National Security Directive

From Wikipedia, the free encyclopedia

National Security Decision Directive 114, signed by Ronald Reagan
National Security Decision Directive 114, signed by Ronald Reagan

In United States, a National Security Directive (NSD) is a type of presidential directive covering national security policy signed by the President. Different presidential administrations have used various names for these documents. The title National Security Directive was used by the administration of George H. W. Bush.

Contents

[edit] Names for National Security Directives by administration

NCSCID National Security Council Intelligence Directives 1947-1977 Truman - Ford
NSAM National Security Action Memorandums 1961-1969 Kennedy and Johnson
NSSM National Security Study Memorandums 1969-1977 Nixon and Ford
NSDM National Security Decision Memorandums 1969-1977 Nixon and Ford
PRM Presidential Review Memorandums 1977-1981 Carter
PD Presidential Directives 1977-1981 Carter
NSSD National Security Study Directives 1981-1989 Reagan
NSDD National Security Decision Directives 1981-1989 Reagan
NSR National Security Reviews 1989-1993 Bush
NSD National Security Directives 1989-1993 Bush
PRD Presidential Review Directive 1993-2001 Clinton
PDD Presidential Decision Directives 1993-2001 Clinton
NSPD National Security Presidential Directives 2001- G. W. Bush

[edit] National Security Presidential Directives of note

[edit] Presidential directive NSPD 54

The NSA (headquarters pictured) was authorized in 2008 to monitor domestic federal networks.
The NSA (headquarters pictured) was authorized in 2008 to monitor domestic federal networks.[1]

As the number of actual attacks as well as perceived threats to U.S. networks increased during the mid-2000s, Einstein became mandatory. U.S. departments and agencies had reported a large increase in security incidents for 2007.[2] The U.S. Department of State, Department of Commerce, Department of Defense and Department of Homeland Security itself experienced attacks during late 2006 and early 2007.[1] A presidential directive was discussed in 2007 and issued on January 8, 2008 and is known by three names: National Security Presidential Directive (NSPD) 54, HSPD 23 and the Cyber Initiative.[3][1] Although the directive and its details are classified, it is public information that Einstein is no longer optional.[4]

The CIA (headquarters pictured), one of four agencies authorized to monitor federal agency networks
The CIA (headquarters pictured), one of four agencies authorized to monitor federal agency networks[1]

Following NSPD 54, three agencies were authorized to conduct domestic intrusion detection in addition to DHS: the National Security Agency (NSA), Central Intelligence Agency (CIA) and the Cyber Division of the Federal Bureau of Investigation (FBI).[1] The NSA has a "twofold mission" to protect U.S. information systems and to produce foreign signals intelligence information, but previously had been "authorized by law to collect only foreign intelligence information".[5] A task force led by the office of the Director of National Intelligence became responsible for efforts to identify the source of attacks, and the Pentagon was authorized to develop counterattacks.[1]

The FBI (headquarters pictured), one of four agencies authorized to monitor federal agency networks
The FBI (headquarters pictured), one of four agencies authorized to monitor federal agency networks[1]

It was decided that DHS lacked the "expertise and authority" to lead the effort, for example, the OMB had assessed a Federal Emergency Management Agency/DHS division as not demonstrating results.[6] DHS was directed to protect systems[1] and as of 2008 remained the lead "for assuring the security, resiliency and reliability" of the nation's information technology and "communications infrastructure".[7] US-CERT remained the department's response center responsible for the nation's "Internet infrastructure".[7] DHS continued to promote Einstein and the goal of its use in all federal agencies and departments.[7]

[edit] Notes

  1. ^ a b c d e f g h Nakashima, Ellen. "Bush Order Expands Network Monitoring: Intelligence Agencies to Track Intrusions", The Washington Post, The Washington Post Company, January 26, 2008. Retrieved on 2008-05-18. 
  2. ^ About 5,100 incidents in 2006 compared to 13,000 in 2007, in Allard, Tom. "In cyberspace they can't hear you scream", The Age, The Age Company, April 19, 2008. Retrieved on 2008-05-18. 
  3. ^ Gorman, Siobhan. "House panel chief demands details of cybersecurity plan", The Baltimore Sun, Tribune Company, October 24, 2007. Retrieved on 2008-05-19. 
  4. ^ Vijayan, Jaikumar. "Q&A: Evans says feds steaming ahead on cybersecurity plan, but with privacy in mind", Computerworld, IDG, February 29, 2008. Retrieved on 2008-05-13. 
  5. ^ Answers #1 and #13 in About NSA: Frequently Asked Questions. U.S. National Security Agency/Central Security Service. Retrieved on 2008-05-18.
  6. ^ National Protection & Programs Division: Cyber Security. U.S. Office of Management and Budget and Federal agencies (2007). Retrieved on 2008-05-18.
  7. ^ a b c U.S. Department of Homeland Security (April 8, 2008). "Fact Sheet: Protecting Our Federal Networks Against Cyber Attacks". Press release. Retrieved on 2008-05-13.

[edit] External sources

[edit] See also