Paula Gordon's Homeland Security Web Site: Homeland Security References and Resources

List of Selected Homeland Security References and Resources
Revised August 18, 2008

Prepared by Paula D. Gordon, Ph.D.

Inclusion in this list does not imply endorsement.

***Three asterisks indicate that an item has been added since July 7, 2007.

Table of Contents

1) Selected homeland security and critical infrastructure articles, reports, and books
2) Cyber concerns including vulnerable systems and Y2K-related lessons and legacies for homeland security
3) Selected government documents: legislation, congressional documents, public laws, executive orders, and presidential directives
4) Information concerning some selected government efforts
5) Task groups, partnerships, consortia, councils, commissions, and other efforts
6) Public health and safety-related concerns, including pandemic flu concerns
7) Communication, monitoring, and tracking concerns
8) Online portals, Web sites, resources, and libraries of particular note
9) Selected newsletters and other publications
10) Conferences, workshops, and symposia proceedings
11) Policy and program planning, implementation and management concerns
12) Technical information and technology innovation
13) Emergency preparedness, mitigation, response, recovery, and contingency planning and management, and continuity of operations planning
14) FEMA, DHS, and Hurricane Katrina
15) Education, training, and internship initiatives
16) Terrorism-related references and resources
17) Miscellaneous

1) Selected Homeland Security and Critical Infrastructure Articles, Reports, and Books

American Society for Civil Engineers annual reports cards on the status of the nation's infrastructure: See http://www.asce.org. Also see "Renewing America's Infrastructure - A Citizen's Guide", 2001 at http://www.asce.org/pdf/citizens_guide.pdf.

American Society for Civil Engineers, The Critical Infrastructure Partnership, http://www.tisp.org.

Brookings Institution - Protecting the American Homeland: A Preliminary Analysis (May 2002, revised May 2003). See http://www.brookings.edu/fp/projects/homeland/report.htm.

Council on Foreign Relations, Gary Hart and Warren B. Rudman, Co-Chairs, Terrorism Task Force Report "America Still Unprepared - America Still in Danger," (November 14, 2002) ID: 173844. See http://www.cfr.org/publication.php?id=5099.

Robert F. Dacey, Director, Information Security Issues, "Computer Security: Progress Made, But Critical Federal Operations and Assets Remain at Risk", Testimony before the Subcommittee on Government Efficiency, Financial Management and Intergovernmental Relations, Committee on Government Reform, House of Representatives, November 19, 2002.

Robert F. Dacey, Director, Information Security Issues, "Critical Infrastructure Protection: Significant Challenges Need to Be Addressed", Testimony before the Subcommittee on Government Efficiency, Financial Management and Intergovernmental Relations, Committee on Government Reform, House of Representatives, July 24, 2002, Oversight Hearing on "Cyber-terrorism: Is the Nation's Critical Infrastructure Adequately Protected?" GAO-02-961T.

Robert C. Dacey, “Information Security: Progress Made but Challenges remain to Protect Federal Systems and the Nation’s Critical Infrastructure,” Congressional Testimony on Technology, Information Policy, Intergovernmental Relations and the Census, Committee on Government Reform, House of Representatives, Washington, DC: GAO, April 08, 2003.
http://www.iwar.org.uk/cip/resources/gao/d03564t.pdf

Ronald L. Dick, Director, National Infrastructure Protection Center, Federal Bureau of Investigation, Statement before the Subcommittee on Government Efficiency, Financial Management and Intergovernmental Relations, Committee on Government Reform, House of Representatives, Oversight Hearing on "Cyber-terrorism: Is the Nation's Critical Infrastructure Adequately Protected?" July 24, 2002. GAO-03-303T.

LTC Bill Flynt, "Capabilities Required to Perceive Cyber Attacks Against Distributed Complex Systems", Paper presented at InfowarCon 2002, Washington, DC, September 5, 2002.

Gartner Group, The Results of the Digital Pearl Harbor War Game. See http://www3.gartner.com/2_events/audioconferences/dph/dph.html.

Gartner Group, Sector 5 Conference, August 21 - 23, 2002. See C-SPAN Archives at http://www.cspan.org.
Jeffrey R. Gaynor, "Critical Infrastructure Protection/Assurance," A 21st Century National and Homeland Security Imperative, Presentation to: Computer Security and Information Assurance V: Best Practices and Lessons Learned Conference, Potomac Forum, Ltd., Washington, D.C., January 23, 2002.

