Document Actions
Critical Infrastructure Protection - Improving Information Sharing with Infrastructure Sectors
Date: July 9, 2004
Institution: General Accounting Office
Bibliographic Entry: GAO Report (GAO-04-780): "Critical Infrastructure Protection- Improving Information Sharing With Infrastructure Sectors." General Accounting Office. July 9, 2004.
Electronic Link: http://www.gao.gov/new.items/d04780.pdf
Key Words: Critical infrastructure protection (CIP), information sharing, information sharing and analysis centers (ISACs), information analysis and infrastructure protection (IAIP), cooperation between public and private sectors, protected critical infrastructure information program (PCII), HSPD-7, HSPD-9, PDD-63, General Accounting Office (GAO)
Summary of Key Issues, Points, Conclusions:
Critical Infrastructure Protection (CIP) calls for federal policy and laws to better the security of our public and private infrastructure sectors that are essential for our nation’s security and well-being. Information sharing partnerships are a crucial part of CIP. Information Sharing and Analysis Centers (ISACs) have been created in response to this need of cooperation. Actions were identified by the GAO on what the Department of Homeland Security could do to improve the effectiveness of CIP information sharing.
Strategies, awareness, and the knowledge of needing cooperation between federal and state level governments for the protection of our nation’s critical infrastructure have been in development since the mid 1990’s. Also, specific responsibilities were assigned to the Department of Homeland Security and other federal agencies involved with critical infrastructure protection. ISAC’s have identified several challenges that require more federal action:
- Building relationship trust
- Developing information sharing processes
- Overcoming information sharing obstacles
- Clearer roles and responsibilities for private and government facilities
- Funding ISAC operations and activities
The Department of Homeland Security has been developing a plan for implementing public and private partnerships, but the plan is still in progress. This plan would encourage information sharing among the different ISAC’s by clarifying the specific roles and responsibilities of those involved. DHS also lacks procedures and policies that would make sure information is being shared among the different entities.
The GAO has two recommendations for the Department of Homeland Security:
- Continue with the development of information sharing plans
- Establish department policies and procedures that are appropriate for communication with other entities of critical infrastructure protection
Name of Researcher: Allison McFarland
Institution: Integrative Center for Homeland Security, Texas A&M University
Date Posted: July 1, 2005