World News
CISA’s security-by-design initiative is at risk: Here’s a path forward on July 29, 2023 at 12:30 pm
The Biden administration’s 2023 National Cybersecurity Strategy identified structural shortcomings in the state of cybersecurity, calling out the failure of market forces to adequately distribute responsibility for the security of data and digital systems. Most prominently, the strategy seeks to “rebalance responsibility [for security] to those best positioned.”
Shortly after the strategy’s launch in March of this year, the Cybersecurity and Infrastructure Security Agency (CISA) kicked off an effort to “shift the balance of cybersecurity risk” by pushing firms to adopt security-by-design (SbD) practices, improving the safety and security of their products at the design phase and throughout their life cycle.
CISA director Jen Easterly’s announcement of these efforts appears to put CISA at the forefront of this rebalancing, addressing technology vendors’ incentives to underinvest in security through changes in how those firms design and deploy the products they sell. As the first substantive proposal from President Biden’s administration to effectuate this rebalancing since the launch of the strategy, the success or failure of the SbD initiative could be a bellwether for one of the strategy’s two fundamental ideas.
Success with SbD is at risk, however, both from the political challenges of implementing SbD practices and the threat of unrealistic expectations. This piece addresses both and highlights a path forward.
Political and structural headwinds
The politics of SbD implementation — which implicitly require a capacity to compel change in vendor practices, as well as the insight to design them — are treacherous ground for CISA, as the fast-growing agency is not a regulator. In time, it might become one, but current and past leadership insist that such responsibilities would be at odds with agency culture and its operational responsibilities.
The agency’s ability to support, build capacity, train, coordinate, and plan together with state, local, tribal and territorial entities, and industry stakeholders is rooted in its disposition as a trusted partner and neutral convener.
This means CISA should be only one of several federal agencies working to implement SbD, with cooperation from regulators like the Federal Trade Commission (FTC), a sharp and pointy complement to CISA’s open-handed approach. Otherwise, the SbD initiative could place CISA in a bind, trying to fix entrenched market incentive problems but without the ability to compel companies to act differently. CISA efforts to create accountability might undermine its attempts to generate goodwill.
Developing and defining a set of SbD practices that vendors can attest to, and that the U.S. government and other parties can verify or enforce, is a tremendous undertaking in and of itself. CISA must build SbD practices alongside an architecture for enforcement that sets clear roles for entities like the FTC, the Department of Defense, the Securities and Exchange Commission, and the General Services Administration.
The White House has responsibility here, too, and specifically the Office of the National Cyber Director, to guide this multi-agency effort within a strategy to manage the industry politics of shifting the incentives in this market — precisely what the office was designed, staffed, and organized to do. CISA’s focus must remain on enumerating and updating the essential SbD practices.
Just one piece of the puzzle
As we have argued before, “no strategy can address all sources of risk at once, but . . . silver bullets often trade rhetorical clarity for crippling internal compromises.” The SbD program could achieve deep, meaningful changes in how some of the largest technology vendors build services and products. Those changes would have material benefits for the security of every technology user.
However, cajoling all firms toward a comprehensive and uniform set of best practices is a fundamentally incompletable task.
Malicious actors perpetually seek new means of exploit; different sectors and system classes face different and unique challenges; and new technologies are prone to modes of failure, both new and unforeseen. Adopting certain new processes, rigorously enforcing them, and fixing existing incentives would still be a much-needed improvement over the current status quo.
However, adopting memory-safe languages or pushing large actors toward better risk management would not necessarily have prevented many significant vulnerabilities in recent memory, such as Log4Shell. To succeed, CISA will also need to understand how large technology companies build products and services — current industry practice is far from complete or perfect, but it is the baseline from which SbD hopes to drive change. Understanding that baseline is critical.
There is danger when rhetoric around shifting responsibility in cyberspace suggests that cybersecurity problems and challenges exist only because technology vendors cut corners or that all cybersecurity risk can be avoided by following a simple set of straightforward practices. The increasingly interconnected, dependent nature of software systems, as well as the variety of organizations and systems they connect to, creates risks all its own.
SbD is an important piece of managing this — the status quo of responsibility deferred to the user is broken — but describing SbD as a panacea risks creating backlash when insecurity inevitably persists.
It is clear CISA recognizes that success in SbD could be one of the most impactful policy interventions in cybersecurity in the last decade. It is also clear that the program, even in its most successful incarnation, will leave some problems unsolved. Specificity about the scope and goals of the program will help prevent its inevitable critics from distorting the debate into all-or-nothing terms.
Risk and opportunity
SbD — the first policy manifestation of the National Cybersecurity Strategy’s effort to shift responsibility — will not come about by sheer goodwill alone. CISA is not a regulator, and it must define a path for federal agencies that are regulators so that the implementation of SbD leverages the broader standards setting, enforcement, and regulatory powers of the federal government.
