On January 16th, President Biden signed an executive order aimed at strengthening national cybersecurity in the United States and streamlining the accountability process for foreign adversaries or hacker organizations attempting to disrupt the American internet and telecommunications systems.
The order mandates government technology contractors to establish minimum cybersecurity standards and requires contractors to provide evidence of compliance with these rules.
Furthermore, the order aims to make it easier for U.S. authorities to impose sanctions on foreign governments conducting cyberattacks against the United States. This order comes in the wake of recent hacking incidents involving China, Iran, Russia, and North Korea.
The order also allows for sanctions to be imposed on foreign hackers targeting hospitals or other organizations with ransomware attacks.
It calls for federal agencies to improve cybersecurity to guard against the threats posed by powerful quantum computers. Cybersecurity experts warn that quantum computers could potentially breach the defenses of many systems, posing a direct threat to national security if foreign adversaries develop sophisticated enough computers to crack U.S. encryption.
President Biden is set to leave office in a few days. The incoming Trump administration may revoke this policy and introduce its own proposals. However, Deputy National Security Advisor Anne Neuberger stated that the dual goals of the order – enhancing cybersecurity and holding perpetrators of cyberattacks accountable – should garner bipartisan support.
Neuberger stated that the order aims to demonstrate that “the United States is serious about protecting our businesses and citizens.”
These policies build upon several actions taken by the Biden administration to bolster defenses against cyber intrusions, whether targeted at the government, critical infrastructure (such as ports or power plants), American businesses, or individual users.
Earlier this month, the White House announced a plan designed to assist consumers in choosing smart devices more resilient to hacker attacks. Under the “Cyber Trust Mark Program,” manufacturers of internet-connected devices can affix a label indicating compliance with federal cybersecurity standards to inform buyers.
President Trump has yet to announce his key pick in the field of national cybersecurity. His nominee for CIA Director, John Ratcliffe, stated during a Senate confirmation hearing on Wednesday that the U.S. must enhance its capabilities in both defensive and offensive cyber operations to keep pace with threats posed by China and other adversaries.
Ratcliffe also addressed the issue of quantum computers, saying, “We have the world’s best code makers and code breakers. But if China leads us in quantum computing, that’s a real problem.”
(This article references reporting from the Associated Press)