Despite the warnings of generals, intelligence officers, corporate cyber security experts, and academic experts that America is dangerously vulnerable to attack in cyberspace, John McCain and the right wing Chamber of Commerce succeeded in blocking Senate action to improve our ability to defend America against cyber attack. They said they believed that the bill would create onerous federal regulation. Any objective observer would quickly see that there was no such regulation in the bill, but rather a set of industry created, voluntary standards. Even that was too much for the ideologues who believe that private sector companies are better off without any government assistance and can defend themselves from sophisticated cyber attack, despite the overwhelming evidence to the contrary. For a man who campaigned for president on the slogan "Nation First" it was a stunning display of placing partisan and ideological interests ahead of the national security interest.
To be clear, what is at stake here is America's economic competitiveness, something the naive might think a chamber of commerce would champion. Once upon a time, before it became the bastion of knee jerk right wing economic dogma, the chamber of commerce put things like global competitiveness and national security ahead of partisanship and ideological purity. Now, it and its well funded lobbying machine, have killed a bill that would have addressed the most significant current threat to America's ability to compete with China economically and to defend ourselves against potentially devastating cyber war in the future.
In case you have missed the constant drum beat of reporting, China is systematically stealing American corporate secrets, research and development, transactional data, and anything else that is on our corporate computer networks. The four star Army general in charge of Cyber Command has called this "the greatest transfer of wealth in history."
Not satisfied to steal our competitiveness data, China and other nations have placed cyber bombs on such things as our electric power grid control systems. The officers of the government charged with defending us against this sort of threat have made it very clear that they think they need new authorities to help them defend against this real and new kind of warfare. And they have been denied what they need by John McCain and the Chamber of Commerce.
The president went around earlier in the year saying "if congress won't act, I will." He needs now to apply that general concept to the specific problem of cyber security. By the powers invested in him by the Constitution, by the Homeland Security Act, and other laws, the president can by executive order achieve most of what was contemplated in the cyber security bill that has run aground in the monied morass of Capital Hill. He can provide for information sharing about cyber threats with private sector companies that run critical infrastructure. He can create voluntary standards for those industries. He can call upon the existing regulatory bodies to improve their oversight of cyber security. He can use federal procurement power to create incentives for companies to improve their cyber security. And he can direct federal agencies to safeguard key networks and control systems from foreign logic bombs.
Recently the president participated in a war game with members of his cabinet. In the exercise, he came face to face with the kind of devastation a national cyber attack on America could wreak. He would be derelict in his duty, if he allowed us to continue on without a national plan to defend against a major cyber attack. But the truth is today that America has neither a plan nor the capabilities needed to prevent the on going cyber espionage against our companies and an even more damaging potential cyber war attack against our privately owned critical infrastructure.
The president could let the Congressional farce continue on the issue of cyber security, with resulting inaction. He might score some partisan points that way, pointing out the craven hypocrisy of those who stand in the way of addressing this serious issue. That course, however, would be inconsistent with his Constitutional duty to protect the nation from significant threats. He should issue an Executive Order to improve our cyber defenses now.
In our nation of so-called freedoms, we have to deal with irresponsible interference by irresponsible people on the right in Congress who put self interest ahead of that of the nation.
Anyone wanna bet these companies give overwhelmingly to the GOP.
It is not the government's job to protect companies too lazy or incompetent to protect themselves, particularly when that dubious "protection" has the potential to interfere with the free internet.
Wanna bet these are some of the same contractors that keep charging those "cost over runs".
We end up with some grotesque pot-belly TSA clown stickin'-hands-down-our-pants.
It has nothing to do with "American competitiveness" because the libor-interest rates is a FRAUD!
Rather, "security" to these people is the growth of the MIC.
Some of these people have watched too many TV shows, and the movie "War Games" 10 or 15 times, believe everything is attached to the internet, thus is at risk. While cyber security is important, people must realize that congress proposed making internet companies like Google police user traffic, damn, I thought that was the big gripe about Google, keeping too much information. While there are cyber dumb companies out there, most have competent I.T. departments, that keep the good stuff safely stashed on on discreet systems. The biggest risk to computer security is (drum roll) politicians, they approve funding for the lowest bidder, thus get a system that has critical security risk to publicly owned enterprises, such as power systems, data bases with personal information, and public employee data.
If they are industry-created, voluntary standards, why would they need to be in a government bill?
International businesses are not all WalMarts, they are a source of political patronage and, therefore, of international espionage. Cybersecurity, just look at China, is an important political tool that should not be controlled by American business interests and Republicans. It needs a law enforcement arm in charge of it in order for this country not to be undermined, if not betrayed, by international interests. It's too bad we don't have a writer like Michael Crichton anymore to dramatize this. I don' t know if Tom Clancy is up to it.
Talking points are fun to memorize and fling around.
But this is a threat to every American. Obstructing these important defensive mechanisms is the same as buying airline tickets for Al Queda operatives.
I would appreciate it, Mr. Clarke (or any interested reader), if you would point out exactly where in the Constitution it is stated that it is the duty of the President to "protect the nation from significant threats."
I, for one, am tired of this fear-mongering.