The five identified federal agencies (Departments of Homeland Security, Commerce, Justice, and Transportation and Federal Communications Commission (FCC)) have to varying degrees, coordinated cybersecurity-related activities with state and local governments. These activities included (1) supporting critical infrastructure protection-related planning, (2) issuing grants, (3) sharing information, (4) providing technical assistance, and (5) regulating and overseeing essential functions. However, except for supporting critical infrastructure planning, federal coordination of these activities was generally not targeted towards or focused on the cybersecurity of state and local public safety entities involved in handling 911 emergency calls. Under the critical infrastructure protection planning activity, the Department of Homeland Security (DHS) coordinated with state and local governments and other federal stakeholders to complete the Emergency Services Sector-Specific Plan. The plan is to guide the sector, including the public safety entities, in setting protective program goals and objectives, identifying assets, assessing risks, prioritizing infrastructure components and programs to enhance risk mitigation, implementing protective programs, measuring program effectiveness, and incorporating research and development of technology initiatives into sector planning efforts. It also addressed aspects of cybersecurity of the current environment. However, the plan did not address the development and implementation of more interconnected, Internet-based planned information technologies, such as the next generation of 911 services. According to DHS officials, the plan did not address these technologies, in part, because the process for updating the sector-specific plan will begin after the release of the revised National Infrastructure Protection Plan--a unifying framework to enhance the safety of the nation's critical infrastructure. A revised plan was released in December 2013, and, according to DHS, a new sector-specific plan is estimated to be completed in December 2014. Until DHS, in collaboration with stakeholders, addresses the cybersecurity implications of the emerging technologies in planning activities, information systems are at an increased risk of failure or being unavailable at critical moments. Under the other four activities, federal agencies performed some coordination related activities for public safety entities including administering grants for information technology enhancements, sharing information about cyber-based attacks, and providing technical assistance through education and awareness efforts. For example, the Departments of Transportation and Commerce allocated $43.5 million in grants to states over a 3-year period, starting in September 2009, to help implement enhancements to 911 system functionality. While these grants were not targeted towards the cybersecurity of these systems, cybersecurity was not precluded from the allowed use of the funds.

High-Containment Laboratories: National Strategy for Oversight Is Needed

This volume addresses the challenges associated with methodology and application of risk and resilience science and practice to address emerging threats in environmental, cyber, infrastructure and other domains. The book utilizes the collective expertise of scholars and experts in industry, government and academia in the new and emerging field of resilience in order to provide a more comprehensive and universal understanding of how resilience methodology can be applied in various disciplines and applications. This book advocates for a systems-driven view of resilience in applications ranging from cyber security to ecology to social action, and addresses resilience-based management in infrastructure, cyber, social domains and methodology and tools. Risk and Resilience has been written to open up a transparent dialog on resilience management for scientists and practitioners in all relevant academic disciplines and can be used as supplement in teaching risk assessment and management courses.

This comprehensive new resource provides an introduction to fundamental Attribute Based Access Control (ABAC) models. This book provides valuable information for developing ABAC to improve information sharing within organizations while taking into consideration the planning, design, implementation, and operation. It explains the history and model of ABAC, related standards, verification and assurance, applications, as well as deployment challenges. Readers find authoritative insight into specialized topics including formal ABAC history, ABAC’s relationship with other access control models, ABAC model validation and analysis, verification and testing, and deployment frameworks such as XACML. Next Generation Access Model (NGAC) is explained, along with attribute considerations in implementation. The book explores ABAC applications in SOA/workflow domains, ABAC architectures, and includes details on feature sets in commercial and open source products. This insightful resource presents a combination of technical and administrative information for models, standards, and products that will benefit researchers as well as implementers of ABAC systems in the field.

U.S. Arctic waters north of the Bering Strait and west of the Canadian border encompass a vast area that is usually ice covered for much of the year, but is increasingly experiencing longer periods and larger areas of open water due to climate change. Sparsely inhabited with a wide variety of ecosystems found nowhere else, this region is vulnerable to damage from human activities. As oil and gas, shipping, and tourism activities increase, the possibilities of an oil spill also increase. How can we best prepare to respond to such an event in this challenging environment? Responding to Oil Spills in the U.S. Arctic Marine Environment reviews the current state of the science regarding oil spill response and environmental assessment in the Arctic region north of the Bering Strait, with emphasis on the potential impacts in U.S. waters. This report describes the unique ecosystems and environment of the Arctic and makes recommendations to provide an effective response effort in these challenging conditions. According to Responding to Oil Spills in the U.S. Arctic Marine Environment, a full range of proven oil spill response technologies is needed in order to minimize the impacts on people and sensitive ecosystems. This report identifies key oil spill research priorities, critical data and monitoring needs, mitigation strategies, and important operational and logistical issues. The Arctic acts as an integrating, regulating, and mediating component of the physical, atmospheric and cryospheric systems that govern life on Earth. Not only does the Arctic serve as regulator of many of the Earth's large-scale systems and processes, but it is also an area where choices made have substantial impact on life and choices everywhere on planet Earth. This report's recommendations will assist environmentalists, industry, state and local policymakers, and anyone interested in the future of this special region to preserve and protect it from damaging oil spills.