{"id":75610,"date":"2016-11-01T14:39:28","date_gmt":"2016-11-01T14:39:28","guid":{"rendered":"http:\/\/mostafa.openonline.co.uk\/?guid=dd898e3d9fa4240cacd3008f115c1ca2"},"modified":"2016-11-01T14:39:28","modified_gmt":"2016-11-01T14:39:28","slug":"speech-chancellor-speech-launching-the-national-cyber-security-strategy","status":"publish","type":"post","link":"https:\/\/mostafa.openonline.co.uk\/?p=75610","title":{"rendered":"Speech: Chancellor speech: launching the National Cyber Security Strategy"},"content":{"rendered":"
\n

Thank you Toni for that kind introduction and good afternoon everyone.<\/p>\n

I\u2019m delighted to be here at Future Decoded.<\/p>\n

I come to this conference a strong advocate of the role of technology in transforming our society and building our economy.<\/p>\n

When I was appointed Chancellor of the Exchequer just a few months ago, the first business person I met wasn\u2019t the CEO of one of the UK\u2019s big banks or car manufacturers \u2013 crucial though those sectors are to the economy.<\/p>\n

It was Masayoshi Son, the Chief Executive of SoftBank, on the morning he announced the \u00a324 billion purchase of the Cambridge-based Arm Holdings.<\/p>\n

It was the biggest European tech deal in history; the largest ever single Japanese investment in Britain.
\nAnd it was fitting that he was the first businessman I saw as Chancellor \u2013 because the tech industry is the future of the British economy.<\/p>\n

Mr Son told me, when we met in No11, that he wanted to buy into Britain because he saw the huge potential Britain has to play a leading role in the next global wave of technology innovation \u2013 the internet of things.<\/p>\n

That meeting \u2013 and many others I\u2019ve had subsequently \u2013 reinforced my belief that the UK is strongly positioned to be at the cutting-edge of the digital revolution.<\/p>\n

Why? Because Arm isn\u2019t a one-off. In fact, it\u2019s one of the most successful products of a proud history of British technological innovation stretching back decades.<\/p>\n

Just take Cambridge \u2013 the home of Arm \u2013 as an example:<\/p>\n

From educating Alan Turing in the 1930s, to building one of the first general-purpose computers in the Mathematical Laboratory in the 40s; from Watson and Crick discovering DNA in the 50s, to the founding of Cambridge Consultants in the 60s \u2013 one of Britain\u2019s first technology-transfer businesses.<\/p>\n

Fast forward 50 years and our tech industry is growing at pace \u2013 up 42% since 2010.<\/p>\n

We have more tech unicorns than anywhere else in Europe; we\u2019re home to the largest data centre in Europe; and we\u2019re the world leader in e-commerce.<\/p>\n

It\u2019s a little known fact outside this hall that we Brits do more online shopping than any other nation.
\nSo it\u2019s clear we have some world leading potential.<\/p>\n

The question is: how do we get in front? And how do we stay there?<\/p>\n

I believe there is a once-in-a-generation opportunity for the UK to cement our role as a leader in digital tech innovation, and to future-proof the economy of post-Brexit Britain.<\/p>\n

And we need to take that opportunity.<\/p>\n

People have already started describing the phase we\u2019re entering as a Fourth Industrial Revolution.
\nAnd just like in the First, there are some who resist that change and the disruptive effects it can bring. Let\u2019s call them handloom weavers.<\/p>\n

The fears that machines could render humans obsolete are as old as machines themselves.<\/p>\n

It was almost 500 years ago, back in 1589, that the British inventor William Lee was refused a patent for a new knitting machine by Queen Elizabeth I.<\/p>\n

And in responding to his patent application the Queen used these words, she said to him:<\/p>\n

\n

Consider thou what the invention could do to my poor subjects.<\/p>\n

It would assuredly bring to them ruin by depriving them of employment, thus making them beggars.<\/p>\n<\/blockquote>\n

Denied his patent, the inventor was swiftly poached by the French King Henry IV \u2013 a timely reminder perhaps that our friends across the channel are not novices when it comes to trying to seduce a key UK industry\u2026
\nBut it also illustrates a wider point \u2013 that human anxiety about technological change is nothing new.<\/p>\n

A vicious rearguard was fought against the railways in Victorian Britain \u2013 prophesying doom if they were built; in fact, of course, they transformed Britain into the richest country in the world.<\/p>\n

