Classified Threat Sensors

{"abilities":[],"action":"stack","className":"","columns":3,"controls":[],"exclude":[],"include":[{"custom.menu":"header-menu"}],"maximum":6,"property":"header","orders":["date","title","menu_order","post_type","post__in"]}

{"abilities":[],"action":"stack","className":"","columns":3,"controls":[],"exclude":[],"include":[{"custom.menu":"header-menu"}],"maximum":6,"property":"mobile","orders":["date","title","menu_order","post_type","post__in"]}

By Steve Weis, Amina Asim, and Aloni Cohen

Foreign nation-state cyberattacks against US-based companies create a national security risk and the potential loss of intellectual property. Yet industry and government struggle to engage in data-sharing that could mitigate these risks due to the sensitive nature of classified data. Recent developments in secure enclave technology could help companies and government act on classified intelligence without requiring declassification.

This policy brief recommends using secure enclaves to operate classified threat sensors on the servers of private companies. These threat sensors would be able to scan a company’s local security data for signs of cyberattack without revealing the company’s proprietary data, or the information that the sensors were searching for. The brief recommends a measured rollout to pilot this new technology.

This brief was completed as part of a project for the 2019 Aspen Tech Policy Hub Fellowship, a program to teach technology experts how to impact policy.

See the Project