re: Executive Order Calls for Collaboration on Cybersecurity
No doubt it's a matter of due diligence to have the NIST, or somebody, "to lead the
development of a framework of cybersecurity practices to reduce cyber
risks to critical infrastructure" At the same time, it's critical that any standards be a baseline upon which the defenders must be encouraged to creatively probe the perimeter and stay a step ahead of the attackers. The danger here is a failure of imagination relative to that of the hackers. There's a great deal at stake here for any financial or other institution that maintains personal information. Not to mix my metaphors too much, but if there was ever a time to circle the wagons, the Wild West of cybercommerce and cybercrime is it.