We\u2019ve seen it across many industries over many years: agriculture, weaving, switchboard operating and shorthand typing\u2026<\/p>\n

and yet as old jobs disappear, new, previously unthought-of opportunities open up and the economy re-trains and re-absorbs the displaced workers.<\/p>\n

But being optimistic about technological change isn\u2019t simply a matter of being grateful that technology has made our lives immeasurably easier \u2013 though inventions like washing machines, air travel, television, mobile phones and the internet have certainly done so.<\/p>\n

It\u2019s about doing all we can to foster innovation, because technology has the power to make everyone in society better off, to lower costs, to raise living standards and to improve our quality of life.<\/p>\n

Better productivity in farming and food production over the past 30 years has seen the share of food costs in the average family budget fall from almost 20% to 10%.<\/p>\n

Over the past two decades the real price of new cars has fallen by almost a quarter.<\/p>\n

Put in simple economic terms, and I know I don\u2019t need to put things in simple economic terms for this audience, applying technology increases the output from a given level of inputs \u2013 raising productivity \u2013 which in turn raises incomes.<\/p>\n

And there is more transformative technology on the horizon.<\/p>\n

Generating not just improved productivity, but entirely new capabilities.<\/p>\n

The sharing economy and increased remote working are creating new opportunities for income generation.
\nCompanies like DeepMind are working with the NHS to drive major improvements in patient outcomes through better use of health records data \u2013 spotting trends that would otherwise be invisible.<\/p>\n

And Britain has brilliant firms at the cutting edge of virtual reality, autonomous vehicles, wearable tech, artificial intelligence and in so many other sectors.<\/p>\n

So of course, we must be alive to the short-term economic and social consequences of the changes that technological innovation can bring.<\/p>\n

But as Chancellor, I am in absolutely no doubt that we must embrace change, not fear it.<\/p>\n

I want Britain to be the best place in the world to found and to grow a tech business.<\/p>\n

I know of course that government can\u2019t deliver innovation \u2013 that\u2019s something only you can do.<\/p>\n

But government can play a role and does have a role in nurturing that innovation and creating the conditions in which new businesses can grow.<\/p>\n

We were the first country in the G20 to put coding on the curriculum \u2013 something in which Microsoft played a key part.<\/p>\n

We\u2019ve overseen a major shift towards STEM subjects in our education system over the last six years, and since 2014 Maths has been the most popular A-level subject in English schools.<\/p>\n

We\u2019ve created an environment for businesses to thrive \u2013 with competitive taxes, a skilled workforce, support for growing companies through our venture capital schemes\u2026<\/p>\n

investment in digital infrastructure, and a further \u00a3220 million of funding for tech innovation announced just last month.<\/p>\n

But these steps alone aren\u2019t enough.<\/p>\n

If we want Britain to be the best place in the world to be a tech business, then it is also crucial that Britain is a safe place to do digital business.<\/p>\n

As you all know, increasingly, the systems that underpin our daily lives are connected to the internet \u2013 air traffic control, satellites, power grids \u2013 as well as the domestic devices in our pockets, our homes and our cars.
\nPerhaps tellingly, the exception to that rule is military communications, which tend to avoid internet connection for the most sensitive systems, such as weapons fire control.<\/p>\n

So just as technology presents huge opportunities for our economy \u2013 so to it poses a risk.
\nTrust in the internet and the infrastructure on which it relies is fundamental to our economic future.
\nBecause without that trust in, faith in the whole digital edifice will fall away.<\/p>\n

We need a secure cyberspace \u2013 and we need to work together business and government to deliver it.
\nMedia reports remind us on a regular basis of the scale of the challenge we face.<\/p>\n

Everyone in this room I\u2019m sure is aware, last month we witnessed a worrying expansion in the scale of D-DOS attacks.<\/p>\n

Hijacked security cameras being exploited to launch a colossal attack on a US server company, preventing access to major websites for millions of people.<\/p>\n

A small number of UK government Digital services were also affected by that attack, but because we had the right defences and contingency plans in place, we were able swiftly to get these back on line.<\/p>\n

We\u2019re also witnessing more targeted, spear-phishing attacks which use social engineering techniques to maximise the chance of success.<\/p>\n

This type of attack is thought to be one of the ways hackers got into Sony\u2019s networks in 2014.
\nAnd the damage caused in that attack \u2013 both commercial and diplomatic \u2013 show how important it is to invest in staff training and awareness.<\/p>\n

