How do we measure cybersecurity? Two new products—one from BSA/the Software Alliance and the other from the Department of Homeland Security—provide some new insights that are worthy of study.
Latest in CISA
DHS has unveiled the CISA portal ... three months ago. If we’re going to have a debate about information sharing as government overreach, it's important to examine the law in the context of the actual system.
We’re back from hiatus with a boatload of news and a cautiously libertarian technologist guest in Nick Weaver of the International Computer Science Institute in Berkeley.
What good is CISA, anyway?
Are Russian hacker-spies a bunch of lethargic government drones more interested in smash-and-grabs than stealth? That’s one of the questions we pose to Mikko Hypponen in episode 86.
Our guest for episode 77 is Bruce Andrews, the deputy secretary of the Commerce Department. Alan Cohn and I pepper Bruce with questions about export controls on cybersecurity technology, stopping commercial cyberespionage, the future of the NIST cybersecurity framework, and how we can get on future cybersecurity trade missions, among other things.
In the news roundup, Alan and I puzzle over the administration’s reluctance to blame China for its hacks of US agencies.
Privacy advocates are embracing a recent report recommending that the government require bulk data retention by carriers and perhaps web service providers, exercise extraterritorial jurisdiction over data stored abroad, and expand reliance on classified judicial warrants. In what alternative universe is this true, you ask? No need to look far. That’s the state of the debate in our closest ally. The recommendations were given to the United Kingdom by an independent reviewer, David Anderson.