November 10, 2016 By Douglas Bonderud 2 min read

With cybersecurity threats on the rise, the U.K. government will double down on cybersecurity spending to the tune of $2.3 billion. Here’s a look at how this U.K. cybersecurity investment will impact the nation’s IT front lines.

An Ambitious Plan

As noted by TechRepublic, the U.K.’s new National Cyber Security Strategy calls for $2.3 billion worth of investments over the next five years. The 84-page plan laid out several initiatives, many of which focus on securing the online accounts and identities of British citizens at home and abroad.

A number of technologies are on deck to help empower this effort, including Trusted Platform Modules (TPM) and evolving standards such as Fast IDentity Online (FIDO). According to TechTarget, TPM focuses on the use of specialized chips on endpoint devices that store RSA keys for hardware authentication.

FIDO, meanwhile, isn’t a specific authentication method. Rather, it’s an effort by multiple agencies to develop nonpassword authentication methods such as those reliant on Bluetooth, near-field communication (NFC) or biometrics.

While experts have urged companies to give up passwords in favor of more secure alternatives for years, the lack of viable options combined with the familiarity of username/password combinations has helped extend the longevity of this insecure authentication method. The new U.K. cybersecurity investment will also focus on education to help make end users more aware of potential technology risks and opportunities.

Small Potatoes?

Nations must brace for more “destructive, disruptive and coercive” cyberattacks, VOA News reported. That’s the word from Paul Chichester, director of operations at Britain’s National Cyber Security Center — a sentiment echoed by Lt. Gen. James K. McLaughlin, deputy commander at U.S. Cyber Command.

According to The Guardian, the British government is well aware of increasing cybersecurity risks, placing them on the same level as international military conflicts and terrorism. But here’s the thing: The U.K. already spends more than $40 billion each year to address the tier 1 issue of national defense, which means the $2.3 billion commitment works out to just under $500 million per year through 2021. Will that be enough?

UK’s Cybersecurity Investment Strikes Back

As BankInfoSecurity noted, U.K. Chancellor Philip Hammond made it clear that cyberdefense initiatives would “strike back in kind” against attackers. The problem is attribution. In the midst of mitigating and remediating attacks, is it possible to positively identify the source? And if so, is striking back really the best use of time and resources?

No matter the outcome, however, it’s clear that the new U.K. cybersecurity investment hopes to create an actionable, articulate defense against cyberthreats, whether it takes the form of FIDO authentication methods for users or counterpunch tactics from government agencies. Time and the technology landscape will tell if this new initiative empowers end users or puts government cyberdefense in the doghouse.

More from

Cloud Threat Landscape Report: AI-generated attacks low for the cloud

2 min read - For the last couple of years, a lot of attention has been placed on the evolutionary state of artificial intelligence (AI) technology and its impact on cybersecurity. In many industries, the risks associated with AI-generated attacks are still present and concerning, especially with the global average of data breach costs increasing by 10% from last year.However, according to the most recent Cloud Threat Landscape Report released by IBM’s X-Force team, the near-term threat of an AI-generated attack targeting cloud computing…

Testing the limits of generative AI: How red teaming exposes vulnerabilities in AI models

4 min read - With generative artificial intelligence (gen AI) on the frontlines of information security, red teams play an essential role in identifying vulnerabilities that others can overlook.With the average cost of a data breach reaching an all-time high of $4.88 million in 2024, businesses need to know exactly where their vulnerabilities lie. Given the remarkable pace at which they’re adopting gen AI, there’s a good chance that some of those vulnerabilities lie in AI models themselves — or the data used to…

FBI, CISA issue warning for cross Apple-Android texting

3 min read - CISA and the FBI recently released a joint statement that the People's Republic of China (PRC) is targeting commercial telecommunications infrastructure as part of a significant cyber espionage campaign. As a result, the agencies released a joint guide, Enhanced Visibility and Hardening Guidance for Communications Infrastructure, with best practices organizations and agencies should adopt to protect against this espionage threat. According to the statement, PRC-affiliated actors compromised networks at multiple telecommunication companies. They stole customer call records data as well…

Topic updates

Get email updates and stay ahead of the latest threats to the security landscape, thought leadership and research.
Subscribe today