Former CIA/NSA Head: Cyber Security Threats "Horribly Over-Classified"
October 7, 2011 11:35 AM
comment(s) - last by
Former head of the National Security Agency and CIA and retired U.S. Air Force Gen. Michael Hayden
Ex-head of the National Security Agency and CIA and retired U.S. Air Force Gen. Michael Hayden said federal agencies need to open up to public and private industry to address cyber threats
climbs its way up the priority list after 2011's string of attacks against government and corporate systems, U.S. government agencies and companies struggle to find a happy medium between excessive secrecy and too much disclosure regarding the handling of such issues.
Going one way or the other can have severe repercussions. Excessive secrecy can stifle cyber defense, as too much focus could be placed on an issue that was already resolved elsewhere. If you keep it secret, someone who might know how to fix it cannot do so. Too much disclosure, on the other hand, gives hackers what they need to work around security systems.
So what's a company to do? According to former head of the National Security Agency and CIA and retired U.S. Air Force Gen. Michael Hayden, information regarding cyber attacks are "over-classified" and releasing only necessary information without being too descriptive could be helpful in creating an educated, open forum of
how to deal with these problems
"This may come as a surprise, given my background at the NSA and CIA and so on, but I think that this information is horribly over-classified," said Hayden. "The roots to American cyber power are in the American intelligence community, and we frankly are quite accustomed to working in a world that's classified. I'm afraid that that culture has bled over into how we treat all cyber questions."
U.S. President Barack Obama released a memo in January 2009 telling federal agencies to
work more closely with public and private industry
on important matters, allowing for greater government transparency. According to Army Col. Rivers Johnson, U.S. Cyber Command has been compliant with the president's demands.
"It's important to note that both NSA and USCYBERCOM continue to be committed to open government and transparency in accordance with the President's 21 January 2009 Memo," said Johnson. "We also have a responsibility to ensure classified and sensitive information is protected in accordance with applicable laws and policies."
"What's happened is, the accumulation of those individual, discrete, maybe correct decisions has created a consequence in which the overall effect is greater than the harm that would have been created by reviewing the individual decisions," said Hayden. "Collectively, what you've got is an uninformed public, and what you've got is a private sector that doesn't understand the precise nature of the threat they're up against."
This article is over a month old, voting and posting comments is disabled
RE: security through obscurity is not an answer
10/7/2011 5:50:35 PM
In the long term yes, but in the short term people are going to be using those visible holes to suck out ungodly amounts of data. That is a non starter.
RE: security through obscurity is not an answer
10/7/2011 10:21:29 PM
That's why you pay them more money than they would make by selling your data. And don't prosecute them or release their names or any of that. Simply cut a cheque and move on to the next security breach until your system becomes a fortress.
"It looks like the iPhone 4 might be their Vista, and I'm okay with that." -- Microsoft COO Kevin Turner
DHS Conducts Cyber Security Simulations to Aid Private Industries
October 3, 2011, 9:36 AM
Companies "Pwned" in Hacking Contest, Cyber Security Skills Lacking
August 8, 2011, 5:37 PM
Global Cyber Security Push is Underway
July 6, 2011, 7:28 AM
Netflix Announces 7-to-1 Stock Split, Eyes Explosive Overseas Growth
June 23, 2015, 8:18 PM
Sources: Hack on Fed. Database Lost 4.1M Social Security Numbers, Personal Info
June 11, 2015, 9:11 PM
The Big One: Chinese Hackers Steal Records of 4 Million U.S. Gov. Employees
June 4, 2015, 8:13 PM
Tutorial: Here's How to Force YouTube or Vimeo VIdeos to Embed as HTML5
June 3, 2015, 10:14 PM
Google Finally Fixes Maps Bug That Was Giving Racist, Profane Results
May 21, 2015, 1:43 PM
The Pirate Bay Loses Its Iconic Swedish Dot SE Domains
May 20, 2015, 6:31 PM
Most Popular Articles
Windows XP, Vista Users Can Get Free Windows 10 Upgrade Thanks to Loophole
June 23, 2015, 2:23 PM
SanDisk's 200GB microSDXC Card Turns Smartphones Into Enviable PMPs
June 26, 2015, 2:02 PM
U.S. Navy Spends $9M USD to Cling to Windows XP, Office 2003
June 24, 2015, 2:03 PM
Under the Hood: Digging Into Sony's New CUH-1200 PS4, 1 TB Ultimate Player Ed.
June 23, 2015, 10:33 AM
Xbox Outsold 108-to-1 By PS4 in Japan, Weekly Sales Fall to 100 Units
June 22, 2015, 1:54 PM
Latest Blog Posts
Sceptre Airs 27", 120 Hz. 1080p Monitor/HDTV w/ 5 ms Response Time for $220
Dec 3, 2014, 10:32 PM
Costco Gives Employees Thanksgiving Off; Wal-Mart Leads "Black Thursday" Charge
Oct 29, 2014, 9:57 PM
"Bear Selfies" Fad Could Turn Deadly, Warn Nevada Wildlife Officials
Oct 28, 2014, 12:00 PM
The Surface Mini That Was Never Released Gets "Hands On" Treatment
Sep 26, 2014, 8:22 AM
ISIS Imposes Ban on Teaching Evolution in Iraq
Sep 17, 2014, 5:22 PM
More Blog Posts
Copyright 2015 DailyTech LLC. -
Terms, Conditions & Privacy Information