You have reached your limit of free articles this month.

Enjoy unlimited access to

Starting at just 99¢ for 8 weeks.


  • ePAPER

You have read of premium articles.

Get unlimited access to all of our breaking news, in-depth coverage and interactive features. Starting at just 99c for 8 weeks.


Welcome to

Your source for Clark and Champaign counties’ hometown news. All readers have free access to a limited number of stories every month.

If you are a News-Sun subscriber, please take a moment to login for unlimited access.

Cyber security requires public, private cooperation

President Barack Obama’s executive order calling for increased information sharing between the federal government and private companies to protect the nation’s critical infrastructure against cyber-attacks is a good first step, despite concerns about government regulation and data privacy, experts said.

The order, an alternative to legislation Obama hoped Congress would pass last year, shows that “business is getting fed up with the fact that we are not moving to deter and block these threats fast enough,” said Bob Butler, chief security officer and senior vice president of IO, a Phoenix-based data center services firm with an office in Miamisburg.

Butler served from 2009 to 2011 as the U.S. Deputy Assistant Secretary of Defense for Cyber and Space Policy, and worked with the White House and Department of Homeland Security to draft the cyber-threat legislation that became the basis for Obama’s executive order. He will be a keynote speaker Wednesday at Technology First’s 10th annual Ohio Information Security Conference at the Sinclair Ponitz Center in Dayton.

“From a business standpoint, we don’t want a heavily regulated environment,” Butler said. “We want to try to create incentives to allow public and private sector partnerships to grow naturally, but to grow with increased momentum. So it’s not just information sharing, but threat sharing and threat mitigation sharing.”

Obama last month assigned the National Institute of Standards and Technologies to develop a framework for voluntary information sharing in an effort to stem possible attacks against the nation’s utilities, traffic control systems and financial centers.

Several days later, cyber forensics firm Mandiant revealed that a Chinese military hacking group has stolen large amounts of data from 115 U.S. organizations and companies since at least 2006.

“Virtually everything is now so interconnected that the vulnerabilities can come from almost any direction,” said Mateen Rizki, chair of Wright State University’s Department of Computer Science and Engineering.

Rizki called Obama’s order a good first step, but said some companies may be reluctant to share information about their networks. “The dissemination of solutions is difficult when you don’t have openness. When you have some framework for cooperation you can start to make headway,” he said.

Organizations can patch and defend against known vulnerabilities, but a lack of awareness allows cyber thieves to exploit those problems, said Scott Campbell, Miami University School of Engineering and Applied Science’s director of technology, and an instructor in computer science.

Campbell said some of the computer systems that control the nation’s power grids, water supplies and telecommunications networks are outdated and potentially vulnerable. Replacing the still-functional systems can be costly, so companies often will install mediation devices such as a modern computer in front of the system to increase security, “without really making the underlying system secure,” he said.

“Critical infrastructure needs to be hardened and you see in the cyber executive order the government’s attempt to try to encourage that,” Butler said.

Major southwest Ohio employers including Wright-Patterson Air Force Base and GE Aviation are well prepared to defend against cyber-attacks, but small companies could be at higher risk, Campbell said. “That’s what concerns me, is how easy large-scale attacks are against these tier-two targets. That just could be so disruptive,” he said.

Butler praised the efforts of the region’s federal and academic institutions to strengthen national cyber security, as well as to educate and inspire young people to pursue careers in the field.

The Air Force Institute of Technology, the Air Force’s post-graduate education and research school at Wright-Patterson Air Force Base, teaches courses in offensive and defense cyber-warfare techniques. AFIT’s Center for Cyberspace Research has been designated by the Air Force as its cyberspace technical center of excellence.

Wright State University’s College of Engineering and Science last fall launched a master’s degree program in cyber security. Rizki said the school is developing articulation agreements with Sinclair and Clark State community colleges, and also discussing a cooperative agreement for training at the Advanced Technical Intelligence Center for Human Capital Development’s secure facility in Beavercreek.

In addition, Wright State’s Institute of Defense Studies and Education offers a number of certificate programs in secure software development and cyber security.

“I think you have a collection of institutions and people that could actually become even a greater force in this area, and reaching next generation, if we can find a way to work together,” Butler said.

Reader Comments ...

Next Up in Business

Raising Cane’s Chicken Fingers: 3 things to know
Raising Cane’s Chicken Fingers: 3 things to know

Raising Cane’s Chicken Fingers opens its first Dayton-area location today at 1136 Miamisburg-Centerville Road in Washington Twp. Raising Cane’s joins an increasingly competitive chicken-restaurant market, with most of the recent growth focused on Dayton’s south suburbs. CHECK OUT THREE THINGS YOU NEED TO KNOW ABOUT RAISING CANE&rsquo...
Record travel expected for July Fourth weekend in Ohio, U.S.
Record travel expected for July Fourth weekend in Ohio, U.S.

A record-breaking number of travelers will hit the road in Ohio and across the U.S. for the July Fourth weekend, crowding highways and airports. More than 44 million Americans and nearly two million Ohio residents will travel for the holiday weekend, according to an analysis by AAA. That’s the highest July Fourth travel volume on records, and...
OHIO IMPACT: More Ohio Kmart, Sears stores to close by September
OHIO IMPACT: More Ohio Kmart, Sears stores to close by September

Sears Holdings will close 20 more Sears and Kmart stores in the U.S., on top of the 245 closings already announced early this year — and the latest round of cuts will affect Ohio locations. The company announced the latest closures to store employees early this week, according to Business Insider. The new list of closures include Sears department...
STORE CLOSINGS: 9 things that happened in retail in June
STORE CLOSINGS: 9 things that happened in retail in June

In a changing shopping landscape, retailers are fighting each other to stay relevant to consumers through shopping innovation — and 10 of them are doing it better than all the rest. THESE ARE THE COMPANIES MADE THE CUT BCBG Max Azria Group announced its reached an agreement on its restructuring plan and is set to sell its assets to...
FOOD DEAL: Starbucks buy one, get one free offer starts today
FOOD DEAL: Starbucks buy one, get one free offer starts today

If you’re a serial Starbucks coffee date canceler, this week is the week to reschedule! Starting today at 2 p.m., Starbucks everywhere are offering a ‘buy any grande iced espresso and get one FREE’ until 5 p.m. Those GRANDE concoctions full of caffeine will give you and your coffee buddy plenty of time to catch up, without...
More Stories