Letter to the editor
This is in response to an FCW.com survey question that asked "What is the primary obstacle to improving information security at federal agencies?"
What's needed is the ability to execute cost-effective solutions in a timely manner. Innovative solutions are much needed to rapidly change the infrastructure culture.
One example is from the Energy Department in a January 2000 guideline, Cyber Security Action Plan II. The document presents a concept of "thin policies" and allows application to individual agency sites according to the technology available, risk assessments, etc.
However, the innovative solutions must be supported by all of the infrastructure stakeholders to provide any real results.
Name withheld upon request