The Trump administration is going on the offensive in cyberspace to deter adversaries from harming U.S. interests, according to a newly released cybersecurity strategy released by the White House.
China, in particular, was called out for engaging in “cyber-enabled economic espionage and trillions of dollars of intellectual property theft.”
The offensive will focus on directly countering—through cyber and non-cyber means—malicious actors, including strategic adversaries, rogue states, territories, and criminal networks, to deter future cyber aggression. Examples include court prosecutions and economic sanctions.
The Trump administration also intends to empower federal departments and agencies with necessary legal authorities and resources to tackle transnational cyber-criminal activities, including “identifying and dismantling botnets, dark markets, and other infrastructure used to enable cybercrime, and combating economic espionage.”
A botnet is a system of hacked computers and internet-connected devices that can be controlled for illicit purposes, such as carrying out DDoS (Distributed Denial of Service) attacks, which flood the target with overwhelming traffic in order to disable a computer network.
In the strategy, four countries—Russia, Iran, North Korea, and China—are identified as undermining the U.S. economy and democracy, stealing U.S. intellectual property, and sowing discord in the American democratic process.
“We’re going to do a lot of things offensively, and I think our adversaries need to know that,” said national security adviser John Bolton in a briefing on Sept. 20.
“Our hands are not tied, as they were in the Obama administration.”
In August, the Trump administration rescinded an Obama-era directive, known as the Presidential Policy Directive 20 (PPD-20), which established an exhaustive approval process that the military must navigate in order to launch hacking operations, according to Reuters.
The new cyber strategy calls for specific measures to protect government networks and contractor systems. For example, contractors’ risk management systems will be subject to review by the federal government for the purpose of safeguarding sensitive government information hosted on contractors’ networks.
U.S. networks have been attacked before by Chinese entities. In June 2015, the U.S. Office of Personnel Management (OPM) was breached by a cyber attack that compromised the personal records of roughly 4.2 million current and former federal employees. According to NBC News, the leading suspect behind that attack is China.
Another measure listed in the Cyber Strategy is securing the government’s technology supply chain by creating a “supply-chain risk assessment shared service,” which will allow better information sharing among departments and agencies.
The administration also will work with the private sector to protect seven key U.S. sectors: national security, energy and power, banking and finance, health and safety, communications, information technology, and transportation.
Lastly, the White House seeks to work with Congress to update cybercrime-related legislation, including to “law enforcement’s capabilities to lawfully gather necessary evidence of criminal activity, disrupt criminal infrastructure through civil injunctions, and impose appropriate consequences upon malicious cyber actors.”