Joel N. Gordes, "Cyberthreats and Grid Vulnerability," Paper presented at InfowarCon 2002, Washington, DC, September 5, 2002.

Paula D. Gordon, "Education and Training Initiatives Needed to Address Threats and Challenges to Homeland Security," August 14, 2002. See http://gordonhomeland.com. Also see http://www.mipt.org/pdf/education-traininginitiatives.pdf.

Paula D. Gordon, "Improving Homeland Security and Critical Infrastructure Protection and Continuity Efforts," March 25, 2003. Posted at http://gordonhomeland.com.

Paula D. Gordon, Improving Homeland Security - Continuing Challenges and Opportunities.
Presentation to EIIP Virtual Forum, 3/24/2004 . Posted at http://gordonhomeland.com.

Paula D. Gordon, "Infrastructure Threats and Challenges: Before and After September 11, 2001". PA Times, 24:12, December 2001, and Journal of Homeland Security, April 16, 2002. Also see http://gordonhomeland.com.

Paula D. Gordon, "International Relations and National Agendas After September 11, 2001". PA TIMES, Vol. 25, Issue 2, February 2002. Also see http://gordonhomeland.com.

Paula D. Gordon, "Selected Homeland Security References and Resources," Business Briefing: Exploration and Production, Markets Research Centre, January 2003. See http://gordonhomeland.com.

Paula D. Gordon, "Strategic Planning and Y2K Technology Challenges: Lessons and Legacies for Homeland Security". PA TIMES, Vol. 24, No. 11, November 2001. Also see http://gordonhomeland.com.

Paula D. Gordon, "Using E-Technology to Advance Homeland Security Efforts". PA TIMES, Vol. 25, No. 1, January 2002. Also see http://gordonhomeland.com.

Paula D. Gordon, "Comparative Scenario and Options Analysis: Important Tools for Agents of Change Post 9/11 and Post Hurricane Katrina," Homeland Security Review, Vol. 1 No. 2, 2006. Also posted at http://gordonhomeland.com or http://users.rcn.com/pgordon/homeland/optionsAnalysis.html.

Heritage Foundation - Homeland Security Task Force Report, January 2002,
http://www.heritage.org/homelanddefense/welcome.html.

Robert Lemos, "Nation's Infrastructure Far from Secure". December 2, 2002, ZDNet http://zdnet.com.com/2100-1105-975677.html (article about the views of Ken Watson, head of the Partnership for Critical Infrastructure Security, on the nation's infrastructure.)

Ted G. Lewis, Critical Infrastructure Protection in Homeland Security: Defending a Networked Nation. Wiley, 2006, ISBN - 13: 978-0-471-78628-3 and ISBN - 10 #047178284 (A CD accompanies the book.) (Note: The Lewis text on Critical Infrastructure Protection includes numerous technical portions that would be of particular interest to engineers and others with an extensive technical background.)

Richard G. Little, "Controlling Cascading Failure: Understanding the Vulnerabilities of Interconnected Infrastructures," Journal of Urban Technology, 9:1 (2002) 109 -123.

Richard G. Little, "Educating the Infrastructure Professional: A New Curriculum for a New Discipline," Public Works Management & Policy, 4:2 (October 1999) 93 - 99.

Richard G. Little, "Understanding and Controlling Cascading Failure: A Systems Approach to Multi-Hazard Mitigation." Presented at the 9th Annual Conference of the International Emergency Management Society Facing the Realities of the Third Millennium, May 14 - 17, 2002, Waterloo, Ontario, Canada.

Richard G. Little, "The Role of Organizational Culture and Values in the Performance of Critical Infrastructure Systems" 10/11/2004. For abstract see http://www.ieeesmc2004.tudelft.nl/?menu=program.&slotid=127

J.D. Moteff, "Critical Infrastructures: Background, Policy, and Implementation" Updated July 30, 2002, Report to Congress, Congressional Research Service (December 2001), http://www.fas.org/irp/crs/RL30153.pdf.

J.D. Moteff, Claudia Copeland, and John Fischer, "Critical Infrastructures: What Makes an Infrastructure Critical?" August 30, 2002, http://www.fas.org/irp/crs/RL31556.pdf.

National Research Council, Board on Infrastructure and the Constructed Environment, Protecting People and Buildings from Terrorism: Technology Transfer for Blast-effects Mitigation, National Academy of Sciences Press, 2001.

Eric Pianin, Marc Kaufman, Lucy Shackelford, et al., "How Experts Grade Homeland Security," The Washington Post, September 10, 2002, pp. A20 - A21.

