NIST’s Ron Ross on the state of cyber: ‘We literally are hemorrhaging critical information’
According to Ron Ross of the National Institute of Standards and Technology, the US government is “literally […] hemorrhaging critical information about key programs” as a result of attacks by state-backed hackers from countries like China, Russia and Iran.
Ross doesn’t believe that government revisions of security standards, such as those for government contractors, are going to solve the problem. Instead, he argues that the government should invest in protecting its information “no matter where it is.” While this may be expensive, the costs of cleaning up major security breaches are far higher.
When it comes to artificial intelligence (AI), Ross believes that the government should use it to build a trusted platform that provides security for the entire system stack from “applications, middleware, operating systems, firmware, down to the integrated circuits,” because currently, most of the increasingly complex attack service of systems is unmanaged and unprotected.