Defense Department Cyber Efforts: Definitions, Focal Point, and Methodology Needed for DOD to Develop Full-Spectrum Cyberspace Budget Estimates

摘要

DOD has planned and budgeted for information assurance programs for fiscal year 2012 and has projected future years spending for these programs. However, DOD does not yet have an overarching budget estimate for full-spectrum cyberspace operations including computer network attack, computer network exploitation, and classified funding. During February and March 2011, DOD provided Congress with three different views of its cybersecurity budget estimates for fiscal year 2012 ($2.3 billion, $2.8 billion, and $3.2 billion, respectively) that included different elements of DOD's cybersecurity efforts. The three budget views are largely related to the Defense-wide Information Assurance Program and do not include all full-spectrum cyber operation costs, such as computer network exploitation and computer network attack, which are funded through classified programs from the national intelligence and military intelligence program budgets. In addition, according to U.S. Cyber Command officials, the command was being established as the fiscal year 2012 information assurance budget was being developed, and therefore its funding was not coded as information assurance and consequently not included in the $2.8 billion President's budget submission. However, U.S. Cyber Command officials expect that command funding will be included in the fiscal year 2013 information assurance budget.