Shying away from direct government enforcement of these security practices risks consigning the effort to history, alongside many other “voluntary” and “industry-led” programs.
The growing and talented team at CISA have 18 months until January 2025, which will bring either the paralyzing tumult of transition or the still-chaotic maturation of a first-term administration into a second. The largest vendors that would participate in this program are not going anywhere and can afford to wait.
In this sense, CISA and the wider U.S. government’s cyber policy apparatus is on the clock. CISA must focus on the essential elements of SbD and organize, build, and engage with a clear deadline in mind. The clock is ticking.
Success with security-by-design is at risk, both from the political challenges of implementation and the threat of unrealistic expectations.
The Nation of Cherut marked a historic milestone yesterday as citizens gathered to commemorate their first New Year’s celebration at Her Royal Majesty Shanta’s personal residence. The joyous occasion brought together government officials, royal family members, and esteemed guests in a festive atmosphere filled with music, culinary delights, and cultural performances.
A Night of Unity and Celebration
The event was graced by the presence of four ministers, three directors, members of the royal house, and counsel. Attendees were treated to an array of entertainment, including a special drumming performance by Julian Gordon, Deputy Minister of Music and Performing Arts. Gordon, who specializes in drums, percussion, and drones, showcased the rich musical heritage of Cherut.
Royal Hospitality
The culinary offerings for the evening were thoughtfully prepared by Her Royal Majesty Queen Shanta and Princess Shade Sullivan. Guests were warmly welcomed upon arrival by Her Royal Attendant Zubeta Jones and Kevin Ford, the Royal Ambassador at Large.
Distinguished Attendees
Notable government officials in attendance included:
- Devin “Egypt” Robinson, Minister of Agriculture & Food Security
- Erica Jean-Baptiste, Minister of Workforce Development and Labor
- Malcohm Payne, Minister of Real Estate Development
- Julian Gordon, Deputy Minister of Music and Performing Arts
- Coach Steffanie, Director of Book Publishing
- Su Jennings, Director of Television Broadcasting
- Danyel McBride, Chief Aide to the Queen
The celebration was further enhanced by the presence of royal ambassadors Kevin Ford, Nicole Smith, and Dr. Jamalla Wilkerson, along with several special guests.
This inaugural New Year’s celebration not only marked the passage of time but also symbolized the unity and bright future of the Nation of Cherut. As the country moves forward, events like these serve to strengthen the bonds between citizens and their leadership, fostering a sense of national pride and community.
Bolanle Media covers a wide range of topics, including film, technology, and culture. Our team creates easy-to-understand articles and news pieces that keep readers informed about the latest trends and events. If you’re looking for press coverage or want to share your story with a wider audience, we’d love to hear from you! Contact us today to discuss how we can help bring your news to life
Pope Francis, the 88-year-old leader of the Catholic Church, remains in critical condition at Rome’s Gemelli Hospital, where he has been receiving treatment for over a week. The pontiff’s health has taken a turn for the worse, raising concerns among the faithful worldwide.
Current Status
As of Saturday, February 22, 2025, Pope Francis experienced a prolonged asthma-like respiratory crisis that required high-flow oxygen treatment. The Vatican reported that his condition had deteriorated since Friday, emphasizing that “the pope is not out of danger”.
The Holy Father continues to be alert and spent the day in an armchair, although he is experiencing more discomfort than the previous day. His prognosis remains guarded, indicating the seriousness of his condition.
Medical Challenges
Pope Francis is battling a complex set of medical issues:
- Bilateral pneumonia affecting both lungs
- A polymicrobial respiratory tract infection, involving a mix of viruses, bacteria, and possibly other organisms
- Asthmatic bronchitis requiring cortisone antibiotic treatment
- Low platelet counts associated with anemia, necessitating blood transfusions
Treatment and Outlook
The Vatican has confirmed that Pope Francis will remain hospitalized for at least another week. He is receiving targeted drug therapy and high-flow oxygen as needed. While he is not on a ventilator and can breathe independently, his condition requires close monitoring.
Impact on Vatican Activities
In light of the pope’s condition, all public engagements on his schedule have been suspended through Sunday. The Vatican is carrying on with its Holy Year celebrations without the pope’s presence.
As the Catholic world watches and prays for Pope Francis’s recovery, the Vatican continues to provide updates on his condition. The situation remains fluid, and both positive and negative outcomes are possible given the complexity of the pope’s health issues.
