House Bill Slashes Research Critical To Cybersecurity

dcblogs writes: A U.S. House bill that will set the nation's basic research agenda for the next two years increases funding for computer science, but at the expense of other research areas. The funding bill, sponsored by Rep. Lamar Smith (R-Texas), the chair of the Science, Space and Technology Committee, hikes funding for computer science, but cuts — almost by half — social sciences funding, which includes the study of human behavior. Cybersecurity uses human behavior research because humans are often the weakest security link. Research funding social, behavioral and economic sciences will fall from $272 million to $150 million, a 45% decrease. The bill also takes a big cut out of geosciences research, which includes climate change study, from $1.3 billion to $1.2 billion, an 8% decrease. The insight into human behaviors that comes from the social science research, "is critical to understanding how best to design and implement hardware and software systems that are more secure and easier to use," wrote J. Strother Moore, the Computing Research Association chair and a professor of computer science at the University of Texas.

No cuts are ever possible

[Kohath]

because every area facing cuts is always "critical".

And it's impossible for anyone to make software easy to use without government money to run a study.

Re:No cuts are ever possible

[sycodon]

So a program used by a program used by researchers in some other program which you think is essential is being cut.

With that reasoning you should be all for tripling the defense budget since most technology comes from research that supports it in some way.

Re:No cuts are ever possible

[PopeRatzo]

because every area facing cuts is always "critical".

Like this one?

http://blogs.reuters.com/great...

Over three-quarters of a TRILLION dollars on the F-35 Joint Strike Fighter that,

In 2008, two analysts at the RAND Corporation, a California think-tank that works closely with the military, programmed a computer simulation to test out the F-35s fighting ability in a hypothetical air war with China. The results were startling.

“The F-35 is double-inferior,” John Stillion and Harold Scott Perdue concluded in their written summary of the war game, later leaked to the press. The new plane “can’t turn, can’t climb, can’t run,” they warned.

$59.2B for development, $261B for procurement, $590B for operations & sustainment in 2012

For something that no one in the military actually wants.

Re:No cuts are ever possible

[schnell]

Why don't we cut a couple hundred billion out of the multi-trillion dollar "war on everything" Militaryâ"industrial complex that's obviously going so well?

I gather that you don't like or see much benefit from the US military. I saw a commenter a few slots above you suggesting that the thing to cut is Obamacare, which provides health care to people who are probably not the commenter. Some poster who is 65 will inevitably suggest that the rotten Education department must go, while someone else who is 18 will invariably suggest it should be Medicare. I have no doubt someone who lives in Arizona will suggest that Federal subsidies for homeowners living in hurricane zones be cut, and someone else from Florida will suggest that it's that Gestapo border protection troop that needs to be slashed.

It's funny how everyone seems to know with great certainty exactly the things that are totally worthless and should be cut from the Federal budget with no ill effects - which, purely coincidentally happen to be the things that they disagree with or they don't benefit from directly.

Re:No cuts are ever possible

For something that no one in the military actually wants.

That is not true - the Air Force wants it desperately. You know, the same Air Force who gave us the F4 Phantom, which was without a doubt one of the worst aircraft ever built. And it was also to be an aircraft "used by all branches of the armed forces, for all types of missions - air defense, ground attack, close air support, reconnaissance", just like the F35 - which does nothing well, and costs a LOT more per airframe; the are already having to perform retrofits and modifications for little things like:

A 2015 Pentagon report found these issues:

        The Joint Program Office is re-categorizing or failing to count aircraft failures to try to boost maintainability and reliability statistics;
        Testing is continuing to reveal the need for more tests, but the majority of the fixes and for capability deficiencies being discovered are being deferred to later blocks rather than being resolved;
        The F-35 has a significant risk of fire due to extensive fuel tank vulnerability, lightning vulnerability and an OBIGGS system unable to sufficiently reduce fire-sustaining oxygen, despite redesigns;
        Wing drop concerns are still not resolved after six years, and may only be mitigated or solved at the expense of combat maneuverability and stealth;
        The June engine problems are seriously impeding or preventing the completion of key test points, including ensuring that the F-35B delivered to the Marine Corps for IOC meets critical safety requirements; no redesign, schedule, or cost estimate for a long-term fix has been defined yet, thereby further impeding g testing;
        Even in its third iteration, the F-35â(TM)s helmet continues to show high false-alarm rates and computer stability concerns, seriously reducing pilotsâ(TM) situational awareness and endangering their lives in combat;
        The number of Block 2Bâ(TM)s already limited combat capabilities being deferred to later blocks means that the Marine Corpsâ(TM) FY2015 IOC squadron will be even less combat capable than originally planned;
        ALIS software failures continue to impede operation, mission planning, and maintenance of the F-35, forcing the Services to be overly reliant on contractors and âoeunacceptable workaroundsâ;
        Deficiencies in Block 2B software, and deferring those capabilities to later blocks, is undermining combat suitability for all three variants of the F-35;
        The programâ(TM)s attempts to save money now by reducing test points and deferring crucial combat capabilities will result in costly retrofits and fixes later down the line, creating a future unaffordable bow wave that, based on F-22 experience, will add at least an additional $67 billion in acquisition costs; and
        Low availability and reliability of the F-35 is driven by inherent design problems that are only becoming more obvious and difficult to fix.

Three different types of data âoemassagingâ are identified in the DOT&E report: moving failures from one category to another, less important one; ignoring repetitive failures, thus inflating numbers of failure-free hours; and improper scoring of reliability

In conclusion: A piece of shit that should be stopped NOW.

Re:No cuts are ever possible

[fustakrakich]

And it's impossible for anyone to make software easy to use without government money to run a study.

I don't know. Further research is necessary...

Re:No cuts are ever possible

[NicBenjamin]

> a) convince the chair of the relevent House Subcommittee it was important enough to bring up for a vote

That's a convoluted way to avoid saying, "bribe"

Campaign donations are one way to get a vote, but they're far from the only one. That's why all the pressure groups you've ever heard of have frequent "Days of Action" where their minions all call the local Congressman to demand something.

Even most campaign donations are not quid pro quos. Pressure groups find people who agree with them and would be good candidates. Then they get them to run. The donation is supporting the sincerely-held-view of the candidate, not bribing the candidate to change his mind. This is particularly true these days on issues that require spending money because DC is in austerity mode and the guy you whose on your side because you paid him off will almost certainly decide not to vote for your spending package because it includes cuts to some other program from somebody else who bribed him.

Re:No cuts are ever possible

[TheRaven64]

OTOH, our reason for being in Afghanistan was that one of their best buddies leveled a couple office buildings

I think you are confusing Afghanistan with Saudi Arabia.

Re:No cuts are ever possible

[stealth_finger]

I didn't say F-35 would win a VFR dogfight. I said the entire point of the damn thing was to avoid VFR dogfights. I said it had rails for air-to-air missiles, and it would be very difficult to impossible for Su-35s (or even F-22s) to get a strong enough lock on it to engage outside of VFR.

As for our allies, approximately how much do you think we're paying Canada to buy F-35 rather then upgrade the FA-18 Superhornet into a CF-18 Hornet II of some sort? The answer is $0.

You do know stealth is a total bumf? It may work with varying success against high frequency X band type radar types aircraft but get a ground or awacs based in S or L band radar in and it all goes to pot, Russia has been building these for years and sell them all over the show (see the 1999 f-117 shootdown over Yugoslavia). Combinations of all three could easily lead to the intercept and shootdown of a stealth aircraft or group of. Fun fact, if every stealth design of today was flying over the English channel in ww2 days our radar of the time would pick up every single one. www.dtic.mil/cgi-bin/GetTRDoc?AD=ADA515506

Re:No cuts are ever possible

[dywolf]

the same Air Force who gave us the F4 Phantom, which was without a doubt one of the worst aircraft ever built

And that's all it takes to show you have no clue what you're talking about,
and your entire comment is neither insightful nor informative.

For starters, the F4 came from the Navy, who wanted a twin engine high speed all weather missile-boat interceptor/fighter to replace the Demon in the early 50's. In fact it's original name for the project was "Super Demon". And its physical origins in the Demon design are quite evident.

And it was never billed as the everything plane for every service.
The Marines bought in once its ground attack potential was realized.
The Air Force didn't buy in until the F4C model.

Over 5100 Phantoms were built, making the most produced US aircraft since World War II.
By the time of Vietnam it made up the bulk of the fighter assets across the entire US military.
It didn't leave US service until 1996.