Michael Scardaville and Jack Spencer, "9/11 One Year Later: Progress and Promise," Heritage Foundation Backgrounder No. 1584, September 10, 2002.
See http://www.heritage.org.

See the website of the Satellite Industry Association (http://www.sia.org/ ) for papers on Satellites as Critical Infrastructure and The Role of Satellites in Homeland Security.

The Center for Strategic International Studies (CSIS) conducted simulation called Silent Vector in October 2002. The simulation was "of an increasingly credible but ambiguous terrorist attack on U.S. critical energy infrastructure." This CSIS effort involved hosting "a series of four roundtable working groups on topics of aviation security, nuclear security, the homeland threat advisory system, and security at chemical facilities. These working groups generated a number of lessons concerning the strategic importance of developing a balanced approach to homeland security." The report of entitled “Silent Vector Roundtable: Issues of Concern and Policy Recommendations” is posted at http://www.csis.org/isp/sv/SV_issues.pdf. For more information on the Silent Vector exercise, see http://www.csis.org/isp/sv/index.htm.

Dr. Roger Johnston heads the Vulnerability Assessment Team at Los Alamos National Laboratory. His group has compiled papers on a CD on the topics of cargo security, GPS spoofing, nuclear safeguards, physical security, rapid sampling tools, tamper indicator seals, and the conduct of vulnerability assessments. For a copy of this CD, contact
Roger Johnston, Ph.D., CPP, Vulnerability Assessment Team, LANL, MS J565, Los Alamos, NM 87545. E-mail: rogerj@lanl.gov. The CD includes work on GPS spoofing and remedies that is of particular importance.

A paper by Jon S. Warner and Roger G. Johnston on "GPS Spoofing Countermeasures" was originally published as Los Alamos research paper LAUR-03-6163. Contributors to this work included Anthony Garcia, Adam Pacheco, Ron Martinez, Leon Lopez, and Sonia Trujillo. See http://www.homelandsecurity.org/bulletin/Dual%20Benefit/warner_gps_spoofing.html.

Critical Infrastructure Task Force. Washington, DC: Homeland Security Advisory Council, January 2006 (50 pages). Accessed at: http://www.dhs.gov/interweb/assetlibrary/HSAC_CITF_Report_v2.pdf

Homeland Security: DHS Is Taking Steps to Enhance Security at Chemical Facilities, but Additional Authority Is Needed. GAO-06-150, February 27, 2006. See http://www.gao.gov/cgi-bin/getrpt?GAO-06-150 Highlights - http://www.gao.gov/highlights/d06150high.pdf

International Critical Information Infrastructure Protection Handbook 2006 (Vol. I) An Inventory of 20 National and 6 International Critical Information Infrastructure Protection Policies. Authors: Isabelle Abele-Wigert, Myriam Dunn. Editors: Andreas Wenger, Victor Mauer. Published April 13, 2006 by The Center for Security Studies in Zurich, Switzerland. ISBN: 3-905696-07-X. Available in PDF form. From the Center's website at www.css.ethz.ch: "Volume I of the 2006 International Critical Information Infrastructure Protection (CIIP) Handbook focuses on national government efforts to protect critical information infrastructure and provides an overview of CIIP protection practices in 20 countries and six international organizations. In this 2006 edition the scope has been extended and the country survey section expanded to include Asia, and in particular India, Japan, the Republic of Korea, Malaysia, Singapore, and Russia. Written with security policy analysts, researchers, and practitioners in mind, this publication can be used either as a reference work of current CIIP methods and models or as a starting point for further, in-depth research."

SCADA Security/Critical Infrastructure Protection (CIP) Conferences. Michael D. LeMay, Univ. of Illinois at Champaign Urbana. See http://lemaymdcom/uiuc/main.php?frag=links&title=Links.

