DNC hack was not the only cybersecurity discussion at the convention
Regardless of who did it and what they uncovered, the DNC hack shows the importance of strong cybersecurity technologies and policies.
It’s safe to say cybersecurity played a pretty significant role at the Democratic National Convention in Philadelphia last week.
The hack of the Democratic National Committee (DNC) illustrates how cyberattacks can not only cause financial and reputational damage, but also how they could potentially impact a presidential election campaign.
Stopping attackers who gain the “keys to the kingdom”
While we don’t yet know with certainty the means by which the cyber attackers gained access to the DNC, odds are strong that identities were compromised along the way. This calls for increased focus on identity and access management technologies. In particular, privileged access management technologies must limit the damage caused by an attacker who has gained the “keys to the kingdom.
On the policy side, CA Technologies recommends that the federal government continue to work with industry and academia to fund research and development of next-generation authentication technologies.
Cybersecurity in the democratic platform
The 2016 Democratic Platform calls for the establishment of global norms in cyberspace, and for imposing consequences on those who violate the rules. Nation states are able to deploy vast resources towards offensive cyber capabilities, which can overwhelm private industries and organizations. CA Technologies agrees that global norms for cyberspace should be developed and adopted, lest we witness an even more damaging proliferation of cyber-attacks, which will put economies and critical infrastructure at risk across the globe.
Similar to the Republican Platform, the Democratic Platform calls for the modernization of federal information technology and the strengthening of government cybersecurity. CA applauds this focus on improving federal cybersecurity in both party platforms as this will increase trust in government services and strengthen our collective security.
The Democratic Platform also supports a national commission on digital security and encryption. As I stated in my blog last week about cybersecurity policy at the Republican National Convention, CA Technologies recognizes that this is a difficult issue, which will require trade-offs and which should reflect a consensus of the broad range of industry, security and privacy stakeholders.
Investing in our technological future
Finally, I was able to attend a technology policy briefing with a Policy Advisor to Secretary Hillary Clinton, and was encouraged to hear a strong focus on Science, Technology, Engineering and Math (STEM) education. CA is a strong supporter of STEM initiatives. We are facing a technology and cyber workforce shortage, and improved computer science education will be critical to our ability to compete.
CA is happy to see strong commitments to cybersecurity and to the protection of cross-border data flows from both parties. As I stated last week, we also hope to work with the incoming Administration on implementation of automated cyber threat information sharing programs and on bolstering the Framework for Improving Critical Infrastructure Cybersecurity.
What did you think of the parties’ positions on cybersecurity policy? What did you like or not like? What is missing? I invite you to comment below.