The government's cyber security strategy - too little too late?

The government needs to go after hackers outside of its jurisdiction, say experts

Security experts have given the government's new cyber security strategy announced today a cautious welcome, but warned that greater efforts are needed internationally to ensure the safety of the internet.

The main elements of the strategy announced by prime minister Gordon Brown today included a new cyber security operations centre, a national cyber security office and a cyber security tsar. Also announced was extra funding to help improve information sharing, and enable better detection and response to online attacks.

Tony Dyhouse, director of government-backed organisation the Cyber Security Knowledge Transfer Network, said IT crime is "crippling the UK economy" and needs to be addressed by government.

"Cyber criminals are using innovative methods to steal vast amounts of money, therefore a strategic approach to combating cyber crime is essential," he said. "We need to stay one step ahead of organised e-crime activity, and the UK’s Cyber Security Strategy is the best way forward."

Rick Howard, director of intelligence at managed security services firm iDefense, added his backing to the proposals, but said it was too early to tell if these measures would actually prove effective.

"It is encouraging to hear about the British authorities reaching out to the white hat hacker community; the Russian and Chinese have been doing that for years and are way ahead of both the US and the UK in this regard," he said. "In the Chinese case, they use their hacker community to collect unclassified intelligence from western government workers and contractors. The fact that the UK intends to use hackers for a good cause is encouraging.”

Martin Sutherland, managing director of security consultancy Detica, said the strategy would succeed or fail depending on the amount of funding it receives.

"The programme announced today will require a strong partnership between government and industry, as well as extensive international engagement," he said.

"If the commitment is there, and the necessary funding, we believe this programme will make a substantial difference in ensuring that cyber space, and hence the public, becomes safer and more secure."