Obama cyber czar pick looks to secure smartphones, social nets
Calls on social media firms to alert users about various security threats
Network World - In choosing Howard Schmidt as cybersecurity czar, President Obama has someone who has held a similar job in a previous administration, has varied experience at high-level corporate jobs, was a frequent panelist at security conferences and who has even written a book on defending the Internet.
Schmidt served under President George W. Bush for three years, ultimately resigning after producing the "National Strategy to Secure Cyberspace."
Because of his high profile past as CSO of Microsoft and CISO of eBay, during which he spoke often at public forums, there is a broad record of his thoughts on network security, from smartphone threats to equating cyber security to physical security. ( See Ten 2010 IT Security Predictions)
The new cybersecurity coordinator favors government promotion of education, research and prodding vendors to produce more secure products that will work their way into everyday use.
"What is the government doing to make sure universities and companies have dollars to do research that will enhance security?" Schmidt said in a 2008 interview with Computerworld. "There is R&D that needs to be done that may not benefit homeland security but it might create the next generation of the Internet that is more secure."
He thinks Internet security is greatly improved since the mid-1990s when he ranked the impact of a foreign cyberattack in the United States at 5 or 6 on a scale of one to 10, with 10 meaning attacks would have no effect. That has improved to 8 or 9 because the number of attack vectors has been reduced. "We have the ability to turn back attacks. We also could shut down systems that might be under attack and bring them internal," he says.
Getting cybersecurity considered as important as physical security -- such as protecting planes and ports -- was a hurdle that is being overcome. Schmidt says he realizes the country can't have two No. 1 priorities, but it needs to boost the effort put behind cybersecurity. "The government has recognized that work has to be done. We're getting much closer to having them on equal footing," he says.
In past interviews, he has said smartphones and other such mobile devices generate the most concern. "What they've been attacking on the desktop, they'll starting attacking in our mobile devices as they become more like PCs in our pockets. We can't wait five years to do something about it. We have to do something now," he said
He has a subtle view of exactly what terrorists are likely to attack and what they are likely to preserve as potential tools for propaganda. For instance, they might leave cell phone networks and the Internet infrastructure in general intact rather than try to take them down. "Terrorists now can push Bin Laden videos to mobile phones," he says. "They're doing podcasts and Webcasts. To attack the Internet is not in their best interests because they'd suffer like everyone else."
- 15 Non-Certified IT Skills Growing in Demand
- How 19 Tech Titans Target Healthcare
- Twitter Suffering From Growing Pains (and Facebook Comparisons)
- Agile Comes to Data Integration
- Slideshow: 7 security mistakes people make with their mobile device
- iOS vs. Android: Which is more secure?
- 11 sure signs you've been hacked
- The 12 PCI DSS 3.0 requirements addressed by Peer 1 Hosting This handy quick reference outlines the 12 PCI DSS 3.0 requirements, who needs to be compliant and how Alert Logic solutions address the...
- Defense Throughout the Vulnerability Life Cycle This whitepaper provides insight into how to leverage threat and log management technologies to protect your IT assets throughout their vulnerability life cycle.
- Mobile Policy Checklist Here's what to consider when putting together a mobile policy designed to support a highly productive workforce.
- Securing BYOD Mobile computing is becoming so ubiquitous that people no longer bat an eye seeing someone working two devices simultaneously. Individuals and organizations are...
- Live Webcast On-demand webinar: "Mobility Mayhem: Balancing BYOD with Enterprise Security" Check out this on-demand webinar to hear Sophos senior security expert John Shier deep dive into how BYOD impacts your enterprise security strategy...
- Live Webcast Endpoint Backup & Restore: Protect Everyone, Everywhere Arek Sokol from the bleeding-edge IT team at Genentech/Roche explains how he leverages cross-platform enterprise endpoint backup in the public cloud as part...
- Streamline Software Asset Management, Compose a software Management Symphony Keeping track of your organization's software is easy with effective software management solutions from CDW. View the videos in our software solutions channel
- Druva inSync: Endpoint Data Protection & Governance CLICK HERE to watch this video about protecting corporate data on laptops and mobile devices, sponsored by Druva. All Security White Papers | Webcasts