Bolanle Media covers a wide range of topics, including film, technology, and culture. Our team creates easy-to-understand articles and news pieces that keep readers informed about the latest trends and events. If you’re looking for press coverage or want to share your story with a wider audience, we’d love to hear from you! Contact us today to discuss how we can help bring your news to life
New Delhi, India – February 16, 2025 – Her Royal Majesty Queen Shanta Lana Hereford, a distinguished global leader and advocate for peace and economic empowerment, was a special
guest speaker at an international event hosted by the EurAsia Afro Chamber of Commerce. The
hybrid event, aired live from New Delhi, India, gathered influential leaders, policymakers, and business executives from around the world to discuss global cooperation, economic diplomacy, and sustainable peace.
Queen Shanta delivered a compelling speech titled “Creating a Framework for a Global Peace Charter,” emphasizing the need for a justice-centered, faith-driven approach to global peace. She outlined a transformative vision, calling for governments, businesses, and faith leaders to unite to draft policies integrating equity, economic accountability, and environmental stewardship into global governance.
“The pursuit of peace is not just the absence of war; it is the presence of justice, dignity, and
opportunity for all, ” Queen Shanta stated. “We must move beyond just talking and establish
actionable frameworks that empower nations and communities to achieve lasting prosperity and peace.”
The EurAsia Afro Chamber of Commerce, under the leadership of its founder and chairman, Dr. Rohit Gupta, is dedicated to fostering economic and cultural collaboration between Africa, Asia, and Europe. The organization aims to create a strong, interconnected business network
bridging these regions, facilitating pathways for economic prosperity and diplomatic relations.
As a prolific leader within the African American diaspora and a global advocate for its
advancement, HRM Queen Shanta Lana Hereford is actively exploring opportunities for trade
and commerce between Africa, Asia, Europe, and other international communities.
Through her affiliations with organizations such as The African Diaspora Collective, The Atlanta Black Chambers, The Black Achievement Fund, The National Business League, The 10K Project, and many others, she is championing economic initiatives that build sustainable supply chains and foster strategic partnerships.
Her mission is to create economic opportunities for Black entrepreneurs and business leaders in America, who have historically been excluded from global trade discussions. By forging these international connections, Queen Hereford is working to ensure that Black communities in the U.S. not only have a seat at the table but play a key role in shaping the future of international commerce, economic empowerment, and global policy.
The event featured several other distinguished guests, including:
● Dr. Rohit Gupta: Founder and Chairman of the EurAsia Afro Chamber of Commerce,
Dr. Gupta has been instrumental in promoting cross-continental business relationships
and trade.
● H.E. Bishop Dr. Samsher Khan: Founder of the BSK Prayer Tower and IRKT, Bishop
Dr. Khan serves as a Peace Ambassador for the International Human Rights
Commission (IHRC) and holds the position of Asia’s Social Media Editor. He is dedicated
to promoting peace and spiritual well-being across communities.
● Madam Sadhvi Pragya Bharti: Sadhvi Pragya Bharti is a spiritual leader, humanitarian,
and national media panelist known for her advocacy of social and educational reforms
rooted in spirituality and justice.
The event underscored the importance of strategic economic partnerships as a tool for
peacebuilding, aligning with Queen Hereford’s global mission of self-determination and
economic sovereignty for Black and Indigenous communities worldwide.
As part of her continued advocacy, Queen Hereford urged global stakeholders to collaborate on
drafting a Global Peace Charter, organizing annual Global Peace Assemblies, and
implementing economic policies that uplift marginalized communities.
This event marks a significant milestone in international diplomacy, reinforcing the role of
economic and cultural cooperation in shaping a peaceful and prosperous future for all.
For media inquiries, interviews, or further information, please contact:
H.E. Roselyn Omaka
National Press Secretary, Nation of Cherut
Email: nps@nationofcherut.org
Phone: 281.301.5535
Bolanle Media covers a wide range of topics, including film, technology, and culture. Our team creates easy-to-understand articles and news pieces that keep readers informed about the latest trends and events. If you’re looking for press coverage or want to share your story with a wider audience, we’d love to hear from you! Contact us today to discuss how we can help bring your news to life
The AI Social Network You Didn’t See Coming
Kanye West’s Shocking Ashley Olsen Confession
How Your Lipstick, Lunch & Underwear Predict a Recession
Tech6 hours agoThe AI Social Network You Didn’t See Coming
- Entertainment8 hours ago
Kanye West’s Shocking Ashley Olsen Confession
- Business1 day ago
Chinese Business Owners Face Uncertainty as Trade War Escalates and Growth Slows
- Business1 day ago
How Your Lipstick, Lunch & Underwear Predict a Recession
- Business1 week ago
TADC Expands to Nigeria with Abuja Office Launch
- News2 days ago
China Just Dumped the US Dollar
- Film Industry2 days ago
When The Script Sucks, But You Already Started Shooting
- News3 days ago
Are Rivals Stealing Hollywood’s Spotlight? Inside LA’s Production Crisis
