Report: Government Has No Cyber Warning System

The report suggests the chasm between various agency operations centers might open the door to incoming threats.

A masked hacker, part of the Anonymous group, hacks the French presidential Elysee Palace website on January 20, 2012 near the eastern city of Lyon.
National Journal
Aliya Sternstein, Nextgov
Aliya Sternstein, NextGov
Nov. 5, 2013, 6:24 a.m.

The de­part­ments of Home­land Se­cur­ity and De­fense, in­clud­ing the Na­tion­al Se­cur­ity Agency, have no way of shar­ing cur­rent alerts about com­puter breaches with each oth­er or in­dustry, an in­spect­or gen­er­al memor­andum re­veals.

The prob­lem is not an in­ab­il­ity to doc­u­ment in­cid­ents, but, rather, an in­ab­il­ity to alert po­ten­tial vic­tims as the situ­ation un­folds and to provide in­struc­tions.

There is one sys­tem for cir­cu­lat­ing event re­ports, a sep­ar­ate one for cir­cu­lat­ing dir­ec­tions on how to re­spond, and no real-time sys­tem for join­ing the two, ac­cord­ing to an Oct. 24 DHS IG re­port re­leased this week.

The miss­ing tech­no­logy should be housed at the 24-hour Na­tion­al Cy­ber­se­cur­ity and Com­mu­nic­a­tions In­teg­ra­tion Cen­ter, a DHS or­gan­iz­a­tion that dis­trib­utes in­form­a­tion among ci­vil­ian agen­cies, the in­tel­li­gence com­munity, De­fense com­pon­ents and crit­ic­al in­fra­struc­ture sec­tors, such as the power in­dustry.

The re­port sug­gests the chasm between NC­CIC and vari­ous agency op­er­a­tions cen­ters might open the door to in­com­ing threats, such as ma­li­cious code tar­get­ing mil­it­ary sys­tems or oil and gas com­pan­ies.

“Ac­cord­ing to the NC­CIC dir­ect­or, there is no na­tion­al sys­tem or com­mon cy­ber tool cur­rently in place for the fed­er­al cy­ber cen­ters to share in­form­a­tion,” the re­port found.

Of­fi­cials at NC­CIC, pro­nounced “N-kick,” ac­know­ledged that a com­mon cy­ber sys­tem could al­low the sep­ar­ate cen­ters to ex­change “ac­tion­able in­form­a­tion,” elec­tron­ic­ally and on a real time basis, with key in­dus­tries to min­im­ize dam­age.

Right now, NC­CIC has a tick­et­ing sys­tem that doc­u­ments in­cid­ent de­tails, such as the time of the ab­nor­mal event, date it was re­por­ted, and phone con­ver­sa­tions about the situ­ation.

Mean­while, NC­CIC and the FBI have a sys­tem that dis­sem­in­ates bul­let­ins to com­pan­ies and agen­cies with in­struc­tions on pre­vent­ing de­struct­ive at­tacks and pro­tect­ing sens­it­ive data.

But the two sys­tems are not con­nec­ted.

“This tick­et­ing sys­tem does not link situ­ation­al aware­ness products (i.e., alerts and bul­let­ins) that have been is­sued and are as­so­ci­ated with a spe­cif­ic cy­ber in­cid­ent, threat or vul­ner­ab­il­ity,” the memo states.

An­oth­er dis­con­nect: “Fed­er­al cy­ber op­er­a­tions cen­ters of­ten share their in­form­a­tion with one an­oth­er. However, no single en­tity com­bines all in­form­a­tion avail­able from these cen­ters and oth­er sources to provide a con­tinu­ously up­dated, com­pre­hens­ive pic­ture of cy­ber threat and net­work status to provide in­dic­a­tions and warn­ing of im­min­ent in­cid­ents, and to sup­port a co­ordin­ated in­cid­ent re­sponse.”

NC­CIC does not pos­sess the tech­no­logy ne­ces­sary to broad­cast on­go­ing up­dates and avoid du­plic­ate com­mu­nic­a­tions, the in­spect­or gen­er­al re­por­ted.

As rem­ed­ies, IG of­fi­cials sug­ges­ted a know­ledge man­age­ment data­base, auto­mat­ic call­ing trees and a com­mu­nic­a­tions-track­ing sys­tem.

These tech­no­lo­gies will re­quire ad­di­tion­al fund­ing, Home­land Se­cur­ity of­fi­cials told in­spect­ors. Of­fi­cials plan to im­prove ex­ist­ing in­form­a­tion shar­ing tools and bring new cap­ab­il­it­ies on­line dur­ing the next four years, they said.

