The Comprehensive National Cybersecurity Initiative (CNCI) that was established by classified presidential directive (NSPD 54 and HSPD 23) in January 2008 is deliberately opaque, and there is little specific information in the public domain about its conduct or performance to date.
“Much remains unknown about the CNCI due to the classified nature of the presidential directives and supporting implementation documents,” says a new report (pdf) from the Congressional Research Service.
But the CRS report summarizes what has been disclosed, and illuminates many of the ensuing questions raised by the Initiative. These include the extent of its underlying legal authority; the respective roles of the executive and legislative branches on cybersecurity; the involvement of the private sector; the impact of privacy considerations; and even the possibility that offensive or defensive cybersecurity activities would fall into the category of “covert action.”
See “Comprehensive National Cybersecurity Initiative: Legal Authorities and Policy Considerations,” March 10, 2009.
“A chief concern” about the Initiative, the Senate Armed Services Committee declared last year, “is that virtually everything about [it] is highly classified, and most of the information that is not classified is categorized as `For Official Use Only’.”
“These restrictions preclude public education, awareness, and debate about the policy and legal issues, real or imagined, that the initiative poses in the areas of privacy and civil liberties. Without such debate and awareness in such important and sensitive areas, it is likely that the initiative will make slow or modest progress. The committee strongly urges the administration to reconsider the necessity and wisdom of the blanket, indiscriminate classification levels established for the initiative.” (“Cyber Security Initiative is Too Secret, SASC Says,” Secrecy News, May 15, 2008.)
On February 9, 2009 President Obama ordered a 60-day review of cybersecurity policy.
As the United States continues nuclear modernization on all legs of its nuclear triad through the creation of new variants of warheads, missiles, and delivery platforms, examining the effects of nuclear weapons production on the public is ever more pressing.
“The first rule of government transformation is: there are a lot of rules. And there should be-ish. But we don’t need to wait for permission to rewrite them. Let’s go fix and build some things and show how it’s done.”
To better understand what might drive the way we live, learn, and work in 2050, we’re asking the community to share their expertise and thoughts about how key factors like research and development infrastructure and automation will shape the trajectory of the ecosystem.
Recognizing the power of the national transportation infrastructure expert community and its distributed expertise, ARPA-I took a different route that would instead bring the full collective brainpower to bear around appropriately ambitious ideas.