Trump admin to revisit bedrock cyber policies as it implements new strategy

Corresponding executive actions on cybercrime and ransomware are in the works. The forthcoming cyber strategy also includes an offensive pillar focused on “preemptive erosion” of foreign adversaries’ hacking attempts.

The White House’s soon-to-arrive cybersecurity strategy includes parallel plans to examine and revise bedrock policy frameworks that govern U.S. cyber operations and responses to major cyberattacks from foreign adversaries, according to four people familiar with the matter.

Implementation steps for the Trump administration’s forthcoming cyber strategy, set for release in January, will include reexamining policies like NSPM-13, a classified document that governs what agencies can launch cyber operations and how they are authorized; PPD-41, which governs what happens when a major cyber incident hits U.S. soil, including lead agencies and coordination structures; and NSM-22, which sets standards for protecting critical infrastructure across various sectors. 

Executive orders focused on cybercrime and ransomware groups are also being arranged, two ...