Risk
3/21/2011
04:00 PM
Connect Directly
LinkedIn
Google+
Twitter
RSS
E-Mail
50%
50%

How Wall Street Works With The Feds

Banks and other financial firms learn to share sensitive cybersecurity information with federal agencies.

For the most part, the relationship between the federal government and financial services industry isn't one built on mutual trust. The government has been criticized for being too hands-off, even permissive, but it's hardly a close-knit partnership.

When it comes to cybersecurity, however, the dynamic is different. Financial services companies are sharing information about sensitive IT security issues with the government, and federal agencies are sharing data and intelligence on cybersecurity threats with banks, brokerage firms, and other Wall Street institutions.

The broker of this public-private exchange is the Financial Services Information Sharing and Analysis Center (FS-ISAC). Created in 1999 after a presidential directive called for information sharing between the feds and the private sector, FS-ISAC has a security operations center and a Web portal that its members use to monitor computer threat feeds from a variety of commercial and government sources.

FS-ISAC members use the portal to submit details on cyberattacks they have experienced, including how the attacks were detected and their companies responded. Submissions to the portal, for example, might provide the IP addresses associated with the source of attempted intrusions, and they often center on topics such as fraud activity and malware analysis. This information is shared within the industry, as well as with the Treasury Department, FBI, Secret Service, and Department of Homeland Security.

FS-ISAC isn't a government entity, nor is it overseen by a federal agency. It's a nonprofit owned by its private-sector member companies and run by a board of directors drawn from its membership.

The Web portal serves as a clearinghouse of information such as alerts and bulletins from US-CERT and the Homeland Security and threat feeds from security vendors such as VeriSign. FS-ISAC also uses it to send bulletins with best practices and other information to members.

The portal can be customized to present the alerts and advisories of most interest to members. Dan DeWaal, first VP and chief security officer with Options Clearing Corp. (OCC), the world's largest equity derivatives clearinghouse and a founding member of FS-ISAC, says his information security team monitors threats and system vulnerabilities, while his business continuity team examines feeds that deal with physical and operational issues.

Previous
1 of 3
Next
Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
Flash Poll
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2015-4497
Published: 2015-08-29
Use-after-free vulnerability in the CanvasRenderingContext2D implementation in Mozilla Firefox before 40.0.3 and Firefox ESR 38.x before 38.2.1 allows remote attackers to execute arbitrary code by leveraging improper interaction between resize events and changes to Cascading Style Sheets (CSS) token...

CVE-2015-4498
Published: 2015-08-29
The add-on installation feature in Mozilla Firefox before 40.0.3 and Firefox ESR 38.x before 38.2.1 allows remote attackers to bypass an intended user-confirmation requirement by constructing a crafted data: URL and triggering navigation to an arbitrary http: or https: URL at a certain early point i...

CVE-2014-9651
Published: 2015-08-28
Buffer overflow in CHICKEN 4.9.0.x before 4.9.0.2, 4.9.x before 4.9.1, and before 5.0 allows attackers to have unspecified impact via a positive START argument to the "substring-index[-ci] procedures."

CVE-2015-1171
Published: 2015-08-28
Stack-based buffer overflow in GSM SIM Utility (aka SIM Card Editor) 6.6 allows remote attackers to execute arbitrary code via a long entry in a .sms file.

CVE-2015-2987
Published: 2015-08-28
Type74 ED before 4.0 misuses 128-bit ECB encryption for small files, which makes it easier for attackers to obtain plaintext data via differential cryptanalysis of a file with an original length smaller than 128 bits.

Dark Reading Radio
Archived Dark Reading Radio
Another Black Hat is in the books and Dark Reading was there. Join the editors as they share their top stories, biggest lessons, and best conversations from the premier security conference.