The Promises and Perils of Emerging Technologies for Cybersecurity Hearing
Total Page:16
File Type:pdf, Size:1020Kb
S. HRG. 115–140 THE PROMISES AND PERILS OF EMERGING TECHNOLOGIES FOR CYBERSECURITY HEARING BEFORE THE COMMITTEE ON COMMERCE, SCIENCE, AND TRANSPORTATION UNITED STATES SENATE ONE HUNDRED FIFTEENTH CONGRESS FIRST SESSION MARCH 22, 2017 Printed for the use of the Committee on Commerce, Science, and Transportation ( U.S. GOVERNMENT PUBLISHING OFFICE 28–382 PDF WASHINGTON : 2018 For sale by the Superintendent of Documents, U.S. Government Publishing Office Internet: bookstore.gpo.gov Phone: toll free (866) 512–1800; DC area (202) 512–1800 Fax: (202) 512–2104 Mail: Stop IDCC, Washington, DC 20402–0001 VerDate Nov 24 2008 06:45 Feb 21, 2018 Jkt 075679 PO 00000 Frm 00001 Fmt 5011 Sfmt 5011 S:\GPO\DOCS\28382.TXT JACKIE SENATE COMMITTEE ON COMMERCE, SCIENCE, AND TRANSPORTATION ONE HUNDRED FIFTEENTH CONGRESS FIRST SESSION JOHN THUNE, South Dakota, Chairman ROGER F. WICKER, Mississippi BILL NELSON, Florida, Ranking ROY BLUNT, Missouri MARIA CANTWELL, Washington TED CRUZ, Texas AMY KLOBUCHAR, Minnesota DEB FISCHER, Nebraska RICHARD BLUMENTHAL, Connecticut JERRY MORAN, Kansas BRIAN SCHATZ, Hawaii DAN SULLIVAN, Alaska EDWARD MARKEY, Massachusetts DEAN HELLER, Nevada CORY BOOKER, New Jersey JAMES INHOFE, Oklahoma TOM UDALL, New Mexico MIKE LEE, Utah GARY PETERS, Michigan RON JOHNSON, Wisconsin TAMMY BALDWIN, Wisconsin SHELLEY MOORE CAPITO, West Virginia TAMMY DUCKWORTH, Illinois CORY GARDNER, Colorado MAGGIE HASSAN, New Hampshire TODD YOUNG, Indiana CATHERINE CORTEZ MASTO, Nevada NICK ROSSI, Staff Director ADRIAN ARNAKIS, Deputy Staff Director JASON VAN BEEK, General Counsel KIM LIPSKY, Democratic Staff Director CHRIS DAY, Democratic Deputy Staff Director RENAE BLACK, Senior Counsel (II) VerDate Nov 24 2008 06:45 Feb 21, 2018 Jkt 075679 PO 00000 Frm 00002 Fmt 5904 Sfmt 5904 S:\GPO\DOCS\28382.TXT JACKIE C O N T E N T S Page Hearing held on March 22, 2017 ............................................................................ 1 Statement of Senator Thune ................................................................................... 1 Prepared statement from Professors Scott Shackelford and Steve Myers, Indiana University ........................................................................................ 74 Prepared statement from Larry Clinton, President and CEO, Internet Security Alliance ........................................................................................... 81 Prepared statement from Theresa Payton, CEO, Fortalice Solutions LLC . 87 Statement of Senator Nelson .................................................................................. 3 Statement of Senator Wicker .................................................................................. 45 Statement of Senator Cantwell .............................................................................. 49 Statement of Senator Inhofe ................................................................................... 51 Statement of Senator Schatz .................................................................................. 53 Statement of Senator Markey ................................................................................. 55 Statement of Senator Peters ................................................................................... 57 Statement of Senator Cortez Masto ....................................................................... 59 Statement of Senator Udall .................................................................................... 61 Statement of Senator Fischer ................................................................................. 63 Statement of Senator Hassan ................................................................................. 64 Statement of Senator Blumenthal .......................................................................... 66 Statement of Senator Cruz ..................................................................................... 72 WITNESSES Caleb Barlow, Vice President, Threat Intelligence, IBM Security ...................... 4 Prepared statement .......................................................................................... 6 Venky Ganesan, Managing Partner, Menlo Ventures; and Chair, National Venture Capital Association ................................................................................ 10 Prepared statement .......................................................................................... 12 Steve Grobman, Intel Fellow and Chief Technology Officer, Intel Security Group .................................................................................................................... 20 Prepared statement .......................................................................................... 