Security Magazine logo
search
cart
facebook twitter linkedin youtube
  • Sign In
  • Create Account
  • Sign Out
  • My Account
Security Magazine logo
  • NEWS
    • Security Newswire
    • Technologies & Solutions
  • MANAGEMENT
    • Leadership Management
    • Enterprise Services
    • Security Education & Training
    • Logical Security
    • Security & Business Resilience
    • Profiles in Excellence
  • PHYSICAL
    • Access Management
    • Fire & Life Safety
    • Identity Management
    • Physical Security
    • Video Surveillance
    • Case Studies (Physical)
  • CYBER
    • Cybersecurity News
    • More
  • BLOG
  • COLUMNS
    • Career Intelligence
    • Cyber Tactics
    • Cybersecurity Education & Training
    • Leadership & Management
    • Security Talk
  • EXCLUSIVES
    • Annual Guarding Report
    • Most Influential People in Security
    • The Security Benchmark Report
    • Top Guard and Security Officer Companies
    • Top Cybersecurity Leaders
    • Women in Security
  • SECTORS
    • Arenas / Stadiums / Leagues / Entertainment
    • Banking/Finance/Insurance
    • Construction, Real Estate, Property Management
    • Education: K-12
    • Education: University
    • Government: Federal, State and Local
    • Hospitality & Casinos
    • Hospitals & Medical Centers
    • Infrastructure:Electric,Gas & Water
    • Ports: Sea, Land, & Air
    • Retail/Restaurants/Convenience
    • Transportation/Logistics/Supply Chain/Distribution/ Warehousing
  • EVENTS
    • Industry Events
    • Webinars
    • Solutions by Sector
    • Security 500 Conference
  • MEDIA
    • Interactive Spotlight
    • Photo Galleries
    • Podcasts
    • Polls
    • Videos
      • Cybersecurity & Geopolitical Discussion
      • Ask Me Anything (AMA) Series
  • MORE
    • Call for Entries
    • Classifieds & Job Listings
    • Newsletter
    • Sponsor Insights
    • Store
    • White Papers
  • EMAG
    • eMagazine
    • This Month's Content
    • Advertise
  • SIGN UP!
Cyber Tactics ColumnCybersecurity News

Towards a Cybersecurity Information Sharing Classification System

By Steven Chabinsky
March 4, 2015

I was just sitting down with fellow Security magazine columnist, Lynn Mattice.  Lynn is a risk manager extraordinaire, all around great guy, and straight talker.  As we met over hot and sour soup, Lynn touched appropriately enough upon a hot topic that has soured many in industry -- the frequent government over-classification of cybersecurity information.  Lynn pointed out the irony of withholding threat and vulnerability information in the name of national security that, if properly disseminated, would do more to help our national security.

Lynn’s point not only is valid, it has been acknowledged by the Government.  In December of 2012, the White House put out our “National Strategy for Information Sharing and Safeguarding.”  That document states, “Our national security depends on sharing the right information with the right people at the right time.”  More recently, on February 15, 2015, the President issued an Executive Order for “Promoting Private Sector Cybersecurity Information Sharing.”  The Executive Order begins, “In order to address cyber threats to public health and safety, national security, and economic security of the United States, private companies, nonprofit organizations, executive departments and agencies . . . must be able to share information related to cybersecurity risks and incidents and collaborate to respond in as close to real time as possible.”

Which made me wonder, perhaps there should be a Cybersecurity Information Sharing Classification System that is forced to live side-by-side with the current Classification System.  Conveniently, only a few words would need to be altered from existing definitions, as shown here:

"Confidential'' “Code 1 Share” shall be applied to information, the unauthorized  non-disclosure of which reasonably could be expected to cause damage to the national security that the original classification authority is able to identify or describe.

"Secret'' “Code 2 Share” shall be applied to information, the unauthorized non-disclosure  of which reasonably could be expected to cause serious damage to the national security that the original classification authority is able to  identify or describe.

"Top Secret'' “Code 3 Share” shall be applied to information, the unauthorized  non-disclosure of which reasonably could be expected to cause exceptionally  grave damage to the national security that the original classification  authority is able to identify or describe.

Is this a practical recommendation?  Perhaps not.  But it sure would be nice if those who have the responsibility for classifying information in the first place paused, even for a brief moment, to have this debate with themselves.  Just a thought, while sitting at a Chinese restaurant. 