“Tech­no­lo­gies and pro­cesses to im­prove dis­cov­er­ab­il­ity and avail­ab­il­ity of data between and among the cy­ber op­er­a­tions cen­ters serve as a found­a­tion to the in­form­a­tion shar­ing cap­ab­il­ity sets. These cap­ab­il­it­ies, coupled with auto­mated ma­chine-to-ma­chine data trans­fer, will greatly im­prove the abil­ity to link data sets and im­prove situ­ation­al aware­ness,” Su­z­anne Spauld­ing, act­ing un­der­sec­ret­ary of the DHS Na­tion­al Pro­tec­tion and Pro­grams Dir­ect­or­ate, wrote in a Sept. 5 writ­ten re­sponse to a draft re­port.

More from Nex­t­Gov:

Obama Calls for IT Pro­cure­ment Re­form

FBI Seeks Video Re­cog­ni­tion Tech­no­logy to Auto­mat­ic­ally ID Sus­pects

FCC Eyes New Spec­trum for Wi-Fi-Type Ser­vice

What We're Following See More »
STAFF PICKS
When It Comes to Mining Asteroids, Technology Is Only the First Problem
1 days ago
WHY WE CARE

Foreign Policy takes a look at the future of mining the estimated "100,000 near-Earth objects—including asteroids and comets—in the neighborhood of our planet. Some of these NEOs, as they’re called, are small. Others are substantial and potentially packed full of water and various important minerals, such as nickel, cobalt, and iron. One day, advocates believe, those objects will be tapped by variations on the equipment used in the coal mines of Kentucky or in the diamond mines of Africa. And for immense gain: According to industry experts, the contents of a single asteroid could be worth trillions of dollars." But the technology to get us there is only the first step. Experts say "a multinational body might emerge" to manage rights to NEOs, as well as a body of law, including an international court.

Source:
STAFF PICKS
Obama Reflects on His Economic Record
1 days ago
WHY WE CARE

Not to be outdone by Jeffrey Goldberg's recent piece in The Atlantic about President Obama's foreign policy, the New York Times Magazine checks in with a longread on the president's economic legacy. In it, Obama is cognizant that the economic reality--73 straight months of growth--isn't matched by public perceptions. Some of that, he says, is due to a constant drumbeat from the right that "that denies any progress." But he also accepts some blame himself. “I mean, the truth of the matter is that if we had been able to more effectively communicate all the steps we had taken to the swing voter,” he said, “then we might have maintained a majority in the House or the Senate.”

Source:
STAFF PICKS
Reagan Families, Allies Lash Out at Will Ferrell
1 days ago
WHY WE CARE

Ronald Reagan's children and political allies took to the media and Twitter this week to chide funnyman Will Ferrell for his plans to play a dementia-addled Reagan in his second term in a new comedy entitled Reagan. In an open letter, Reagan's daughter Patti Davis tells Ferrell, who's also a producer on the movie, “Perhaps for your comedy you would like to visit some dementia facilities. I have—I didn’t find anything comedic there, and my hope would be that if you’re a decent human being, you wouldn’t either.” Michael Reagan, the president's son, tweeted, "What an Outrag....Alzheimers is not joke...It kills..You should be ashamed all of you." And former Rep. Joe Walsh called it an example of "Hollywood taking a shot at conservatives again."

Source:
PEAK CONFIDENCE
Clinton No Longer Running Primary Ads
2 days ago
WHY WE CARE

In a sign that she’s ready to put a longer-than-ex­pec­ted primary battle be­hind her, former Sec­ret­ary of State Hil­lary Clin­ton (D) is no longer go­ing on the air in up­com­ing primary states. “Team Clin­ton hasn’t spent a single cent in … Cali­for­nia, In­di­ana, Ken­tucky, Ore­gon and West Vir­gin­ia, while” Sen. Bernie Sanders’ (I-VT) “cam­paign has spent a little more than $1 mil­lion in those same states.” Meanwhile, Sen. Jeff Merkley (D-OR), Sanders’ "lone back­er in the Sen­ate, said the can­did­ate should end his pres­id­en­tial cam­paign if he’s los­ing to Hil­lary Clin­ton after the primary sea­son con­cludes in June, break­ing sharply with the can­did­ate who is vow­ing to take his in­sur­gent bid to the party con­ven­tion in Phil­adelphia.”

Source:
CITIZENS UNITED PT. 2?
Movie Based on ‘Clinton Cash’ to Debut at Cannes
2 days ago
WHY WE CARE

The team behind the bestselling "Clinton Cash"—author Peter Schweizer and Breitbart's Stephen Bannon—is turning the book into a movie that will have its U.S. premiere just before the Democratic National Convention this summer. The film will get its global debut "next month in Cannes, France, during the Cannes Film Festival. (The movie is not a part of the festival, but will be shown at a screening arranged for distributors)." Bloomberg has a trailer up, pointing out that it's "less Ken Burns than Jerry Bruckheimer, featuring blood-drenched money, radical madrassas, and ominous footage of the Clintons."

Source:
×