way of life.

Adrian Smith, Nebraska Republican, is ranking member on the Technology and Innovation Subcommittee of the U.S. House of Representatives’ Science and Technology Committee.

Copyright © 2018 The Washington Times, LLC. Click here for reprint permission.

The Washington Times Comment Policy

The Washington Times is switching its third-party commenting system from Disqus to Spot.IM. You will need to either create an account with Spot.im or if you wish to use your Disqus account look under the Conversation for the link "Have a Disqus Account?". Please read our Comment Policy before commenting.


Click to Read More and View Comments

Click to Hide