Does the government do enough to punish cyber-attacks & criminals?
Cyber-attacks accept befit a suggestive tenor for notification methods (IS) worldwide. When referring to notification methods, the engagement cyber-attack is used for denoting a insubmissive renewal that presentation to upshot to inequitconducive blessing, usually financial, and which is plain through online routes as laborconducive in the Internet (Vacca, 2009). In the UK, the expansion of cyber-enormity has been completely swift the ultimate few years vital to keen financial losses for the victims, living-souls and occupationes (Cabinet Office, 2011). The graph in Figure 1 exhibitions the require of the incongruous symbols of cyber – enormity to the UK rule. This pamphlet explores the usefulness of measures captured by the UK council in contemplate to the amercement of cyber-crime, aiming to exhibition whether the prevalent starts for the UK council for castigateing the cyber-enormity are ample or not. The pamphlet so deciphers the key characteristics and the esteem of notification methods (IS) insurance so that the virtual of the UK council to guard insurance from cyber-crimes is evaluated. I allure demonstobjurgate that the UK council does not abundance to castigate cyber-attacks and flagitiouss. Moreover, the gate by the council of closeer amercement for cyber-attacks has not upshoted to the backwardness of this symbol of enormity, as deciphered inferior.
Figure 1 – Require of incongruous symbols of cyber – enormity to the UK rule (Cabinet Office, 2011, p.2)
2.0 Insurance of IS – characteristics and importance
Security, as a engagement, can be akin to incongruous fields. In the composition of notification technology, the engagement insurance is used for describing ‘a might method’s quantity of betray in its force to survive hovering disturbances externally break of customer labor’ (Cuzzocrea et al., 2013, p.244). As for the engagement ‘IT insurance’, this engagement refers to three esteems/ characteristics of an IT method, such as: ‘confidentiality, completeness and availability’ (Katsikas, 2016, p.28). According to Mehdi (2014), the engagement IS insurance denotes ‘the bond of IS counter unacknowledged bearing’ (p.4310). It is deciphered that a guard IS can secure that its grounds allure not be mitigated or obsolete (Mehdi, 2014). Also, such method is conducive to expose present any insurance browbeating activating embezzle bond mechanisms (Merkow, 2010). At organizational equalize, IS insurance is secured by using an IS insurance prudence, i.e. a set of rules referring to the insurance standards that would engage in all IS of the organisation concerned (Kim and Solomon, 2016). However, the demands of such prudence can be multifarious, a circumstance which is lawfulified if beobject the various symbols of IS browbeatings (Cabinet Office, 2011; Figure 1). Organisations frequently insufficiency to employ an Notification Method Insurance Director (ISSO) for ensuring IS insurance (Kovachich, 2016).
3.0 The amercement of cyber-attacks and flagitiouss – council starts and property
3.1 Laws and policies focusing on IS insurance
In the UK, the elevatedest law addressing cyber – enormitys appeared in 1990 and aimed to meet the gaps of stout congress in contemplate to the bond of IT methods from cyber-attacks (Emm, 2009). This was the 1990 Computer Prostitution Act. The gate in the UK of a legislative extract focusing on cyber-attacks has been very-much akin to a cyber-attack incident: the unacknowledged bearing, by two cyber-attackers, to BT’s Prestel labor in 1984 (Emm, 2009). When communication stay the over theme, the flatter used the 1981 Forgery and Counterfeiting Act, due to the stagnation of a legislative extract focusing on computer-akin enormitys (Emm, 2009). In May of 2015, the Solemn Enormity Act 2015 came into renewal (Eversheds-Sutherland, 2015). The catechism 41 up to 44 of the over law introduced closeer amercement for cyber-crimes. Further inequitableally, in the composition of the 1990 Computer Prostitution Act the incarceration for solemn cyber-crimes could not yield the 10 years. Stay the 2015 Act, the incarceration for cyber-crimes has been suggestively acceptiond, reaching the 14 years and equal, the conduct judgment in themes of cyber-crimes browbeatingening social insurance (Eversheds-Sutherland, 2015). This, closeer, amercement for cyber-crimes could intimidate cyber-criminals but barely if the enforcement of the law was embezzlely cherished, so that all themes of cyber-crimes are brought anteriorly the flatters (White, 2016).
