The Center for Strategic and International Studies (CSIS) released a report last month on the threat of Cyber Terrorism. James A. Lewis, CSIS analyst and author of "Assessing the Risks of Cyber Terrorism, Cyber War and Other Cyber Threats," says the United States' infrastructure is not as vulnerable as some would have you believe. Lewis says, "While many computer networks remain very vulnerable to attack, few critical infrastructres are equally vulnerable. Computer network vulnerabilities are an increasingly serious business problem, but their threat to national security is overstated." The report centers on the concept that computer networks and critical infrastructures are separate entities, and that a threat to one is not a threat to both.
Lewis's claim is in the minority of expert opinion on the matter. According to Computerworld, he "offers few examples and technical details to support his claims." The CSIS report flies in the face of what, seemingly, the rest of the analyst community is saying. Brenton Greene, deputy director of the National Communications System, a government agency responsible for keeping communications online during a national crisis, opines that the cyber and physical infrastructures are too intertwined to be separated. He believes that change in one direcly affects the other.
Richard Clarke, chairman of the Critical Infrastructure Protection Board, says, "Cyberspace still is underappreciated as a threat." Clarke blames infrastructure vulnerabilities on unknown security holes in software in wide use and on the new technology that is constantly put to use. Clarke has also expressed great concern over wireless technologies.
Clarke says the next wave in terrorism will focus on the destruction of the American economy. He says some countries are creating cyberwarfare tactical units, and that criminal groups are getting involved in cybercrime.