 For more information on government information sharing, check out this free webinar from Lynn Mattice: A Major Intelligence Failure by the U.S. Government: How It Impacts Enterprise Security at  https://vts.inxpo.com/scripts/Server.nxp?LASCmd=AI:4;F:APIUTILS!51004&PageID=E7AFDE8D-F28D-4B24-A3CE-758E483B3E6B

KEYWORDS: cyber security data breach information sharing national security

Share This Story

Looking for a reprint of this article?
From high-res PDFs to custom plaques, order your copy today!

Chabinsky 2016 200px

Steven Chabinsky is global chair of the Data, Privacy, and Cyber Security practice at White & Case LLP, an international law firm. He previously served as a member of the President’s Commission on Enhancing National Cybersecurity, the General Counsel and Chief Risk Officer of CrowdStrike, and Deputy Assistant Director of the FBI Cyber Division. He can be reached at chabinsky@whitecase.com.

Recommended Content

JOIN TODAY
To unlock your recommendations.

Already have an account? Sign In

  • Cyber tech background

    Security’s Top Cybersecurity Leaders 2026

    Security magazine’s Top Cybersecurity Leaders 2026 award...
    Cybersecurity
  • Iintegration and use of emerging tools

    Future Proof Your Security Career with AI Skills

    AI’s evolution demands security leaders master...
    Security Education & Training
    By: Jerry J. Brennan and Joanne R. Pollock
  • The 2025 Security Benchmark Report

    The 2025 Security Benchmark Report

    The 2025 Security Benchmark Report surveys enterprise...
    The Security Benchmark Report
    By: Rachelle Blair-Frasier
Manage My Account
  • Security Newsletter
  • eMagazine Subscriptions
  • Manage My Preferences
  • Online Registration
  • Mobile App
  • Subscription Customer Service

More Videos

Popular Stories

Hand reaching up out of the ocean

What I Learned About Burnout the Hard Way (and How to Actually Fix it)

Paparazzi

When Private Events Become Public Infrastructure: What Celebrity OSINT Teaches Security Leaders

Colorful laptop

Organizations Think They Know Who’s Visiting Their Sites. They Don’t.

Glasses in front of coding on screen

5 Ways Quantum and AI Will Rewrite the Rules of Cyberattacks

Broken wet floor sign

Why Response Time Is Becoming the Missing Metric in Workplace Safety and Security

Kaseware sponsored webinar
Schneider Electric sponsored webinar

Events

August 25, 2026

Critical Infrastructure Security Is National Security: Protecting Essential Operations in an Era of Escalating Risk

LIVE: August 25, 2026 at 2 PM EDT Learn why critical infrastructure security has become a national security imperative, and the strategies organizations can adopt to improve visibility, collaboration, and response across their security operations.

August 27, 2026

Leveraging AI & Mobility to Advance Your Security Domain

LIVE: August 27, 2026 at 2 PM EDT Explore how AI-driven cloud security solutions can elevate your security domain enhancing threat detection, streamlining operations, and delivering the resilience modern organizations demand.

View All Submit An Event

Products

Security Culture: A How-to Guide for Improving Security Culture and Dealing with People Risk in Your Organisation

Security Culture: A How-to Guide for Improving Security Culture and Dealing with People Risk in Your Organisation

See More Products


Alertmedia sponsored webinar

Related Articles

  • port security

    US Maritime Critical Infrastructure Stakeholders Form Nonprofit to Promote Cybersecurity Information Sharing

    See More
  • American flag

    Bill Introduced to Extend the Cybersecurity Information Sharing Act

    See More
  • information sharing meeting

    A CISO's guide to information sharing

    See More

Related Products

See More Products
  • Security of Information and Communication Networks

  • Physical Security and Safety: A Field Guide for the Practitioner

  • physical security.webp

    Physical Security Assessment Handbook An Insider’s Guide to Securing a Business

See More Products
×

Sign-up to receive top management & result-driven techniques in the industry.

Join over 20,000+ industry leaders who receive our premium content.

SIGN UP TODAY!
  • RESOURCES
    • Advertise
    • Contact Us
    • Store
    • Want More
  • SIGN UP TODAY
    • Create Account
    • eMagazine
    • Newsletter
    • Customer Service
    • Manage Preferences
  • SERVICES
    • Marketing Services
    • Reprints
    • Market Research
    • List Rental
    • Survey/Respondent Access
  • STAY CONNECTED
    • LinkedIn
    • Facebook
    • YouTube
    • X (Twitter)
  • PRIVACY
    • PRIVACY POLICY
    • TERMS & CONDITIONS
    • DO NOT SELL MY PERSONAL INFORMATION
    • PRIVACY REQUEST
    • ACCESSIBILITY

Copyright ©2026. All Rights Reserved BNP Media, Inc. and BNP Media II, LLC.

Design, CMS, Hosting & Web Development :: ePublishing