Implementing the Federal Cybersecurity R&D Strategy

Today our Nation's security, economic progress, and modern lifestyle all rely upon maintaining a trustworthy digital infrastructure that is resilient and responsive to threats. Critical life-sustaining infrastructures—such as the ones that deliver electricity and water, control air traffic, and support our financial system—all depend on networked information systems making up the Nation's cyberinfrastructure. Information and communication capabilities and technologies have become indispensable to Federal agencies to fulfill their mission responsibilities, but securing these complex and ever-evolving systems poses a formidable technical challenge. After an intensive and deliberate process involving many interactions among the government, industry, and academia, in December 2011 the National Science and Technology Council (NSTC) released Trustworthy Cyberspace: Strategic Plan for the Federal Cybersecurity Research and Development Program, a framework for a set of coordinated Federal strategic priorities and objectives for cybersecurity research. Research and Development (NITRD) Program with input from the agencies participating in NITRD on their activities supporting the objectives outlined in the Strategic Plan. The review also considers the public comments on the Strategic Plan that the government solicited. Finally, this report outlines additional technologies and research areas that need further emphasis for the future version of the Strategic Plan. We are pleased to commend the vigorous response by NITRD agencies to the Federal Cybersecurity R&D Strategic Plan. The findings in this report represent a comprehensive, coordinated, and collaborative effort to secure the Nation's critical cyberinfrastructure. We look forward to continuing this important work with agencies in the coming months as we manage and respond to current and new cybersecurity priorities, and as we prepare for future updates to the Federal Cybersecurity R&D Strategic Plan. Preface Improving the security and safety of cyberspace—the interconnected information infrastructure of telecommunications networks and computer systems—has been an important priority of President Obama's Administration. Beginning with the Cyberspace Policy Review: Assuring a Trusted and Resilient Information and Communications Infrastructure, 1 the President mandated and launched a full spectrum of activities to eliminate or reduce cyberspace vulnerabilities and risks to the Nation's economic and social prosperity. In addition, the President challenged Federal agencies to develop a framework for game-changing cybersecurity research with the goal of fundamentally improving the security, safety, and trustworthiness of the Nation's digital infrastructure. 2 a framework for a set of coordinated Federal strategic priorities and objectives for cybersecurity research. The Strategic Plan was the result of a continuing dialogue between Federal agencies conducting cybersecurity research, agencies …