The 2013 Washington Post Cybersecurity Summit will convene leading national security officials, industry experts and journalists to discuss cyber theft and cyber espionage. Watch this page from 8:30 a.m. – 12 p.m., Oct. 3, for updates from our live stream.
Welcome to Washington Post Live’s 2013 Cybersecurity Summit. Our program begins at 8:30 a.m. – with conversations addressing cyber risks and the future of cyber defense. We’ll conclude the conference with a simulation war game demonstrating the plausibility of a real life cyber attack.
Chairman of the House Intelligence Committee Mike Rogers (R-Mich.) , former CIA and NSA director Gen. Michael Hayden, former deputy secretary of defense William J. Lynn III, Visa’s chief enterprise risk officer Ellen Richey and Microsoft’s senior adviser to the CEO Craig Mundie are among the leading national security and industry experts who will be taking part.
Live stream viewers, join the conversation with the hashtag #cybersec2013.
On the live stream now: Charles Croom, vice president of cybersecurity solutions at Lockheed Martin.
“I’m here to say the weakest cybersecurity link starts with you and with me. At your desktop. Stop. Think. Connect.” Croom reminds the audience in the room that October is cybersecurity awareness month. “We all stand to be more aware and vigilant to protect our data and personal information.”
*Lockheed Martin is a Washington Post Live event sponsor.
“There are few topics more urgent today in Washington as cybersecurity,” says Washington Post Live editor Mary Jordan.
She introduces Washington Post syndicated columnist David Ignatius, moderating our first panel of the morning — “The Road Ahead in Cyber Defense: Public and Private Partnerships.”
“So many of us are anxious as to what is happening in Washington,” Ignatius says. He asks Congressman Rogers to touch on the government shutdown.
“I always believe there’s a time to campaign and a time to govern,” Rogers says, adding that those lines have blurred.
“Here’s the good news, I think there are a lot of conversations with different members as to how to move forward,” he says. ”I think we’re going to get through this. It’s going to make making sausage look pretty.
Rogers says he doesn’t want to understate the huge political divides.
“The big challenge to us is you have a continuing resolution and a debt limit,” he says. ”It’s my hope that we can at least get a temporary CR … You don’t mess with your neighbor’s money.”
Talking Edward Snowden on the livestream, Congressman Rogers claims that Snowden’s leaks created “significant,” in many cases “irreversible,” damage to national security.
“Somebody who gets to see all of it… Raises concern that there may have been help in his search queries and some of his search methods,” Rogers says.
Craig Mundie, Microsoft’s senior adviser to the CEO, says ”There’s almost a hysteria, not just in the U.S., but globally, how much has been taken, but from who.”
Mundie says there’s no way for a company to distinguish that it being surveilled or not. His takeaway for the audience:
“It’s important to tell people to parse the different threats. There are so many things that live under this banner, cybersecurity. It’s important to take each constituency, what is the real threat, what is the likelihood that it’s going to affect you as a business or you as a person … Most people in the discussion today don’t focus on virtually every government does these same types of things, with less discretion than the U.S.”
“This is a very dangerous time for us, an incredibly dangerous time for us,” says Congressman Rogers, on the live stream.
Gen. Michael Hayden says of cyber defense, “You can’t do this with just a shield, you have to have a sword.”
Microsoft’s Craig Mundie says that the last 12 months have been about qualitative change. “Unlike conventional weapons, anytime anyone shoots something in the world, all the bad guys in the world watch, and then figure out how to clone it.” The era of a purely defensive mode is over, says Mundie.
“While i think hygiene is important, people now have to be much more disciplined to figure out how they’re going to protect their personal information, as well as their core assets as a business,” Mundie says.
Mundie cites a health space analogy for what companies and government bodies need in a vulnerable cyber world. He says we need a World Health Organization equivalent for networks. ”This is where I think government has a role to play,” Mundie says. “If all governments are late to the party, you do have the tendency for the private sector to come forward. In the U.S., it’s vigilantism, it’s illegal to chase bad guys up the wire and certainly illegal to shoot back. In this country, we expect the government … It’s kind of crazy, as a society we’re going to have to figure out some of these things.”
Rogers responds that the U.S. network is different. “I am very concerned in getting into the notion of unleashing companies to go into an offensive posture …we don’t have the capabilities to handle what’ll come.”
Rogers "still hopeful" cyber legislation will pass despite the "white water rapids" that must be overcome #Cybersec2013
Microsoft's Craig Mundie on access to backdoors/vulnerabilities: "We don't engineer any backdoors into our products." #cybersec2013
Our second panel, “Reducing the Risk of Cyber Attacks,” is on our live stream now.
“In our industry, that’s payments, we’re more worried about the economic side,” says Visa’s Ellen Richey. Richey says though we’re aware of these hackers and nation state actors, law enforcement aren’t responding, shutting down crime, properly or diplomatically.
Visa has 30,000 transactions a second, 56 billion transactions a year, according to Richey. “In the neighborhood, the payment industry is losing $10 billion a year from theft.”
Former deputy secretary of Homeland Security Jane Lute nods at a summit theme — we’re not talking about prevention anymore. “There are a number of things we can do way off stream, and they’re easy to do, relatively easy to do — basic hygiene we can do, but we’re not doing.” She adds, the awareness of the financial sector is incredible. “In the sector of critical infrastructure, not all are up to speed as the financial sector … there’s still a lack of knowledge, and a lack of practice.”