In a new 50 page report entitled "Keeping America Safe," MIT cybersecurity researchers conclude that the most critical infrastructure in the U.S. are essentially defenseless. Very timely paper given last week's newsletter on Russia and its cyber threat. The paper is an appeal for the President's administration to do more rather than just wait for the inevitable!
The paper, titled “Keeping America Safe: Toward more secure networks for critical sectors,” collects a year of research, largely culled from purpose-built workshops. Tackling each aspect of vulnerable critical infrastructure sector by sector, it poses questions like “How will detection techniques be affected by the anticipated move to IPv6?” The answers to those questions are meant to spur action rather than further analysis, and each section comes with a concise paragraph of recommendations. For the not-exactly-surprising finding that critical infrastructure defense is poorly coordinated among agencies, for example, the report recommends that the president promote his cybersecurity advisor to a deputy national security role capable of coordinating with the Office of Management and Budget. Easy, see?