backtop


Print 37 comment(s) - last by Spuke.. on Jul 9 at 4:00 PM


The NSA's new program "Perfect Citizen" aims to protect aging internet-connected systems, such as those at the nuclear power plant seen here.  (Source: Tennessee Valley Authority)
Debate continues over whether government is fulfilling its duty to defend or meddling in the private sector

It's little secret that the U.S. cybersecurity could use some help.  Recent studies have shown the nation's power grid and armed forces to be highly vulnerable to a cyberattack from an internet savvy nation like China or Russia.  Under President George W. Bush and President Barack Obama slow steps have been made to improve that state of affairs.

But now there's a growing debate over one of the most ambitious cybersecurity initiatives yet, a program developed by the National Security Agency called "Perfect Citizen".  The program is designed to detect, neutralize, and counter cyberattacks on critical parts of the U.S. private sector -- such as defense contractors, power plants, and major internet firms like Google.  Its critics, though, contend that it is government meddling and playing "Big Brother".

Raytheon Corp. has reportedly been selected to spearhead the initiative, receiving a $100M USD initial phase surveillance contract.  

Internally, there's been discord over the government's plans to peer inside private networks.  States a Raytheon email leaked to 
The Wall Street Journal, "The overall purpose of the [program] is our Government...feel[s] that they need to insure the Public Sector is doing all they can to secure Infrastructure critical to our National Security.  Perfect Citizen is Big Brother."

While the NSA had no official comment, unnamed U.S. officials took issue with the claim that they were playing "Big Brother".  They said the program was vital to protecting the nation and no more intrusive to privacy than traffic cams over intersections.

At the core of the issue is the fact that many "mission critical" systems which drive subway systems, air-traffic control networks, and more are composed of aging machines which were built at a time when security was less understood and considered.  The NSA believes that China and Russian may have gained deep access and exploration into these networks, but it needs to watch them in order to determine the full extent of the penetration.

One of the U.S. government's critical roles is to provide for the defense of the nation.  Under the U.S. constitution the government has the power to "raise and support armies," "provide and maintain a navy," and to "make rules for the government and regulation of the land and naval forces".

Initially, the government began to interface with the private sector -- such as power utilities -- to solve physical problems; for example sealing a manhole cover to a power line going to a critical government center.  However, those efforts quickly expanded to the digital realm.

"Perfect Citizen" sprung from an earlier surveillance project called "April Strawberry".  The new project is still in its early stages, but NSA officials have reportedly met with utility executives and politely asked them to cooperate with the surveillance.  Participation is reportedly voluntary, but those who comply will earn incentives, such as additional government contracts.

Ultimately it may be too early to judge the merits of "Perfect Citizen", but as the program is fleshed out, it seems likely to provoke a lively debate about the government, privacy, and intervention in the private sector.



Comments     Threshold


This article is over a month old, voting and posting comments is disabled

RE: Oh Look!
By HotFoot on 7/8/2010 5:04:41 PM , Rating: 2
If you want a networked method for shutting down/throttling plants, and one that uses the internet, it WILL be hackable. I can't think of a reason why the military or any government agency would require the ability to shut down or throttle a plant over the internet. Should such a desire exist, a phone call or some other communication to the local operator can be placed.


RE: Oh Look!
By afkrotch on 7/8/2010 8:22:57 PM , Rating: 2
Unless the US is invaded and the power plant happens to be controlled by the invading forces. Phone call pretty much does nothing for you.

A laser guided bomb would do the trick, but we'd have to rebuilt the plant again. Course shutting it down remotely would probably give a reason for invading forces to destroy it themselves, so it can't be used against them later on.

Who knows. I figure a non-internet connected network would be fine and if they wanted stats. They can sneakernet the data to an internet connected terminal for data transmission.


"If they're going to pirate somebody, we want it to be us rather than somebody else." -- Microsoft Business Group President Jeff Raikes














botimage
Copyright 2014 DailyTech LLC. - RSS Feed | Advertise | About Us | Ethics | FAQ | Terms, Conditions & Privacy Information | Kristopher Kubicki