Then there are attacks that take advantage of insecure coding, weak access controls, poorly implemented cryptography and unprotected databases, none of which I\u2019m sure any of you have to own up to, just a few of the common vulnerabilities.<\/p>\n

And the consequences are significant.<\/p>\n

TV5 Monde witnessed a total shutdown of all its TV channels last year \u2013 because of an attack purportedly from a terrorist group, but which some security companies have ascribed to a state with a record of other recent high profile attacks \u2013 answers on a postcard to No10 Downing Street please.<\/p>\n

In Ukraine, two electricity companies suffered a major power outage, with blackouts for several hours due to the first known cyber-attack on an electricity network, suspect probably the same.<\/p>\n

Closer to home, TalkTalk suffered a data breach that left the records of 157,000 people at risk.
\nAnd the list, unfortunately, goes on.<\/p>\n

Saudi Aramco; the US Government Office of Personnel Management; as well as hundreds of UK businesses, public sector organisations, universities and charities which have been hit with ransom ware.<\/p>\n

These attacks demonstrated what everyone here in this audience already knows about the reality of successful cyber-attacks: significant consequences including loss of customer data, significant financial costs, disruption of services, reputational damage, indeed threats to the infrastructure of the state itself.<\/p>\n

We have to respond to this threat.<\/p>\n

And in addressing it here in the UK we are not starting from scratch\u2026<\/p>\n

In the last Parliament we invested \u00a3860 million over five years to significantly enhance our capabilities to protect our government networks, improve our incident response and to tackle cyber crime.<\/p>\n

We cemented our partnerships with industry, working closely on ground-breaking issues like cyber-insurance.
\nAnd we bolstered the UK\u2019s cutting edge academic capability, establishing 13 Academic Centres of Excellence that specialise in developing cyber security research and innovation, attracting students and investment in to the UK.<\/p>\n

In recognition of the risk cyber attacks pose, the government\u2019s 2015 Strategic Defence and Security Review<\/a> classified cyber as a Tier One threat to the UK \u2013 that\u2019s the same level as terrorism, or international military conflict.<\/p>\n

And in order to lead our national response to cyber from the very top of government, we established a permanent Cyber Committee, bringing together Cabinet Ministers from the Foreign Office, Ministry of Defence, Home Office, Culture Media and Sport and Health among others.<\/p>\n

The creation of this dedicated Committee has been an important innovation in how central government works together \u2013 and with our intelligence and security agencies \u2013 to tackle the threats we face.<\/p>\n

As Chancellor I chair that Committee, and previously, as Foreign Secretary with responsibility for the brilliant GCHQ, I had a key interest in it.<\/p>\n

And through that involvement , I\u2019ve seen the full extent of those threats: Threats to our data, to our IP, to our military secrets, to our financial information and perhaps most important of all, to our infrastructure itself, all of those areas are targets for our adversaries.<\/p>\n

The action the government has taken over the past 6 years has made the UK an acknowledged global leader in cyber security.<\/p>\n

But we must keep up with the scale and pace of the threat we face.<\/p>\n

So today I am launching the government\u2019s National Cyber Security Strategy<\/a> for the next 5 years.<\/p>\n

The new strategy is built on three core pillars: defend, deter and develop, underpinned by \u00a31.9 billion of transformational investment.<\/p>\n

First of all Defend. We will strengthen the defences of government, our critical national infrastructure sectors like energy and transport, and our wider economy.<\/p>\n

We will work in partnership with industry to apply technologies that reduce the impact of cyber-attacks, while driving up security standards across both public and private sectors.<\/p>\n

We will ensure that our most sensitive information and networks, on which our government and security depend, are protected.<\/p>\n

In practice, that means government taking a more active cyber defence approach \u2013 supporting industry\u2019s use of automated defence techniques to block, disrupt and neutralise malicious activity before it reaches the user.
\nThe public have much to gain from active cyber defence and, with the proper safeguards in place to protect privacy, these measures have the potential to be transformational in ensuring that UK internet users are secure by default.<\/p>\n

We are already deploying active cyber defence in government and we know it works: we\u2019ve already successfully reduced the ability of attackers to spoof government e-mails as a key example.<\/p>\n

Until 6 weeks ago we were seeing faking of some @gov.uk addresses, such as \u2018taxrefund@gov.uk\u2019.
\nCriminals have been using these fake addresses to defraud people, by impersonating government departments.<\/p>\n