It also served in the militaries of 11 other nations.
Germany only recently retired its last Phantoms in June 2013.
Turkey only pulled its Phantoms from service this year (2015).
Greece, Egypt, Iran, and Japan are STILL flying Phantoms.
In fact, Iran is actively using Phantoms in to bomb ISIS.

That's hardly sounds like an unsuccessful or "world's worst airplane".

What difference

[Vinegar+Joe]

At this point, what difference does it make? If the Secretary of State can run her own email server at home, what does it matter how much money is spent on "cybersecurity"?

Re:What difference

[epyT-R]

She can run all the private email servers she wants, but when it comes to official state business, shit needs to be on record. That's the issue. Perhaps we need to turn the NSA loose on the fed.

Re:climate change studies are fair game....

[Kohath]

Without funding, how would we know that climate change causes truffle shortages and violence in Darfur ?

Why is anyone surprised?

[humptheElephant]

These jackasses cut funding for research, for the poor, for the middle class and yet can give these extremely wealthy parasites tax cuts. They don't cut corporate welfare, they increase an already bloated defense budget. What ass**les.

It's hard to credit the behavioural science claim.

[tlambert]

It's hard to credit the behavioural science claim.

Since we already know how to social engineer our way into secure areas, secure building (including nuclear and military facilities), and to get people to give their passwords or reset someone else's password, and even get the police to respond with deadly force to a perceived threat by an otherwise innocent third party (e.g. SWATting), and get them to click on crap they shouldn't click on in emails, and get them to insteall "media player updates" that aren't, anti-mallware that's actually malware, and so on...

How is additional funding for behavioural science in this area going to make us any more secure by making us even more aware of the exploits we already know, such as those being used by Mitnick prior to 1995 to get into the phone company?

We already understand the human behaviour which allows these attacks to work -- and so does Microsoft, and they're not really spending any effort fixing their software over this knowledge.

So how *exactly* will additional spending in this area impact cybersecurity again? Will it make anyone less likely to believe someone pretending to be from the IT department? Will it make someone less likely to let you on the premises when you pretend you want to talk to the property manager "or someone else in charge" about purchasing land adjacent to an otherwise secure facility?

I kind of don't think so.

But... BOOGA! BOOGA! Cybersecurity! Cyberwarfare! Fund us, fund us!

Is this submission for real?!

[felrom]

It's quite the logical leap to go from

cuts — almost by half — social sciences funding

to

House Bill Slashes Research Critical To Cybersecurity

only based on the vague claim that

Cybersecurity uses human behavior research because humans are often the weakest security link.

The submitter had to really stretch things to get enough almost-tech-related and republican-hating to have his story accepted.

Re:Is this submission for real?!

[PopeRatzo]

There are basically three Slashdot submitters that put out this kind of stuff. They're the same ones that put out the, "SJWs are ruining technology!" stories every Friday and the "Boy, those egghead scientists don't know a goddamn thing" stories mid-week.

I noticed the pattern at the beginning of the year, but it probably has gone on longer than that. It's basically click-bait for the Fox News/8chan crowd.

Re:SS is a waffen

[monkeyzoo]

Yeah, what good is economics research? Everyone already knows the silver bullet for any economic problem is to cut taxes for the wealthy!

I thought Repub's were uncertain about the climate

[monkeyzoo]

The bill also takes a big cut out of geosciences research, which includes climate change study, from $1.3 billion to $1.2 billion, an 8% decrease.

I thought the Republicans were concerned that the "science wasn't certain yet" on climate change? Strange they would cut the funding to keep looking into it then. Unless... they know damn well what the science has already figured out and will keep figuring out and know it won't sit well with their oil industry fatcat buddies and doubt-peddling narrative.

A sad day on Slashdot

[zapadnik]

It is a sad day on Slashdot when there is wailing and gnashing of teeth by (alleged) Slashdotters when funding for Computer Science is INCREASED and funding for pseudo-science is decreased to cover the boost for Computer Science.

A sad, sad day indeed.

well ...

[cascadingstylesheet]

... if this research is so obviously critical, it's not like only the government benefits from or cares about network security. Let those who think it is so critical pay for some.

