2013 Defense Budget Outlines New Mandates to Enhance Cybersecurity
The New Year brought with it renewed hope for improving U.S. cybersecurity as President Obama on Thursday signed off on the $633 billion 2013 National Defense Authorization Act (NDAA).
The nearly 700-page bill, which passed the House and Senate in December, authorizes appropriations for Defense Department activities in fiscal year 2013, including improvements to DOD’s capabilities in cyberspace.
Among the bill’s provisions, the department will be required to “develop a strategy to acquire next-generation host-based cybersecurity tools and capabilities” to better detect threats and defend government systems.
Seemingly in acknowledgement of the changing face of the cyber threat, the provision also requires that new security solutions “be compatible with cloud-based, thin-client and virtualized environments as well as battlefield devices and weapons systems.”
With continued reports of nation state-sponsored hacking, the 2013 NDAA appropriates funding to “expand capacity to succeed against adversary states armed with advanced anti-access capabilities and/or nuclear weapons and improve capabilities to conduct effective operations in cyberspace.”
According to DOD’s review of the approved budget, $3.4 billion of the 2013 funding will assist the U.S. Cyber Command with ensuring “our military is ready to effectively operate in cyberspace across the full range of cyber contingencies.”
Defense contractors will also face new mandates, being required to follow certain procedures to report when one of their networks or information systems has been penetrated, including providing “a description of the technique or method used in such penetration; a sample of the malicious software, if discovered and isolated by the contractor, involved in such penetration; [and] a summary of information created by or for the department in connection with any department program that has been potentially compromised due to such penetration.”
With talks of sequestration through much of 2012, President Obama initially proposed a defense budget of $613.9 billion for fiscal 2013. On Thursday, he signed into law the 2013 $633 billion NDAA, coming in at $29 billion under the $662 billion in defense funding authorized for 2012.
“I have approved this annual defense authorization legislation, as I have in previous years, because it authorizes essential support for service members and their families, renews vital national security programs, and helps ensure that the United States will continue to have the strongest military in the world,” Obama said in a statement. “Though I continue to oppose certain sections of the Act, the need to renew critical defense authorities and funding was too great to ignore.”
The president did not list any of the cybersecurity mandates among certain sections of the bill he opposed, further fueling rumors that a White House cyber executive order may soon be on its way.
Following are some additional cyber headlines you may have missed:
Obama may issue cybersecurity order in early January (SC Magazine)
Oman leads cybersecurity strategy at annual conference (Times of Oman)
UK to launch public cybersecurity awareness campaign (ComputerWeekly)
Cyber attack ‘stole secret trade info’ of Japanese government (Daily Yomiuri)
Anonymous: ‘Expect us 2013’ (CNET)
Army says hacker got Fort Monmouth personal info (Associated Press)
Council on Foreign Relations gets hacker Happy New Year (Discovery News)
Hacker AnonAcid publishes data on 50,000 Ohio residents (eSecurity Planet)
6 big cybersecurity predictions for 2013 (VentureBeat)
Cybersecurity New Year’s resolutions for all PC users (NetworkWorld)
Four cybersecurity items that need less talk and more action (Computerworld)
A summary of the top 2013 cybersecurity predictions (Government Technology)
This report is also available on ClearanceJobs.com at: http://www.clearancejobs.com/defense-news/1048/cybersecurity-news-round-up-2013-defense-budget-outlines-new-mandates-to-enhance-cybersecurity
- RT @techreview: A barrier between women and engineering is representation. As the adage says, "you can't be it if you can't see it." https:… - 3 months ago
- IBM Watson inches from research to reality for cybersecurity fortune.com/2016/12/06/ibm… - 3 months ago
- Shamoon virus returns in new Gulf cyber attacks after 4-year hiatus reut.rs/2gN5JYd - 3 months ago
- New code injection method @enSiloSec found exposes all versions of Windows to cyberattack zd.net/2eVz3t6 - 5 months ago