Slashdot Mirror

← Back to Stories (view on slashdot.org)

US Cybersecurity Chief Beckstrom Resigns

Posted by Soulskill on from the take-this-job-and-shove-it dept.

nodialtone writes with a Reuters report that Rod Beckstrom, director of the National Cybersecurity Center (NCSC), has tendered his resignation, citing clashes between the NCSC and the NSA with regard to who handles the nation's online security efforts. In his resignation letter (PDF), he made the point that "The intelligence culture is very different than a network operations or security culture," and said he wasn't willing to "subjugate the NCSC underneath the NSA." He also complained of budget roadblocks which kept the NCSC from receiving more than five weeks of funding in the past year. Wired has a related story from late February which discusses comments from Admiral Dennis Blair, director of National Intelligence, who thinks cyber security should be the NSA's job to begin with.

30 of 117 comments (clear)

  1. The latest as they go by by Anonymous Coward · · Score: 4, Funny

    Security is like virginity...once compromised it is lost forever.

  2. another decent man leaves government in disgust by jmcvetta · · Score: 5, Insightful

    From Mr Beckstrom's resignation letter: "In addition, the threats to our democratic processes are significant if all top level government network security and monitoring are handled by any one organization (either directly or indirectly."

    Amen, brother.

    1. Re:another decent man leaves government in disgust by Anonymous Coward · · Score: 2, Funny

      Clean up your fucking country already

      Says the man from the perfect, anonymous country.

    2. Re:another decent man leaves government in disgust by jmcvetta · · Score: 4, Insightful

      Clean up your fucking country already.

      Some of us are trying to do just that...

    3. Re:another decent man leaves government in disgust by PolygamousRanchKid+ · · Score: 4, Insightful

      Yeah, like, what happened to that concept of "Checks and Balances" that Founding Fathers thought up in a steamy room in Carpenter's Hall in Philadelphia?

      So now the agency in charge of breaking security, and spying on people, should now be in charge of guaranteeing security?

      I better check the latest release notes, it seems that "Checks and Balances" has now been deprecated.

      --
      Schroedinger's Brexit: The UK is both in and out of the EU at the same time!
    4. Re:another decent man leaves government in disgust by Antique+Geekmeister · · Score: 4, Insightful

      No, that's Congress's and the Supreme Court's job. They haven't been doing it lately.

      The reason for competing departments in the US Executive department is to provide a department willing to disagree, and possibly arrest or even shoot, members of the other department to prevent mutiny against the President's orders.

    5. Re:another decent man leaves government in disgust by lseltzer · · Score: 5, Informative

      They didn't think up checks and balances, they just implemented Montesquieu's theories in a more thorough and novel way than had been done. And it wasn't Carpenter's Hall, it was Independence Hall, then I think still called the Pennsylvania State House.

    6. Re:another decent man leaves government in disgust by sgt_doom · · Score: 2, Insightful

      Outstanding points all. While I have little faith in any US agencies at present, I do recall that the USAF Intelligence officially went on record, prior to the illegitimate Iraqi invasion by Cheney/Bush, as to their complete disagreement with Cheney's doctored CIA intel on the matter.

      Also, awhile back when the USAF created its Cyber Security Command (or something like that), Cheney immediately shut it down.

      Good recommendations all for the USAF being in charge of cyber security.....

    7. Re:another decent man leaves government in disgust by Mikkeles · · Score: 2, Insightful

      '... threats to our democratic processes are significant if all top level government network security and monitoring are handled by any one organization... '

      Like the government?

      --
      Great minds think alike; fools seldom differ.
    8. Re:another decent man leaves government in disgust by nfc_Death · · Score: 4, Insightful

      All of those points the UK has done either long before the US or worse than the US. In fact the UK does not even have anything in place to protect their citizens privacy. Albeit slightly crippled lately at least the US has that. Im a canuck and we're idiots too, at least we can admit it. Suffice it to say, so far all attempts at men leading men have failed utterly.

    9. Re:another decent man leaves government in disgust by mi · · Score: 2, Insightful

      Also, awhile back when the USAF created its Cyber Security Command (or something like that), Cheney immediately shut it down.

      And rightly so. Cyber security has nothing to do with flying planes, and so it did not belong to the US Air Force any more than to the Agriculture Department.

      Yes, I am well aware that military branches have overlapping services (such as Marines having their own planes), but for USAF to have the main anti-hacking command — beyond what's needed to secure their own networks — would've been just wrong. See also "mission creep"...

      --
      In Soviet Washington the swamp drains you.
  3. wrong by SuperBanana · · Score: 4, Informative

    I'm sure the military branches use their own methods, which are even resistant to NSA spying

    The entire point of the NSA is to secure government (and thus military) communications. DES, hello? That was developed so that the government could send shit privately, not for you and me.

