Successful cyber attacks on critical infrastructure, both private and public, are becoming all too commonplace and way to successful. Moreover, the purpose of many of these attacks increasingly is strategic in nature. U.S. military planners believe that cyber warfare actually will precede the outbreak of conventional military hostilities in an effort to undermine the target’s will and ability to defend itself. According to some experts, the war in cyberspace has already begun.

Today there are few U.S. networks and infrastructure, if any, that are adequately defended. The Department of Defense is undertaking a massive effort to secure not only its networks, but all its computer-related systems and even the chips that go into electronic hardware. The Department of Homeland Security has the responsibility for protecting non-defense federal government networks as well as critical infrastructure, but lacks the authorities and resources to do an effective job. At the state and local levels, while there are different approaches to cyber security, the majority do not even have adequate cyber security plans.

Most critical infrastructure is in private hands. Unfortunately, cyber security is still seen by many private companies as a cost with, at best, indeterminate value. They are reluctant to spend a lot of money on a threat that for them is still hypothetical. Sectors such as the electric power grid, which are subject to limits on what they can charge their customers by state regulators, or those facing declining prices and stiff competition, like oil drilling and refining, particularly loathe spending resources in this area. Yet, as one recent article noted, these sectors are especially vulnerable to cyber attack. “In test after test, private specialists reveal what federal authorities say is a growing national security threat -- control systems for valves, pumps, pipelines and refineries are among the most vulnerable targets to cyberattacks.”

Cyber security should primarily be the responsibility of those public and private entities that own the infrastructure. However, there is a clear role for the federal government in cyber defense against attacks by hostile powers. Several members of Congress have proposed the creation of a separate Cyber National Guard. This idea, or an increased role for the current National Guard in cyber defense, makes sense. Here are five reasons why: