What does the new US cybersecurity strategy foresee?
According to the new US National Cybersecurity Strategy, the main threats to the current digital ecosystem come from China, Russia, Iran and North Korea. The Biden administration is pushing for more comprehensive federal regulations to keep the cyber domain safer against hackers
The US wants more private sector accountability for cybersecurity.
On March 2, the White House unveiled the new national cybersecurity strategy, outlining long-term goals for how citizens, government and businesses can operate securely in the digital world. The new strategy replaces a document issued in 2018 by the Trump administration. In particular, the new strategy prepared by the Biden administration calls for stricter regulation of existing cybersecurity practices in all sectors and better collaboration between the government and the private sector.
High-profile hacker attacks on organizations in the United States have increased recently, not to mention that cyber warfare has figured prominently amid the military conflict between Russia and Ukraine, Reuters points out.
To counter them, the Biden administration is putting in place a strategy made up of five pillars, among which the defense of critical infrastructures, the contrast to the protagonists of the threats, the promotion of resilience and security, the construction of a more ready future ecosystem to react to hacker attacks and the creation of international partnerships that can counter future challenges.
All the details.
THE OBJECTIVE OF THE NATIONAL STRATEGY FOR CYBERSECURITY USA
"The National Cybersecurity Strategy" aims to "guarantee all the advantages of a safe and secure digital ecosystem for all Americans" so that cyberspace is "a tool to achieve our goals" in respect of human rights and freedoms fundamentals, reads the text published by the White House.
The United States underlines that it is necessary to "rebalance the responsibility to defend cyberspace" and "the government must use all the instruments of national power in a coordinated way to protect our national security, public safety and economic prosperity".
MORE RESILIENT DIGITAL ECOSYSTEM
“Our goal is a defensible and resilient digital ecosystem where it is more costly to attack systems than to defend them, where sensitive or private information is safe and secure, and where neither accidents nor errors result in catastrophic systemic consequences” he said. still read.
STRONGER FEDERAL REGULATION NEEDED
To achieve these goals, previous administrations' approaches to cybersecurity focused more on voluntary public-private partnerships and information sharing practices. While Biden's White House strategy also seeks to strengthen cooperation with the private sector, it is the first to push for more comprehensive federal cybersecurity regulation, Voanews comments.
Establishing targeted requirements for critical infrastructure is a "major shift" from the White House's previous cyber strategies, said a senior administration official quoted by Breaking Defense .
THE AMERICAN CYBER-SOCIAL CONTRACT REINVENTED
"The president's strategy fundamentally reinvents America's cyber-social contract," Kemba Walden, acting national cyber director, said on a call with reporters. “It will rebalance the responsibility of managing cyber risk onto those who are best able to bear it,” he added.
“This strategy goes beyond those issued by previous administrations and takes a more prescriptive approach to cyber rules,” said Anne Neuberger, deputy national security adviser for information and emerging technology.
NATIONAL SECURITY AT RISK IN CYBERSPACE
After that, the White House document highlights how "tools for hacker attacks" are "now widely accessible" and "the governments of China, Russia, Iran, North Korea and other autocratic states" "are aggressively using advanced information technologies to pursue objectives contrary to our interests and international norms". Specifically, "their reckless disregard for the rule of law and human rights in cyberspace is threatening the national security and economic prosperity of the United States," reads the published text listing the current growing threats.
THE CHINESE THREAT
With reference to the key players to counter, the White House underlines that China "now represents the largest, most active and most persistent" cyber "threat both for the government and for American private sector networks".
AND THAT RUSSIAN
After Beijing, Washington identifies the risk coming from Moscow: “For more than two decades, the Russian government has used its cyber capabilities to destabilize its neighbors and interfere in the internal politics of democracies around the world. Russia remains a persistent cyber threat” and is refining its “espionage” and disinformation weapon. “Russia's cyberattacks in support of its brutal and unprovoked invasion of Ukraine in 2022 have resulted in irresponsible repercussions on critical civilian infrastructure in other European countries,” the document adds.
BUT ALSO FROM IRAN AND NORTH KOREA
But the governments of Iran and North Korea are also increasing the degree of "sophistication and willingness" in hacking attacks. Tehran has “used cyber capabilities to threaten US allies in the Middle East and elsewhere, while North Korea conducts cyber activities to generate revenue through cryptocurrency theft, ransomware.” Further "maturation of these capabilities could have a significant impact on the interests of the United States, allies and partners," notes Washington.
STRENGTHEN COLLABORATION WITH ALLIES
Finally, the text of the national cybersecurity strategy reads, “since the majority of malicious cyber activities targeting the United States are carried out by actors based in foreign countries or using foreign IT infrastructure, we need to strengthen cooperation mechanisms with our allies and partners so that no adversary can evade the rule of law".
This is a machine translation from Italian language of a post published on Start Magazine at the URL https://www.startmag.it/innovazione/cosa-prevede-la-nuova-strategia-usa-di-cybersecurity/ on Sat, 04 Mar 2023 09:01:22 +0000.