Feature Slides



2019 Federal Cybersecurity Research and Development Strategic Plan

Every four years, the applicable Federal agencies, working through the National Science and Technology Council and the NITRD program, develop and update the Federal Cybersecurity Research and Development Strategic Plan. On behalf of Federal agencies, NITRD's Cyber Security and Information Assurance Interagency Working Group (CSIA IWG) is leading the effort to prepare the next update of the strategic plan, to be released by end of 2019.

Request For Information (RFI)
In preparation for the strategic plan update, the CSIA IWG seeks public input on Federal priorities in cybersecurity R&D. Interested individuals or organizations are encouraged to respond to the Request for Information posted at https://www.federalregister.gov/d/2018-24668 [Federal Register Doc. 2018-24668, Filed on 11-9-2018]. Submissions are due by January 15, 2019 to cybersecurity@nitrd.gov.





2016 Federal Cybersecurity Research and Development Strategic Plan

As part of the President’s Cybersecurity National Action Plan (CNAP), the Administration released the 2016 Federal Cybersecurity Research and Development Strategic Plan, which was coordinated by the National Science and Technology Council. This is the most comprehensive Federal cybersecurity research and development (R&D) plan to date, and it updates 2011’s Trustworthy Cyberspace: Strategic Plan for the Federal Cybersecurity Research and Development Program. With the goal of making cyberspace inherently more secure, the plan challenges the cybersecurity R&D community to provide methods and tools for deterring, protecting, detecting, and adapting to malicious cyber activities. The plan defines near-, mid-, and long-term goals to guide and evaluate progress. Read more in the White House announcement of the strategic plan.

Background





2011 Federal Cybersecurity Research and Development Strategic Plan

In 2011, Federal agencies released “Trustworthy Cyberspace: Strategic Plan for the Federal Cybersecurity Research and Development Program”, a strategic plan for cybersecurity research and development.

The strategic plan provides a framework for prioritizing Federal cybersecurity R&D in a way that concentrates research efforts on limiting current cyberspace deficiencies, precluding future problems, and expediting the infusion of research accomplishments into the marketplace. The main thrusts of the strategy are:

Achieving enduring trustworthiness of cyberspace requires new paradigms that re-balance security asymmetries of today’s landscape: the cost of simultaneously satisfying all the requirements of an ideal cybersecurity solution in a static system is impossibly high, and so we must enable sub-spaces in cyberspace to support different security policies and different security services for different types of interactions; the cost of attack is asymmetric, favoring the attacker, and so defenders must increase the cost of attack and must employ methods that enable them to continue to operate in the face of attack; the lack of meaningful metrics and economically sound decision making in security misallocates resources, and so we must promote economic principles that encourage the broad use of good cybersecurity practices and deter illicit activities.

Publications and references




Publications and references


Other Links