National Defense Authorization Act For FY 2010
I stumbled upon a security blog of some guy who took a good look at the National Defense Authorization Act for FY 2010.
I must admit, regarding my topic on offensive cyber security policy, some interesting provisions are included in the act. As I don’t want to keep these from you, please see below (Strong emphasis added):
SEC. 931. IMPLEMENTATION STRATEGY FOR DEVELOPING LEAPAHEAD CYBER OPERATIONS CAPABILITIES.
(a) STRATEGY REPORT REQUIRED.—Not later than March 1,
2010, the Under Secretary of Defense for Acquisition, Technology,
and Logistics shall submit to the congressional defense committees
a report on a strategy for organizing the research and development
bodies of the Department of Defense to develop leap-ahead cyber
operations capabilities.
(b) ELEMENTS.—The report required by subsection (a) shall address the following: (1) A description of the management structure and investment
review process for coordinating the technology development
of advanced offensive and defensive cyber operations
capabilities—
(e) CYBER OPERATIONS CAPABILITIES DEFINED.—The term
‘‘cyber operations capabilities’’ means the range of capabilities
needed for computer network defense, computer network attack,
and computer network exploitations. Such term includes technical as well as non-materiel solutions