    The NSA takes charge of development of all the various devices used, and probably gives recommended policy and procedure too. For example, secure communications between embassies? That gear was designed by the NSA, as were the protocols for programming them. Same goes for the encrypted comms on military planes and whatnot. The military uses these fancy boxes to "load" encryption keys into radios and such- and assure their security, chain of custody, blah blah. NSA developed.

    If you think the NSA has secret access and is running counter-ops or some bullshit like that, you've been watching too many bad movies and reading too many bad (Tom Clancy) novels.

    --
    Please help metamoderate.
    1. Re:wrong by Anonymous Coward · · Score: 3, Insightful

      And you are either making a joke or have not worked within the agency. The entire "point" of the NSA is certainly not just to secure communications. I believe the 17,000 interceptors I worked with would think otherwise...

    2. Re:wrong by Ethanol-fueled · · Score: 3, Insightful

      What about those fiber splices and sekrit black boxes in the AT&T offices?

      Either the so-called "rules" don't mean anything, or the NSA just has others break the law for them. Then Bush and Obama give those others immunity from prosecution.

      I don't trust any agency with "security" in its name. Especially when they abuse their networks to commit industrial espionage among other dirty tricks.

  4. Divide implementation from development&regulat by Anonymous Coward · · Score: 3, Interesting

    The current government cyber security system is broken by design. There is no way that one super organization can make every government network in the country secure. Each department and division in the government will have different needs. The only reasonable method to do this would be to have those departments and divisions implement their own security systems while the government at a whole creates a technology/advisory branch and a regulatory branch. Sort of like the DOE/NRC to nuclear reactor safety. The regulatory branch would audit the security (and potentially fine) the highest risk government agencies while the technology/advisory branch would be a big IT desk at which each department or branch could shop.

  5. That's crazy talk! by Tiger4 · · Score: 3, Funny

    "...director of National Intelligence, who thinks cyber security should be the NSA's job to begin with."

    Geezus, the would be like putting the thieves in charge of the banks! Uhhh, wait...

    --
    Behold, this dreamer cometh. Come now, and let us slay him... and we shall see what will become of his dreams.
  6. Security by Idiomatick · · Score: 4, Insightful

    The US security system(s) always amaze me. OkOk so the military gets infantry, navy and special ops divisions. But in the US you guys have like at least 10 other organizations. And all of their objectives are vague. Why not just close/merge a bunch of them. CIA FBI NSA NCSC US SS DoH DIA NRA really I could just start picking random letters (and i'm sure there are more than i've listed). They each get like 10billion a year. You see the same things happening with science. Cept the total for science is like 30b instead of 100. Its kind of amazingly wasteful. Even assuming they worked together well with no overlap. It is hard for a government to properly overview that many pointless departments if you don't even know what they are supposed to be doing.

    1. Re:Security by Eravnrekaree · · Score: 4, Informative

      Having different independant departments with different focus s not a bad idea. One of the concerns about FEMA after the New Orleans incident is that it had been reduced from a cabinet level agency and perhaps had lost some of its focus on natural disasters. In government there is transparency, so that a government agency can avoid duplicating the work of other agencies and as well they can also cooperate. So having a larger number of agencies also can allow for checks and balances to happen as well, so you dont have all of your eggs in one basket. Its important to have several indepandent agencies that can monitor each other. Different departments may also have different specialisation and may better able to fulfill certain needs than others.

    2. Re:Security by Anonymous Coward · · Score: 2, Informative

      Why not just close/merge a bunch of them. CIA FBI NSA NCSC US SS DoH DIA NRA really I could just start picking random letters (and i'm sure there are more than i've listed)

      One of the key reasons that there are so many agencies is that there is a clear dividing line in US law between the military and civilian agencies. These agencies were divided because the goal was to have the military worry about external military threats while civilian agencies handled internal threats and non-military external threats. This division is a positive defense against making the US a police state or giving the military too much power. It costs more money, but it also restricts mission creep. And the last thing you want is an agency with military power experiencing mission creep. The mission creep of our civilian agencies during the "War on Terror" was frightening enough (which leads me to think that we need another division between civilian agencies that handle internal threats and agencies like the CIA that handle non-military external threats).

    3. Re:Security by l00sr · · Score: 2, Informative

      OP probably meant the NRO.

    4. Re:Security by aztektum · · Score: 2, Insightful

      We'd have all the transparency with much less expense to individuals if we didn't have to PAY for these federal agencies in the first place. Let us give the money to the state rather than this cluster fuck in D.C.. At most the fed should have an agency that acts as a liaison between states for interstate crime/commerce and establish a few frameworks for open commerce and things like patents/copyright/etc. Then focus on global affairs, defense, all that noise. Giving them the authority to police within a states borders is helping them consolidate central authority.

