米国商務省 Cybersecurity, Innovation and the Internet Economy
こんにちは、丸山満彦です。米国商務省のインターネットタスクフォースがCybersecurity, Innovation and the Internet Economyという報告書を公表していますね。。。
■the Department of Commerce
・2011.06.08 Commerce Department Proposes New Policy Framework to Strengthen Cybersecurity Protections for Businesses Online
・・Cybersecurity, Innovation and the Internet Economy Green Paper
=====
Executive Summary
I. Introduction
A. Cybersecurity today
II. Defining the internet and information innovation sector
III. Facing the challenges of cybersecurity: developing policy recommendations for the future
A. Creating a nationally recognized approach to minimize vulnerabilities for the i3s
1. Developing and promoting i3s-specific voluntary codes of conduct
2. Promoting existing keystone standards and practices
3. Promoting automation of security
4. Improving and modernizing security assurance
B. Building incentives for i3s
1. Develop the right mix of incentives to promote adoption of cybersecurity best practices
2. Using security disclosure as an incentive
3. Facilitating information sharing and other public/private partnerships in the i3s to improve cybersecurity
C. Education and research
1. Develop better cost/benefit analysis for i3s security
2. Creating and measuring i3scybersecurity education efforts
3. Facilitating research & development for deployable technologies
d. Ensuring standards and practices are global
IV. Conclusion
Appendix a: summary of proposed recommendations and questions for further discussion
Appendix b: widely recognized security standards and practices.
Appendix c: acknowledgements
=====
【参考】
■Harumichi Yuasa's Blog
・2010.06.11 アメリカ連邦商務省の情報セキュリティに関する報告書 II ・2010.06.10 アメリカ連邦商務省の情報セキュリティに関する報告書
« DHS - FY 2011 CIO FISMA Reporting Metrics Ver. 1.0 | Main | データベース・セキュリティ・コンソーシアム 緊急提言:オンラインサービスにおけるデータベースと機密情報の保護 »
Comments