Cyberwarfare

Op Ed in today's Wall St Journal calling for new federal laws to harden up cybersecurity.  Author is a Texas Republican congressman on the Homeland Security Committee.  He talks about the risks, which are real.  Then he wants new laws.  Just what he wants to make law is less clear.  He mentions "necessary liability protections" and "streamlining processes" which don't mean much to me.  I am suspicious of "necessary liability protection".  Fear of tort lawyers suing the company down to its socks is a good motivator to tighten up security. 
   In the real world what cyber security means is the computer administrators all across the private and public sectors tightening up on passwords, disallowing login from the public internet, and paying real bucks to buy private lines to remote sites rather than passing everything over the wide open public internet.
  It means Microsoft has to close the gaping holes in Windows security.  Right now you can plug a CD or a flashdrive into a Windows computer and Windows will automatically and secretly load and execute what ever malware is on that media.  This is how the hard hitting Stuxnet worm was loaded onto Iranian computers.  Flash drives with Stuxnet in them were scattered about the parking lot and sharp eyed employees walking from their cars picked them up and took them into work.  There are dozens of other holes in Windows, it's like Swiss cheese.  Any high school kid can break into Windows  without working up a sweat.