      What needs to happen is people need to get the state governments to tell the feds to fuck off more regularly. The only recent thing I can remember where any states have said "No." is over Real ID. States like Cali, that pay 100's of billions in federal taxes and get a miniscule return from them need to tell Congress to get stuffed.

      --
      :: aztek ::
      No sig for you!!
  7. What we need by Eravnrekaree · · Score: 4, Interesting

    There should be a focus and funding on implementing BGPSEC and DNSSEC since this is where many of the major vulnerabilities lie, and developing new and improved encryption systems and so on. The goal being to assure the internet is a platform of freedom of expression where some cannot oppress the viewpoints of others.

    1. Re:What we need by TubeSteak · · Score: 2, Insightful

      The goal being to assure the internet is a platform of freedom of expression where some cannot oppress the viewpoints of others.

      From a national security point of view, being able to oppress the viewpoints of others is a feature, not a bug.

      --
      [Fuck Beta]
      o0t!
  8. So? by PingXao · · Score: 3, Insightful

    Sounds like a good position to eliminate completely. Take the whole DHS with you on the way out the door. And possibly a good chunk of NSA too.

  9. Can't really blame him... by John+Pfeiffer · · Score: 4, Informative

    When blueprints and stuff for Marine 1 show up in Iran because some contractor wanted to download Britney Spears mp3s, yeah. I'd throw my hands up and walk away too. Things are only handled as intelligently as the dumbest person involved, and the leading cause of aneurism these days is having to deal with dumb people.

    --

    Friend: "The NIC is misconfigured..." Me: "No prob, I'll just telnet in and fix it." *Silence*
  10. Sorry. Cyberspace is way more complicated - by unity100 · · Score: 5, Insightful

    than you military oldtimers can ever comprehend. cyberspace also doesnt go well with the military mindset. military mindset requires control over the venues that needs securing. cyberspace, internet, is a venue that refuses control. because it is against its nature. even if you try and succeed in getting an iron stranglehold over internet in your country, the rest of the world will keep a free internet. which will mean that your security issues will continue. because, internet IS people. its not an empty network with consoles attached. its no different than your own society with its people.

    you should leave cybersecurity to people who understand online world and its people. you cant accomplish shit with military mindset. even more, heavy handed or controlling approaches lead to social online backlashes and spontaneous actions. portray yourselves as anti freedom fascists trying to control internet in a 1950s manner for any reason, and you may gain the attention of a varying multitude of people from hacking crowd, each of which could undermine whatever budget you can throw at security. portray yourselves as a friend of the people, and they harrass your enemies. (a la pirate bay case).

    remember - internet is an infinite chaotic space in which individuals can outdo thousands. best security approach is to be 'friend of the people'. and no military knows shit about that.

    so, NSA, leave it to people who know internet.

    --
    Read radical news here
    1. Re:Sorry. Cyberspace is way more complicated - by Creepy+Crawler · · Score: 2, Insightful

      Wow. What a fool you are..

      The military helped originally create the internet in its present form. And their base assumption was that once it was properly built, it would grow by itself. It's reason was to create a network that one could never be quieted, even by nuclear attacks.

      Now, about the NSA: They're not heavy handed thugs. They've always been sigint, are sigint, and will always be the sigint. They dont want the iron-fisted control of the Internet, because they love listening!

      However, do you know why this guy quit? It's a simple answer why...

      "You're the network administrator. However, we cant give you admin passwords, you cant make critical decisions about the network, you cant make purchasing decisions, you cant do anything unless these 10 disparate groups agree."

      I believe the proper word is hobbled. And it's what happened to the last person in that position.

      --
    2. Re:Sorry. Cyberspace is way more complicated - by unity100 · · Score: 2, Insightful

      it HELPED create the internet in its NOT PRESENT, but initial form. it was designed as a network that would route over damage in case of a nuclear war and keep functioning.

      noone had ANY idea what the internet would be like in 15 years.

      NSA is a government agency. government agencies reflect the policies of whomever installed on top of them. if nsa is not heavy handed today, it will/may be tomorrow. you cant trust liberty with government agencies.

      --
      Read radical news here
  11. Fox guarding the henhouse? by EWAdams · · Score: 2, Funny

    The object of cybersecurity is to prevent people from interfering with out computers. The NSA's JOB is to interfere with our computers. They can hardly do both at the same time.

    --
    I piss off bigots.
  12. History didn't start in 2003 by crmartin · · Score: 2, Insightful

    I wish journalists would do a little research. NSA has had the lead role in cybersecurity since before he term was invented, back to the National Computer Security Center when Bob Morris the Elder was Chief Scientist. Mid-80's, in other words. Communications security since Truman.

    What this guy is complaining about is that he wasn't able to wrest control of cybersecurity away from NSA.