Lamar Smith, Christian Scientist

[PPH]

Not quite as bat-shit crazy as Scientologists. But these are the ones that believe everything can be healed by prayer. So its no wonder that scientific research into human behavior would be rejected by their members.

But then most religions are suspicious of any kind of investigation into the sanity of people who think invisible people living in the sky are talking to them.

Re:Lamar Smith, Christian Scientist

[PopeRatzo]

It's funny, but it does appear that knowledge, whether "critical" or not, is simply kryptonite to American conservatives. They get so damn mad when somebody wants to find something out. They all cry "waste" while passing continuing resolution after continuing resolution that funds anything and everything that can possibly make the maximum number of people dead and the maximum number of their friends rich.

Re:Lamar Smith, Christian Scientist

[PPH]

It's not just the knowledge. But understanding and countering the social engineering skills used by many hackers could undermine the proselytizing that many evangelicals do which use the very same social engineering techniques.

Re:well, why wouldn't they?

[cayenne8]

Why can't the computer sciences folks ALSO include the study of humans and how they interact with computers? Seems you don't need separate studies with funding for that...?

Re:I thought Repub's were uncertain about the clim

[PopeRatzo]

Or maybe they just decided that enough money has already been wasted on this junk science, and see it for what it really is.....

You mean the same guys who banned AP History classes because they, "make America look bad"?

http://www.washingtonpost.com/...

And how would Republicans know junk science, anyway? As they are fond of saying when asked about climate change or evolution or vaccinations or whether the Earth revolves around the Sun, "Well, I'm not a scientist". I mean, they're not generals either, but they all sure got an opinion on whether or not we should bomb Iran, ain't they? They're not God, but they sure as shit think they know what "God wants".

http://www.politicususa.com/20...

http://www.rawstory.com/2015/0...

http://www.politicususa.com/20...

http://nymag.com/daily/intelli...

Those are the fucking people you trust to know good science from bad science? Jeez louise, I wouldn't trust them to know a graduated cylinder from their fuzzy pink asses.

Re:well, why wouldn't they?

[peragrin]

So why increase military spending?

450 billion for a plane that isn't yet flying gets an increase yet you bitch and moan over 1 billion. Talk about pinching pennies to waste hundreds.

Re:It's hard to credit the behavioural science cla

[NicBenjamin]

So let's say Microsoft had some idea to reduce Social Engineering. How will they figure out whether it's Security Theater without trying it out on people?

How is that not behavioral science?

The real question is

[Dainutehvs]

Before whining about decrease in next period - it would be nice if someone explained what did US citizens get for their $272 million spent on "social, behavioral and economic sciences" and $1.3 billion "geosciences research, which includes climate change study" spent in previous period.

Re:well, why wouldn't they?

[sonicmerlin]

The typical conservative response is that we're protecting the world. How that translates to wasting truly historic amounts of money- a degree of expenditure never seen before in human history- on utterly useless pork projects for the military... well that's beyond them.

Re:Let's call it reduction of ideological BS.

[serviscope_minor]

And this is why I claim SJW comply means "shit I hate on the internet".

So far today a story about cybersecurity and a story about side-channel attacks have both attracted squeals of "SJW" about what though I'm not entirely clear. Clearly the OP is upset about something and, hey, why not blame SJWs for that too?

And he's not alone in his opinion because he got modded up.

Anyway, in other news I stubbed my toe this morning. I'm not 100% sure but I feel that on a deep level social justice warriors are probably responsible somehow.

Re:well, why wouldn't they?

[hairyfeet]

What I find ironic as hell is the war hawks pushing this crap do not realize they are causing the US military to fall into the same trap the axis did in WWII. Spend all your money on "wonder weapons" that cost so much only a handful can be built and are so prone to breakdown and malfunction that only a small percentage of that small handful will be available at any 1 time, meanwhile any potential enemy can go pick up a fleet of Russian fourth and fifth gen planes for the cost of one of ours.

I don't care how "high tech" you make the F35 if you put 1 F35 against 20+ MiG29 or SU35? Its going down. As Stalin is reported to have said "Quantity has a quality all its own".

Re:well, why wouldn't they?

[evendiagram]

Program Cost: $59.2B for development, $261B for procurement, $590B for operations & sustainment in 2012. source