Cybersecurity in the federal government: Failing to maintain a secure cyber infrastructure

摘要

EDITOR'S SUMMARY Since the first cybera??attack in 1988, online viruses have proliferated through personal, organizational and government computers worldwide with devastating consequences. Concern was raised in 1999 regarding potential effects on the nation's poorly protected nuclear weapons, and further reports have highlighted flaws in the country's information infrastructure that put national security, public safety and personal privacy at risk. A 2014 report revealed the alarming frequency of attacks on government systems and agencies, gaps in awareness and response and minimal disclosure. Software protections are often nonexistent, ineffective or simply unused and insufficient to match rapidly advancing technology. Lack of leadership, expertise, funding, time and other resources adds to the challenge. Creation and implementation of cybersecurity policy standards have been thwarted by conflict over public and private sector roles, capabilities and inaction, and compliance with existing standards is negligible and ineffective. Joint pressure from the public and government will be needed for meaningful action.