In Depth

Freedom of the Cyber Seas

How lessons from the U.S. government's response to pirates in the early 1800s can help the next president of the United States improve information security

By Aaron Turner & Michael Assante

Page 5

As part of the overall presidential plan, the president also must charge an appropriate federal organization with the charter of patrolling the cyber seas--issuing challenges where necessary and taking proactive defensive action to disrupt organized threats. This organization must work closely with the law enforcement and intelligence communities to identify bad actors and devise strategies to exploit the vulnerabilities associated with online criminal activity. We can go back to the example of how this strategy can be a success by looking at U.S. efforts on the illegal drug trade's supply lines across the Caribbean. The harassment, search and seizure activities effectively raised the cost of transporting illegal drugs, thereby forcing many drug cartels to build more-expensive transportation networks, and in some cases forcing criminals out of the market altogether. Similarly, on the cyber seas, we must increase the cost of conducting cybercrime and undermine the criminal marketplace.

The president's policy should also outline how U.S. diplomatic efforts can be coordinated through an international coalition of nations to develop the "laws of the cyber seas." The objective of the coalition would be to develop a body of international law designed to protect the rights of all nations and their citizens to conduct commerce and share information, with appropriate consequences outlined for those who violate those rights. There would be many issues to examine and debate, but an effort begun sooner rather than later to shape this new domain will be more effective and prevent greater losses.

The Internet has been an incredible experiment that has impacted how humans interact, conduct business and live around the world. It is time for its transition--through cooperation and where necessary unilateral action--into an established system where humankind can use it without apprehension or intimidation.

The president of the United States is one of the few individuals who have the authority and influence to affect a strategy as broad and complex as outlined above. The political, diplomatic and enforcement resources to set a consistent "freedom of the cyber seas" policy are vested in the Office of the President. Now is the time for that authority to be used to set a new course for our nation, and to challenge those who would subject America to the tyranny of criminal enterprises. Now is the time to demonstrate U.S. commitment to liberty and freedom--even on the cyber seas.

Michael Assante is an infrastructure protection strategist at the Department of Energy's Idaho National Lab and the former VP and CSO for American Electric Power, the largest generator of electric power in the United States. Aaron Turner, who manages security technology transfer and commercialization for the Idaho National Laboratory, previously worked in several of Microsoft's security divisions.

RESOURCE CENTER
Loading...
VIRTUAL CONFERENCE
Data Center Directions Virtual Conference

Data Center VCAttend this free, 100% online event exploring tools and techniques for making your data center deliver for today and tomorrow.

» Learn more and register here

WHITE PAPER
Maximizing Site Visitor Trust Using Extended Validation SSL

VeriSignNow with Extended Validation (EV) SSL available from VeriSign, you can show your customers that they can trust your site. Learn about EV SSL benefits in the free VeriSign white paper.

» Read the Paper

Featured Sponsors
Sponsored Links

Manage your IT more effectively

Simplify your data center with Juniper Networks. View the webcast

Efficient - Flexible - Compliant

E-LOAN Maintains Reputation as a Privacy Leader with Symantec

Data Loss Prevention: Keeping Sensitive Data Out of the Wrong Hands

Prudential Financial Protects its Brand with Symantec

Envision Identity-Based Access Control for the Datacenter

Digital Identity Protection and Data Security Get Personal

Welcome to the age of Service-Oriented Security (SOS)

When Customer Relationship is Everything, Businesses Bank on SSL Solutions

Everything Today's CISO Needs to Know About Using SSO to Succeed in the Web 2.0 Era

The Case for Business Software Assurance ~ Securing Your Applications

Maximizing Site Visitor Trust Using Extended Validation SSL

Solving Online Credit Fraud Using Device Reputation

Understanding Data Location is Imperative for Data Loss Prevention

5 Steps to Secure Outsourced Application Development

CA's IT Security centralizes your identity management to turn security into a proactive, business-building tool

Secure your virtual and physical environments with the same software

Any company can promise identity protection. Only Debix can prove it

7 Requirements of Data Loss Prevention

Information Security: Data Drains and How to Prevent Loss

How Are Open Source Development Communities Embracing Security Best Practices?

IDC Defines an Identity and Access Management Submarket

Using Likewise to Comply with PCI Data Security Standard

IDC Defines an Identity and Access Management Submarket for Managing Privileged User Accounts and Meeting GRC Requirements

Enabling Compliance with Converged Mainframe Security and Storage

Managing SSL Security in Multi-Server Environments

The Latest Advancements in SSL Technology

How to Offer the Strongest SSL Encryption

Forrester Total Economic Impact (TEI) report: Save Millions in Fraud Losses.

Get in Compliance With Government Data Regulations

Taking the Botnet Threat Seriously