November 10, 2016 By Douglas Bonderud 2 min read

With cybersecurity threats on the rise, the U.K. government will double down on cybersecurity spending to the tune of $2.3 billion. Here’s a look at how this U.K. cybersecurity investment will impact the nation’s IT front lines.

An Ambitious Plan

As noted by TechRepublic, the U.K.’s new National Cyber Security Strategy calls for $2.3 billion worth of investments over the next five years. The 84-page plan laid out several initiatives, many of which focus on securing the online accounts and identities of British citizens at home and abroad.

A number of technologies are on deck to help empower this effort, including Trusted Platform Modules (TPM) and evolving standards such as Fast IDentity Online (FIDO). According to TechTarget, TPM focuses on the use of specialized chips on endpoint devices that store RSA keys for hardware authentication.

FIDO, meanwhile, isn’t a specific authentication method. Rather, it’s an effort by multiple agencies to develop nonpassword authentication methods such as those reliant on Bluetooth, near-field communication (NFC) or biometrics.

While experts have urged companies to give up passwords in favor of more secure alternatives for years, the lack of viable options combined with the familiarity of username/password combinations has helped extend the longevity of this insecure authentication method. The new U.K. cybersecurity investment will also focus on education to help make end users more aware of potential technology risks and opportunities.

Small Potatoes?

Nations must brace for more “destructive, disruptive and coercive” cyberattacks, VOA News reported. That’s the word from Paul Chichester, director of operations at Britain’s National Cyber Security Center — a sentiment echoed by Lt. Gen. James K. McLaughlin, deputy commander at U.S. Cyber Command.

According to The Guardian, the British government is well aware of increasing cybersecurity risks, placing them on the same level as international military conflicts and terrorism. But here’s the thing: The U.K. already spends more than $40 billion each year to address the tier 1 issue of national defense, which means the $2.3 billion commitment works out to just under $500 million per year through 2021. Will that be enough?

UK’s Cybersecurity Investment Strikes Back

As BankInfoSecurity noted, U.K. Chancellor Philip Hammond made it clear that cyberdefense initiatives would “strike back in kind” against attackers. The problem is attribution. In the midst of mitigating and remediating attacks, is it possible to positively identify the source? And if so, is striking back really the best use of time and resources?

No matter the outcome, however, it’s clear that the new U.K. cybersecurity investment hopes to create an actionable, articulate defense against cyberthreats, whether it takes the form of FIDO authentication methods for users or counterpunch tactics from government agencies. Time and the technology landscape will tell if this new initiative empowers end users or puts government cyberdefense in the doghouse.

More from

New memo reveals Biden’s cybersecurity priorities through fiscal year 2026

2 min read - On July 10, 2024, the White House released a new memo regarding the Biden administration’s cybersecurity investment priorities, initially proposed in July 2022. This new memorandum now marks the third time the Office of the National Cyber Director (ONCD), headed by Harry Coker, has released updated priorities and outlined procedures regarding the five core pillars of the National Cybersecurity Strategy Implementation Plan (NCSIP), now relevant through fiscal year 2026. Key highlights from the FY26 memorandum In the latest annual version…

How prepared are you for your first Gen AI disruption?

5 min read - Generative artificial intelligence (Gen AI) and its use by businesses to enhance operations and profits are the focus of innovation in virtually every sector and industry. Gartner predicts that global spending on AI software will surge from $124 billion in 2022 to $297 billion by 2027. Businesses are upskilling their teams and hiring costly experts to implement new use cases, new ways to leverage data and new ways to use open-source tooling and resources. What they have failed to look…

Cybersecurity crisis communication: What to do

4 min read - Cybersecurity experts tell organizations that the question is not if they will become the target of a cyberattack but when. Often, the focus of response preparedness is on the technical aspects — how to stop the breach from continuing, recovering data and getting the business back online. While these tasks are critical, many organizations overlook a key part of response preparedness: crisis communication. Because a brand’s reputation often takes a significant hit, a cyberattack can significantly affect the company’s future…

Topic updates

Get email updates and stay ahead of the latest threats to the security landscape, thought leadership and research.
Subscribe today