The US Department of Commerce and the US Department of Homeland Security have issued a draft report on strengthening action against botnet networks and other automated threats to the White House. The draft states that the United States should continue to work closely with international partners on distributed and widespread electronic security attacks Botnet attacks as a global problem.
The report comes in response to the Presidential Executive Order of 11 May 2017 on Strengthening Cybersecurity for Federal Networks and Infrastructure, recommending increased Internet flexibility and environmental communication against these threats, many of which come from outside the United States.
The Executive Order instructed the Ministers of Trade and Internal Security to conduct an open and transparent process to identify and promote action by appropriate stakeholders with a view to significantly reducing the threat of automatic and distributed attacks.
As part of its research, departments collected a range of inputs and contributions from experts and stakeholders in the private sector, academia and civil society and worked in consultation with the Ministries of Defense, Justice, the State, the Federal Bureau of Investigation, sector-specific agencies, the Federal Communications Commission, the Federal Trade Commission and other interested agencies.
The report said there were effective tools against botnet networks, but they were not widely used, as the tools, processes and practices needed to significantly enhance the resilience of the Internet and the ecosystem for communications were widely available and routinely applied to selected market sectors.
These tools, processes and practices are not part of common product development and dissemination practices in many other sectors, due to a variety of reasons, including lack of awareness, cost avoidance, inadequate expertise and lack of market incentives.
One of the recommendations of the report is the need to secure products throughout the lifecycle, adding that machines that are at risk at the time of deployment or lack the necessary facilities to correct vulnerabilities after they are discovered or remain in service after vendor support has ended. The combination of automated and distributed threats is very easy .
There is also a need for greater awareness and awareness of threats. Companies often lack the knowledge of the role their devices can play in the botnet attack, and may not be fully aware of the advantages of the technical controls available. Developers of manufacturers, From situations to knowledge and skills to deploy tools, processes and practices that make the ecosystem more flexible.
"Cyber security may be one of the most serious threats we face," said Wilbur Ross, US Commerce Secretary. "President Trump recognizes the need to strengthen our networks, and this administration is doing everything in its power to prevent bad actors from infiltrating our vital electronic infrastructure."
The report lists five complementary objectives that will improve the resilience of the ecosystem is to identify a clear path towards a sustainable, sustainable and secure technological market, enhance innovation in dynamic adaptation infrastructure with evolving threats, and promote innovation to prevent, detect and mitigate bad behavior across networks and build alliances between security and infrastructure Local and worldwide technology communities, and awareness-raising and education across the ecosystem.
The report also pointed out that market incentives should be more effective, as they do not appear to be in line with the Executive Order's goal of significantly reducing the threat of automated and distributed attacks. Product developers, manufacturers and vendors are motivated to reduce the cost and time required for marketing, Instead of building securely or providing effective security updates, market incentives must be re-organized to promote the best balance between security and convenience when developing products.
