Entries Tagged as 'Critical Infrastructure Protection'

A New Approach to Cyber Incident Response

Critical Infrastructure Protection , Vulnerability Analysis No Comments »

By Anne Connell
Design Team Lead
CERT Cyber Security Solutions Directorate 

This blog post was co-authored by Tim Palko. 

Anne ConnellAccording to a report issued by the Government Accountability Office (GAO) in February 2013, the number of cybersecurity incidents reported that could impact “federal and military operations; critical infrastructure; and the confidentiality, integrity, and availability of sensitive government, private sector, and personal information” has increased by 782 percent—from 5,503 in 2006 to 48,562 in 2012. In that report, GAO also stated that while there has been incremental progress in coordinating the federal response to cyber incidents, “challenges remain in sharing information among federal agencies and key private sector entities, including critical infrastructure owners.” Progress in this area was hindered by “difficulties in sharing and accessing classified information and the lack of a centralized information-sharing system,” the report stated. This blog post describes a tool that members of the CERT Cyber Security Solutions (CS2) Directorate are developing to provide the various agencies and organizations that respond to cyber incidents a platform by which to share information and forge collaborations.