|
SESSION RECOMMENDATIONS |
PERCENT
|
| The
following recommendations were rated on a scale from 1 (least
important) to 9 (most important) |
Least
important --> Most important |
| Session
1.1 |
1 |
2 |
3 |
4 |
5 |
6 |
7 |
8 |
9 |
|
Strengthen
intelligence coordination among Federal, state, local government
agencies, and the international law enforcement community.
|
2
|
0
|
2
|
0
|
15
|
2
|
47
|
9
|
23
|
|
U.S.
standards developing organizations and national standards bodies
must collaborate with foreign governments to develop global
standards for cutting-edge security technologies.
|
0
|
0
|
10
|
0
|
15
|
5
|
38
|
10
|
21
|
|
Development
of a national level crisis coordination center with full time,
operational members from the key private sector infrastructures
and government components.
|
5
|
0
|
5
|
2
|
20
|
10
|
35
|
8
|
15
|
|
Encourage
companies to treat cyber-security as a management issue rather
than a technology issue
|
3
|
3
|
3
|
0
|
5
|
11
|
38
|
14
|
24
|
|
Encourage
companies to publicly report in their annual statements that
they have undertaken cyber security risk assessments, undertaken
third party audits, and developed a security program that is
overseen by executive management
|
10
|
3
|
3
|
7
|
23
|
3
|
37
|
10
|
3
|
|
|
|
|
|
|
|
|
|
|
| Session
1.2 |
1 |
2 |
3 |
4 |
5 |
6 |
7 |
8 |
9 |
|
Security
of Radio Communication Networks for first responders requires
priority attention in Homeland Security funding.
|
9
|
0
|
0
|
6
|
15
|
0
|
24
|
27
|
18
|
|
The
government should review its export control laws to strike the
proper balance between encouraging U.S. exports of computer
technology and preventing U.S. technology from being used to
attack U.S. computer systems.
|
12
|
2
|
5
|
2
|
19
|
7
|
40
|
7
|
7
|
|
Conduct
an honest assessment of Information Sharing and Analysis Centers
(ISACs) to ensure they are providing the quality and quantity of
information necessary to identify cyber attacks and trace their
origin.
|
3
|
0
|
6
|
0
|
18
|
9
|
45
|
6
|
12
|
|
The
government should improve interagency cooperation and it should
establish a single point-of-contact for the private sector to
improve cooperation.
|
5
|
0
|
11
|
0
|
27
|
5
|
19
|
8
|
24
|
|
|
|
|
|
|
|
|
|
|
| Session
1.3 |
1 |
2 |
3 |
4 |
5 |
6 |
7 |
8 |
9 |
|
Develop
threat warning and alert systems (that captures the attention of
the public and educates citizens) to fight complacency in the
average citizen's attitude towards the threat warning system and
other alert systems.
|
15
|
0
|
5
|
3
|
21
|
10
|
23
|
5
|
18
|
|
Conduct
a public-service campaign to educate consumers to the
preventative benefits of using anti-virus products, personal
firewalls, and not opening email or attachments that were not
expected.
|
5
|
0
|
5
|
0
|
11
|
5
|
32
|
14
|
27
|
|
Tax
incentives for companies to "bake" information
security into products sold to business and home users.
|
13
|
0
|
3
|
7
|
7
|
3
|
23
|
20
|
23
|
|
Develop
more ideas to incentivize business and home users with always on
connections to use a personal firewall and anti-virus product on
their home, laptop, and desktop workstations.
|
8
|
2
|
2
|
0
|
18
|
8
|
32
|
15
|
15
|
|
|
|
|
|
|
|
|
|
|
| Session
1.4 |
1 |
2 |
3 |
4 |
5 |
6 |
7 |
8 |
9 |
|
Develop
financial incentives as an effective way to stimulate
critical infrastructure investments for security cost
recovery/rate relief/technology funding/and open standards
development.
|
9
|
3
|
9
|
7
|
13
|
9
|
38
|
3
|
9
|
|
Enhance
awareness of global Internet dependencies.
|
10
|
0
|
3
|
0
|
10
|
0
|
33
|
13
|
30
|
|
Establish
a public/private consortium to examine effective and, as
appropriate, dynamic network security standards within the
energy/electricity industry.
|
0
|
6
|
8
|
0
|
14
|
3
|
36
|
19
|
14
|