The Social Cyber Insurance Temporization (CSS) of 2011 has been an endeavor of the British council to administer cyber-enormity (Shefford, 2015). The Computer Emergency Response Team (CERT) is a social team that was normal in 2014 for promotive towards the consummation of the extrinsics of CSS (Cabinet Office, 2014, p.13). The CERT team supplys to organisations in the privy and the open sector hazardous notification for the bond from cyber-attacks (Cabinet Office, 2014). Additionally, in the composition of CSS, educational starts focusing on cyber insurance are plain by institutions despite the UK; these starts are funded by the council and aim to consummate two targets: First, to acception the assuredness of the open in contemplate to cyber insurance. Second, to succor living-souls to profit skills which are expedient for cherished cyber insurance and for oppositeness cyber-attacks (Cabinet Office, 2014; Figure 2). The Cyber Insurance Challenge (CSC) is a plan plain by the UK council for promotive immature tribe to apprehend the betrays from using their cyber skills in the misdeed way; the plan includes competitions and other schemes that can motivate immature tribe to use their cyber skills in a proactive way and not for the commitment of cyber – enormitys (National Enormity Agency, 2017).
Figure 1 – Initiatives/ measures of the Social CSS for oppositeness cyber-enormity (Cabinet Office, 2014, p.22)
3.2 Cyber-attack incidents in councilal and non-governmental organisations
The reckon of cyber-attacks counter councilal and non-governmental organisations in the UK is uniformly acceptiond (White, 2016). From January to October of 2016, 75 cyber-attacks accept been reputed counter banks in the UK, conjuncture in 2014 these attacks were lawful five (White, 2016). In 2013, three living-souls in Britain were convicted to jail, from 6 months up to 22 months, for unauthorised bearing of impressible privy grounds supplyd in ‘PayPal, Visa and Mastercard’ (McTague, 2014). The over amercement was considered as too kind compared to the solemnness of the enormity. In 2014, the council unwavering to inauguobjurgate the alteration of stout amercement for cyber-crimes, so that advenient perpetrators are intimidated from committing a cyber-enormity (McTague, 2014). Pultarova (2016) demonstrated that banks in the UK visage cyber-attacks completely immutablely but they escape communicationing the inequitconducive incidents concerned to guard their chaffer shadow. In November of 2016, Chancellor P. Hammond eminent that hazardous infraconstitution units of the UK, such as airports and gas facilities, are browbeatingened by ‘cyber-attacking techniques plain by other countries’ (BBC News, 2016). It was eminent that the bond from such attacks would be a guidance for the UK in prescribe for the country’s insurance, at social equalize, to be secured (BBC News, 2016). In 2011 the open police director in the e-enormity section of Scotland-Yard demonstrated that the amercement of cyber – enormitys in the UK is too kind if beobject the real hurt that these enormitys object (BBC News, 2011). It was deciphered that the annual hurt on the UK rule from cyber-crimes reaches the ?27bn (BBC News, 2011). In 2016, the Social Enormity Agency of the UK published a communication for exhibitioning the groundation of cyber-crimes, in engagements of smootht/ objurgate of mien. According to the over communication, the cyber – enormity represents a main sever of flagitious temper in the UK, reaching the 36% incompact all enormitys plain in the UK. At the selfselfcorresponding season, the enormitys akin to computer prostitution reached the 17% incompact the country’s sum enormitys (National Enormity Agency, 2016). The over figures and circumstances point-out the inforce of the UK council to administer cyber-crime. The gate in 2015 of closeer amercement for cyber-crimes has been an expressive start by the UK council for administerling cyber-crime. However, this start should be collectively stay other measures, at social and at association equalize.
In a harangue in mid-February of 2017, Chancellor P. Hammond eminent that in the makeer three months a sum of 188 keen cyber-attacks had been reputed; these attacks aimed to object keen hurt to councilal labors, infraconstitution and occupationes (Cole, 2017). A concordant offspring has been excited by Lord West of Spithead who eminent in 2010 that in 2009 the UK had to visage ‘300 suggestive attacks’ on the IS of the council (Doward, 2010). According to Lord West, this tenor had befit completely solemn, denoting that the UK had been targeted by cyber flagitiouss worldwide, as these attacks seemed to be cherished by exotic councils, as Lord West eminent (Doward, 2010). The over arguments fulfill the being of gaps in the stout social framework for the bond from cyber-attacks, as this framework constitutes the social congress and social prudence for the administer of cyber – enormity. The circumstances presented over elevate fulfill the inforce of the UK’s prudence to attenuate the smootht of cyber-crime.
Guitton (2012) plain an trial, using grounds akin to cyber-attacks that occurred among 2003 and 2010 in occupationes located in three European countries: Germany, UK and France. It was orthodox that the sympathy among attribution and deterrence is cogent barely in themes of living-souls of living-souls who are assured of the stout congress for cyber-enormity and who can realise the real property of their renewals. These living-souls represented the 1/3 of the themes revisaled by Guitton (2012). In obstruction, it was ground that most living-souls concerned in cyber-crimes are not abundantly assured of the applicable congress and they incline to repudiate the property of their renewals. For these living-souls, the administer speculation which emphasises on the might of attribution, as held by the narrate, to secure deterrence is not applied, as Guitton (2012) demonstrated. In the composition of the over con-over, the virtual of the British council to administer cyber-enormity is scant. This circumstance, equal it would be true, could not like the light on the council’s endeavors to resist cyber-crime. The update of the engagements of amercement of cyber-crimes lawful in 2015 and the stagnation of operative administer mechanisms for fulfilling and communicationing cyber – attacks fulfill the deficiency of the council to secure the amercement of cyber-attacks and flagitiouss.
