Leaks in the National Information Infrastructure Dam: Who Should Protect It?

Abstract : Is our interconnected, electronic media and communications system so pervasive, so entwined in our national defense, our economy, and our way of life that its demise would bring down the nation? What responsibilities does the government have for protecting this "environment"? This paper examines the following: (1) the responsibilities of government, (2) why the national information infrastructure needs protecting, (3) what the nation has done in terms of protection, and (4) the nation's options for the future. Rapid growth and commercialization since the Internet's inception, and an under appreciation for security opened the flood gates for problems from fraud and theft to defacements, disruptions, and denial of service attacks. For the national information infrastructure to sustain its crucial position in a wide range of essential activities, it must be secure physically and electronically. This study reviews government's role and responsibilities for policy, security, standards, laws, and partnerships with the private sector. The author's assessment is that the governmental policy framework is well established, security is being pushed to the forefront of national consciousness, and standards continue to evolve. Legislation placing additional responsibility and liability for Internet security upon software and hardware developers, Internet service providers, corporations, and individuals may be a prudent next step. Simultaneously, government should complement legislation with incentives (e.g., tax breaks and subsidies) to encourage the private sector to establish and maintain a secure environment for essential Internet activities to operate.