50,000 spoof emails using the taxrefund@gov.uk address were being sent a everyday \u2013 now, thanks to our interventions, there are none.<\/p>\n

The second pillar is deterrence. We will deter those who seek to steal from us, threaten us or otherwise harm our interests in cyberspace.<\/p>\n

We\u2019re strengthening our law enforcement capabilities to raise the cost and reduce the reward of cyber criminality \u2013 ensuring we can track, apprehend and prosecute those who commit cyber crimes.<\/p>\n

And we will continue to invest in our offensive cyber capabilities, because the ability to detect, trace and retaliate in kind is likely to be the best deterrent.<\/p>\n

A small number of hostile foreign actors have developed and deployed offensive cyber capabilities, including destructive ones. These capabilities threaten the security of the UK\u2019s critical national infrastructure and our industrial control systems.<\/p>\n

If we do not have the ability to respond in cyberspace to an attack which takes down our power networks leaving us in darkness, or hits our air traffic control system, grounding our planes, we would be left with the impossible choice of turning the other cheek and ignoring the devastating consequences, or resorting to a military response.<\/p>\n

That is a choice that we do not want to face \u2013 and a choice we do not want to leave as a legacy to our successors. That is why we need to develop a fully functioning and operational cyber counter-attack capability.
\nThere is no doubt in my mind that the precursor to any future state-on-state conflict would be a campaign of escalating cyber-attacks, to break down our defences and test our resolve before the first shot is fired.
\nKinetic attacks carry huge risk of retaliation and may breach international law.<\/p>\n

But in cyber space those who want to harm us appear to think they can act both scalably and deniably.
\nIt is our duty to demonstrate that they cannot act with impunity.<\/p>\n

So we will not only defend ourselves in cyberspace; we will strike back in kind when we are attacked.
\nAnd thirdly development. We will develop the capabilities we need in our economy and society to keep pace with the threat in the future.<\/p>\n

To make sure we\u2019ve got a pipeline talented of people with the cyber skills we need, we will increase investment in the next generation of students, experts and companies.<\/p>\n

I can announce we\u2019re creating our latest cyber security research institute \u2013 a virtual network of UK universities dedicated to technological research and supported by government funding.<\/p>\n

The new virtual institute will focus on hardware and will look to improve the security of smart phone, tablets and laptops through innovative use of novel technology.<\/p>\n

We\u2019re building cyber security into our education systems and are committed to providing opportunities for young people to pursue a career in this dynamic and exciting sector.<\/p>\n

And we\u2019re also making sure that every young person learns the cyber life-skills they need to use the internet safely, confidently and successfully.<\/p>\n

These three pillars that I\u2019ve outlined \u2013 deter, defend and develop \u2013 are all supported by our new National Cyber Security Centre, based in Victoria in central London.<\/p>\n

For the first time the government will have a dedicated, outward-facing authority on cyber \u2013 making it much simpler for business to get advice on cyber security and to interact with government on cyber security issues. Allowing us to deploy the high level skills that government has, principally in GCHQ, to support the development of commercial applications to enhance cyber security.<\/p>\n

The Centre subsumes CERT UK and will provide the next generation of cyber security incident management.
\nThis means that when businesses or government bodies, or academic organisations report a significant incident, the Centre will bring together the full range of technical skills from across government and beyond to respond immediately.<\/p>\n

They will link up with law enforcement, help mitigate the impact of the incident, seek to repair the damage and assist in the tracing and prosecution of those responsible.<\/p>\n

Across all its strands, the National Cyber Security Strategy we\u2019re publishing today represents a major step forward in the fight against cyber attack.<\/p>\n

It is a key component of the government\u2019s ambition for Britain to be the best place in the world to run a tech business.<\/p>\n

And it sets out clearly how we intend to develop our partnerships with business to achieve that.
\nBut government cannot be solely responsible for managing cyber risk.<\/p>\n

Chief executives and Boards must recognise that they have a responsibility to manage cyber risks, just as they would any other operational risk.<\/p>\n

Similarly, technology companies \u2013 many of whom are represented here today \u2013 must take responsibility for incorporating the best possible security measures into the design of their products.<\/p>\n

Getting this right will be crucial to keeping Britain at the forefront of digital technology security \u2013 itself a growing business sector.<\/p>\n

We are not at all complacent.<\/p>\n

We know we must fight for Britain\u2019s share of the exciting opportunities in digital technology business that lie ahead.<\/p>\n

But we know, too, that we begin with certain advantages:<\/p>\n