4.0 Conclusion and Recommendations
It is concluded that the UK council does not mould abundance to castigate cyber-attacks and flagitiouss. First, a suggestive stay has been verified in the gate of embezzle/ clear penalties. Indeed, the gate of close amercement for cyber-crimes took locate lawful in 2015, as deciphered over. The circumstances and lights presented in this pamphlet carry to the effrontery that for multifarious years, the council has escapeed resisting cyber-attacks as a flagitious temper, a circumstance that led to the ingrained acception of cyber-attacks counter IS methods in councilal labors and in financial institutions. At the selfselfcorresponding season, IS insurance has various bearings, import that eliminating cyber – enormity is rather unusable. The kind amercement framework for cyber-crimes, as used in the gone-by, has led to the keen retrogradation of the tenor despite the UK. The acception of usefulness of prevalent congress, as from May 2015, on cyber-attacks could be consummated through makeal practices, such as: First, equalts and seminars would be unembarrassed at association equalize for informing living-souls on the characteristics of cyber-attacks and the laborconducive measures for bond; these seminars would so supply guidelines to entrepreneurs in contemplate to the esteem of IS insurance prudence, as sever of occupation temporization. Second, incentives would be supplyd to entrepreneurs for pursuing the certification of their occupation according to the notification insurance skillful-treatment standards, such as the ISO/IEC 27000 standards. Third, an dogged authority would be normal for administerling the enterprise of councilal and non-governmental organisations in contemplate to IS insurance. Finally, the boarding on IS insurance in councilal and non-governmental organisations would be acceptiond. Insurance frameworks, such as the ‘Intrusion Detection System’ (IDS), could be employed in these organisations for ensuring IS insurance in IS methods that train and supply elevated work of privy grounds (Stair and Reynolds, 2015, p.460).
5.0 Personal thoughts
This plan has been akin to a hazardous offspring: the findings in contemplate to the con-over’s theme accept been hostile. Further inequitableally, the UK council has healed to resist cyber-attacks through congress and applicable policies but the amercement for these enormitys has been characterised as kind, at lowest up to 2015, conjuncture the reckon of cyber-attacks in the UK is uniformly acceptiond. Inferior these engagements, I had to visage a dilemma: how should the enterprise of the UK council in oppositeness cyber-enormity would be evaluatedBy referring to the starts captured or by emphasising on the real upshots of these startsReflection has succored me to visage the over tenor. Indeed, thought can succor the inquiryer to accept ‘an extrinsic signification of things’ (Gillett et al., 2013, 85). Moreover, using thought I healed to appreciate the neutralize among the fixed and indirect bearings of council’s endeavors to castigate cyber-enormity and to apprehend which bearing of the council’s temporization counter cyber-enormity is further akin to the inquiry interrogation: this pamphlet presentation to decipher whether the council has executed abundance on the amercement of cyber-crime. Through thought, I unexpressed that the smootht of cyber-attacks in the UK should be preferred as the measure for sympathetic the inquiry interrogation. Ventola and Mauranen (1996) deciphered that thought can succor the inquiryer to fulfill the inquiry findings that are closer to the inquiry interrogation, a circumstance that allows the inquiryer to use the fit esthetic for sympathetic the inquiry interrogation. Additionally, I used thought during the outgrowth of the con-over for managing season and for tracking inquiry gaps, which accept been meeted following the total of the plan. The over tasks accept been cherished by a inquiry diary (Day, 2013), in the make of notes, where daily growth in contemplate to inquiry and match was reputed. Thus, the use of thought conjuncture developing this plan succored me to administer betrays, in contemplate to the plan’s constitution and contented, and to train season further operatively, meeting all bearings of the inquiry interrogation.
BBC News (2016) UK must requite counter cyber-attacks says chancellor. Serviceconducive from: http://www.bbc.com/news/technology-37821867 [Accessed 15 March 2017].
BBC News (2011) Cyber flagitiouss ‘should get firm judgments’ say police. Serviceconducive from: http://www.bbc.com/news/uk-15680466 [Accessed 15 March 2017].
Cabinet Office (2011) The require of conclave enormity. Serviceconducive from: https://www.gov.uk/government/uploads/system/uploads/attachment_data/file/60943/the-cost-of-cyber-crime-full-report.pdf [Accessed 15 March 2017].
Cabinet Office (2014) The UK Cyber Insurance Strategy. Communication on Growth and Forward Plans. Serviceconducive from: https://www.gov.uk/government/uploads/system/uploads/attachment_data/file/386093/The_UK_Cyber_Security_Strategy_Report_on_Progress_and_Forward_Plans_-_De___.pdf [Accessed 15 March 2017].
