INPUT Government Technology Market Blog

Will Security Issues Block the Road to Web 2.0?
Posted on: July 15, 2008 | Posted By: Deniece Peterson
Related Categories: Information Security, Technology Trends, Events, Federal

I recently attended an ITAA event titled, "Defense 2.0: Transforming DoD Through the New Paradigm of IT." What was most interesting about this event was the difference in tone between Deputy Secretary David Wennergren and most of the presenters at this event. DoD Deputy Assistant Secretary/Deputy CIO David Wennergren has been very outspoken about the role of Web 2.0 for DoD, and is a very enthusiastic and impassioned speaker when he discusses how important and transformative it is (read this FCW article for the latest on Web 2.0 at DISA). On the flip side, many of the speakers at this event presented a more cautious and, some could say, discouraging picture of Web 2.0. Most of the ½ day event was spent talking about security, which clearly is a significant roadblock for agencies contemplating Web 2.0. Mitch Komaroff, DoD's Assistant Secretary of Defense, Networks and Information Integration (ASD-NII)/CIO discussed the conflict of operating in the cloud among criminals, terrorists, and nation states. DoD will need to perform certain functions in the cloud, but he sees it like the Wild Wild West, with no limitations.

There was so much focus on the problems, that one attendee asked (and I'm paraphrasing),"Will Web 2.0 ever happen in government? From everything we've heard here about the security issues, it sounds like Web 2.0 is a long shot for most agencies." In essence, he was asking what seemed to be a thought shared by many in the audience (or at least the people at my table), which was "Then what are we doing here?"

The answer to this question came in many forms:

  • Contractors need to partner with government early to attack the security problems. Speakers from Microsoft and IBM discussed some of their companies' activities around cloud computing and improving security
  • Industry can help DoD by providing components that "self demonstrate" their level of security and information assurance, and helping DoD determine a "baseline risk posture", e.g., an acceptable level of risk.
  • The "Security Guys" aren't always invited to the Web 2.0 discussion, but that is changing.
  • We need to understand the last generation of security problems before jumping into new capabilities, but we have to get there quickly in order to meet the capabilities of our enemies.
  • Web 2.0 and cloud computing are emerging as self-service platforms that are, in many cases, grassroots efforts that will drive more adoption. For example, Navy CIO Robert Carey talked about the Combined Information Data Network Exchange (CIDNE), which began as a homegrown effort in the field to track battlefield actions and IEDs, and grew to become a widely used tool by battlefield commanders. He said that much of the innovation occurs this way – informally, needs-driven, and from the bottom up.

    • There seems to be a dichotomy within government when it comes to Web 2.0. Some lead the conversation with Web 2.0 as not only a way to improve service delivery and meet mission objectives, but also as a way to attract the next generation of expertise. Others see it as Security Problem 2.0 (1.0 has yet to be solved).

    In either case, whether government barrels full steam ahead into the Web 2.0 and 3.0 light, or is dragged into it begrudgingly, there is no denying that this is in its future. As with many innovations within government, the technology is the easy part - it's getting people on board that's the challenge.

    Comments (0) | Print | Send | del.icio.us | Digg It! | Technorati
    Comments (Comment Moderation is enabled. Your comment will not appear until approved.)

    There are no comments for this entry.

    [Add Comment]