With cybersecurity threats on the rise, the U.K. government will double down on cybersecurity spending to the tune of $2.3 billion. Here’s a look at how this U.K. cybersecurity investment will impact the nation’s IT front lines.
An Ambitious Plan
As noted by TechRepublic, the U.K.’s new National Cyber Security Strategy calls for $2.3 billion worth of investments over the next five years. The 84-page plan laid out several initiatives, many of which focus on securing the online accounts and identities of British citizens at home and abroad.
A number of technologies are on deck to help empower this effort, including Trusted Platform Modules (TPM) and evolving standards such as Fast IDentity Online (FIDO). According to TechTarget, TPM focuses on the use of specialized chips on endpoint devices that store RSA keys for hardware authentication.
FIDO, meanwhile, isn’t a specific authentication method. Rather, it’s an effort by multiple agencies to develop nonpassword authentication methods such as those reliant on Bluetooth, near-field communication (NFC) or biometrics.
While experts have urged companies to give up passwords in favor of more secure alternatives for years, the lack of viable options combined with the familiarity of username/password combinations has helped extend the longevity of this insecure authentication method. The new U.K. cybersecurity investment will also focus on education to help make end users more aware of potential technology risks and opportunities.
Nations must brace for more “destructive, disruptive and coercive” cyberattacks, VOA News reported. That’s the word from Paul Chichester, director of operations at Britain’s National Cyber Security Center — a sentiment echoed by Lt. Gen. James K. McLaughlin, deputy commander at U.S. Cyber Command.
According to The Guardian, the British government is well aware of increasing cybersecurity risks, placing them on the same level as international military conflicts and terrorism. But here’s the thing: The U.K. already spends more than $40 billion each year to address the tier 1 issue of national defense, which means the $2.3 billion commitment works out to just under $500 million per year through 2021. Will that be enough?
UK’s Cybersecurity Investment Strikes Back
As BankInfoSecurity noted, U.K. Chancellor Philip Hammond made it clear that cyberdefense initiatives would “strike back in kind” against attackers. The problem is attribution. In the midst of mitigating and remediating attacks, is it possible to positively identify the source? And if so, is striking back really the best use of time and resources?
No matter the outcome, however, it’s clear that the new U.K. cybersecurity investment hopes to create an actionable, articulate defense against cyberthreats, whether it takes the form of FIDO authentication methods for users or counterpunch tactics from government agencies. Time and the technology landscape will tell if this new initiative empowers end users or puts government cyberdefense in the doghouse.