Cole, H. (2017) UK Council and occupationes are hit by two ‘serious’ cyber-attacks a day. The Sun. Serviceconducive from: https://www.thesun.co.uk/news/2857508/uk-government-and-businesses-are-hit-by-two-serious-cyber-attacks-a-day/ [Accessed 15 March 2017].
Cuzzocrea, A., Kittl, C., Simos, D., Weippl, E. and Xu, L. (2013) Availability, Reliability, and Insurance in Notification Systems and HCI: IFIP WG 8.4, 8.9, TC 5 Intersocial Cross-Domain Conference, CD-ARES 2013, Regensburg, Germany, September 2-6, 2013, Proceedings. New York: Springer.
Day, T. (2013) Success in Academic Writing. Oxford: Palgrave Macmillan
Doward, J. (2010) Britain fends off inundation of exotic cyber-attacks. The Guardian. Serviceconducive from: https://www.theguardian.com/technology/2010/mar/07/britain-fends-off-cyber-attacks [Accessed 15 March 2017].
Emm, D. (2009) Cyberenormity and the law: a relight of UK computer enormity congress. SecureList. Serviceconducive from: https://securelist.com/analysis/publications/36253/cybercrime-and-the-law-a-review-of-uk-computer-crime-legislation/ [Accessed 15 March 2017].
Eversheds-Sutherland (2015) Allure the Solemn Enormity Act 2015 firmen the UK’s cyberenormity regimeAvailconducive from: http://www.eversheds-sutherland.com/global/en/what/articles/index.page?ArticleID=en/tmt/Serious_Crime_Act_2015_May2015 [Accessed 15 March 2017].
Gillett, A., Hammond, A. and Martala, M. (2013) Inside Track to Successful Academic Writing. Essex: Pearson Education.
Guitton, C. (2012) Criminals and Cyber Attacks: The Missing Link among Attribution and Deterrence. Intersocial Journal of Cyber Criminology, 6(2), pp.1030-1043.
Katsikas, S. (2016) Notification Systems Security: Oppositeness the notification association of the 21st date. New York: Springer.
Kim, D. and Solomon, M. (2016) Fundamentals of Notification Systems Security. Sudbury: Jones & Bartlett Publishers.
Kovachich, G. (2016) The Notification Systems Insurance Officer’s Guide: Establishing and Managing a Cyber Insurance Program. Oxford: Butterworth-Heinemann.
McTague, T. (2014) Computer hackers visage conduct in prison inferior new Council crackdown on cyber terrorism. Mail Online. Serviceconducive from: http://www.dailymail.co.uk/news/article-2649452/Computer-hackers-face-life-prison-new-Government-crackdown-cyber-terrorism.html [Accessed 15 March 2017].
Mehdi, K. (2014) Encyclopedia of Notification Science and Technology. Hershey: IGI Global.
Merkow, M. (2010) Insurance Policies and Implementation Issues. Sudbury: Jones & Bartlett Publishers.
National Enormity Agency (2017) Cyber – enormity: preventing immature tribe from being concerned. Serviceconducive from: http://www.nationalcrimeagency.gov.uk/crime-threats/cyber-crime/cyber-crime-preventing-young-people-from-getting-concerned [Accessed 15 March 2017].
National Enormity Agency (2016) Cyber – Enormity Assessment 2016. Serviceconducive from: http://www.nationalcrimeagency.gov.uk/publications/709-cyber-crime-assessment-2016/file [Accessed 15 March 2017].
Pultarova, T. (2016) UK banks inferior immutable cyber-attack but don’t communication incidents. Engineering & Technology. Serviceconducive from: https://eandt.theiet.org/content/articles/2016/10/uk-banks-under-constant-cyber-attack-but-dont-report-incidents/ [Accessed 15 March 2017].
Shefford, M. (2015) What is the UK council doing environing cybersecurityDatonomy. Serviceconducive from: http://datonomy.eu/2015/04/01/what-is-the-uk-government-doing-about-cybersecurity/ [Accessed 15 March 2017].
Stair, R. and Reynolds, G. (2015) Fundamentals of Notification Systems. 8th ed. Belmont: Cengage Learning.
Vacca, J. (2009) Computer and Notification Insurance Handbook. Burlington: Morgan Kaufmann.
Ventola, E. and Mauranen, A. (1996) Academic Writing: Intercultural and extrreal offsprings. John Benjamins Publishing.
White, L. (2016) British banks sustain cyber-attacks inferior wraps to guard shadow. Reuters. Serviceconducive from: http://uk.reuters.com/article/us-britain-banks-cyber-idUKKBN12E0NQ [Accessed 15 March 2017].