21 Malcolm Harkins, Chief Security and Trust Officer, Cylance Inc. ...................... 28 Prepared statement .......................................................................................... 30 Hon. Eric Rosenbach, Former DOD Chief of Staff and Former Assistant Secretary of Defense for Homeland Defense and Global Security ................... 42 Prepared statement .......................................................................................... 44 APPENDIX Letter dated March 22, 2017 to Hon. John Thune and Hon. Bill Nelson from Marc Rotenberg, President, EPIC; and Caitriona Fitzgerald, Policy Director, EPIC ...................................................................................................... 91 Response to written questions submitted to Caleb Barlow by: Hon. John Thune .............................................................................................. 95 Hon. Todd Young .............................................................................................. 97 Hon. Edward Markey ....................................................................................... 98 Hon. Tammy Duckworth .................................................................................. 98 Response to written questions submitted to Venky Ganesan by: Hon. John Thune .............................................................................................. 99 Hon. Jerry Moran ............................................................................................. 100 Hon. Edward Markey ....................................................................................... 101 Hon. Tammy Duckworth .................................................................................. 101 (III) VerDate Nov 24 2008 06:45 Feb 21, 2018 Jkt 075679 PO 00000 Frm 00003 Fmt 5904 Sfmt 5904 S:\GPO\DOCS\28382.TXT JACKIE IV Page Response to written questions submitted to Steve Grobman by: Hon. John Thune .............................................................................................. 102 Hon. Edward Markey ....................................................................................... 105 Hon. Tammy Duckworth .................................................................................. 106 Response to written questions submitted to Malcolm Harkins by: Hon. John Thune .............................................................................................. 108 Hon. Edward Markey ....................................................................................... 110 Hon. Tammy Duckworth .................................................................................. 110 Response to written questions submitted to Hon. Eric Rosenbach by: Hon. John Thune .............................................................................................. 111 Hon. Bill Nelson ............................................................................................... 113 Hon. Edward Markey ....................................................................................... 113 Hon. Tammy Duckworth .................................................................................. 114 VerDate Nov 24 2008 06:45 Feb 21, 2018 Jkt 075679 PO 00000 Frm 00004 Fmt 5904 Sfmt 5904 S:\GPO\DOCS\28382.TXT JACKIE THE PROMISES AND PERILS OF EMERGING TECHNOLOGIES FOR CYBERSECURITY WEDNESDAY, MARCH 22, 2017 U.S. SENATE, COMMITTEE ON COMMERCE, SCIENCE, AND TRANSPORTATION, Washington, DC. The Committee met, pursuant to notice, at 10:05 a.m. in room SD–106, Dirksen Senate Office Building, Hon. John Thune, Chair- man of the Committee, presiding. Present: Senators Thune [presiding], Wicker, Cruz, Fischer, Moran, Sullivan, Heller, Inhofe, Capito, Gardner, Young, Nelson, Cantwell, Klobuchar, Blumenthal, Schatz, Markey, Booker, Udall, Peters, Hassan, and Cortez Masto. OPENING STATEMENT OF HON. JOHN THUNE, U.S. SENATOR FROM SOUTH DAKOTA The CHAIRMAN. Good morning. As chairman, I’ve made it a pri- ority for this committee to focus on emerging technologies. We’ve held some of the first hearings in Congress on artificial intel- ligence, self-driving vehicles, Internet of Things, and augmented re- ality. Today, we’ll continue this practice, but this time, we’ll be fo- cusing on the potential benefits and sometimes risks that certain emerging technologies have on cybersecurity. As my fellow committee members know well, cybersecurity is a topic that comes up at almost every hearing that we hold. The cut- ting edge technologies we’re exploring today are fundamentally transforming how people and businesses connect as well as the cre- ation and transmission of information. Emerging technologies such as artificial intelligence, block chain, and quantum computing, as well as the flourishing Internet of Things offer