National Infrastructure Fortification Strategies 2005 (December 5-7. 2005, Miami) This conference was to produce a requirements and solution domain document for use by industry and government that can guide the refinement and development of specific solution domains to the challenge of protecting and increasing the resilience of critical infrastructure.http://www.ncsi.com/nifs05/agenda.shtml

Infrastructure planning. http://www.fas.org/irp/agency/dhs/index.html

American Lifelines Alliance (ALA) Roundtable Summary Report. Protecting Our Critical Infrastructure: Findings and Recommendations from the ALA Roundtable. http://www.americanlifelinesalliance.org/pdf/RoundtableReportWebPosted081705.pdf. The American Lifelines Alliance (www.americanlifelinesalliance.org) is a public-private partnership intended to foster reliable performance of utility and transportation systems during and after the occurrence of natural hazards and man-made threat events. The ALA's key clients and stakeholders are lifeline operators and the communities they serve, standards development organizations, engineering and risk management professionals, and policy makers. The ALA facilitates the development, dissemination, and implementation of planning, design, construction, rehabilitation, and risk management guidance and encourages use of this information to improve the performance and reliability of new and existing critical infrastructure lifelines against all hazards. For additional information write Claret Heider, VP, The Building Seismic Safety Council and the Multihazard Mitigation Council of the National Institute of Building Sciences at cheider@nibs.org.

"The Public Entity Risk Institute (PERI) has just released a new book on the history of emergency management in the United States. The book, Emergency Management: The American Experience, 1900-2005 covers more than a century of catastrophic events including earthquakes, hurricanes, floods, droughts, a pandemic, and an explosion… Emergency Management: The American Experience, 1900-2005 provides a unique analytic approach, focusing on policy and administrative changes that have been implemented over the past century and providing historical context for the changes….Emergency Management: The American Experience, 1900-2005 was edited by Claire B. Rubin and designed for use as a textbook for college courses and a resource for policymakers, researchers, and emergency managers. The book is available in PERI's online bookstore at www.riskinstitute.org for $35, which includes shipping and handling. A $5.00 discount is available to students who purchase the book as a textbook for a college course….Additional information including the full updated table of contents is available at http://www.riskinstitute.org/PERI/PTR/Emergency+Management+The+American+Experience+1900-2005.htm. A limited number of review copies are available for academics interested in using the book in their courses. To request a review copy, send an email to Pamela Marino at pmarino@riskinstitute.org. A Time Line Chart developed as a companion to the book can also be purchased.

Homeland Security: A Documentary History, by Bruce Maxwell, October 2004 CQ Press, ISBN: 1-56802-884-9. 512 pages

Homeland Security: A Complete Guide to Understanding, Preventing, and Surviving Terrorism by Mark A. Sauter and James Jay Carafano, McGraw Hill, 2005, ISBN 0-07-144064-X.

Introduction to Homeland Security by Jane Bullock, George Haddow, Damon Coppola, Erdem Ergin, Lisa Westerman, Sarp Yeletaysi. Hardcover. 552 pages. 2nd ed., 2006, Elsevier.

The Edge of Disaster ~ Rebuilding a Resilient Nation by Stephen E. Flynn (Released 2/20/2007) ISBN 1400065518

The Resilient Enterprise ~ Overcoming Vulnerability for Competitive Advantage by Yossi Sheffi. Mitpress.mit.edu (2007). ISBN 978-0-262-69349-3 pb.

Critical Path ~ A Brief History of Critical Infrastructure Protection in the United States by Kathi Ann Brown (June 2006) Spectrum Publishing Group, Inc., Fairfax, VA www.spgidesign.com ISBN 978-0-913969-06-9

Terrorism and Homeland Security ~ An Introduction with Applications by Philip Purpura, Butterworth-Heinemann (An imprint of Elsevier) 2007 ISBN 13: 978-0-7506-7843-8

*** GAO, Critical Infrastructure Protection: Sector Plans and Sector Councils Continue to Evolve. GAO-07-706R, July 10, 2007. See http://www.gao.gov/cgi-bin/getrpt?GAO-07-706R.

*** "Security Bug Exposes World's Critical Infrastructure" To read the full article, click here: http://www.gao.gov/cgi-bin/getrpt?GAO-07-706R

***David A. McEntire, Introduction to Homeland Security: Understanding Terrorism with an Emergency Management Perspective, Wiley, New York, 2008, ISBN:987-0-470-12752-0

*** Paula D. Gordon, "The State of Emergency Management and Homeland Security" PA TIMES, Vol. 30, Issue 8, August 2007. (PA TIMES is a publication of the American Society for Public Administration.) Also see http://gordonhomeland.com or http://users.rcn.com/pgordon/homeland/stateofEM.html.

2) Cyber Concerns Including Vulnerable Systems and Y2K-Related Lessons and Legacies for Homeland Security
Note: Y2K-related references are included here since scenarios similar to those possible with Y2K are possible with terrorism, including cyberterrorism, cyberwarfare, sabotage, and mischievous acts.

Paula D. Gordon, "Strategic Planning and Y2K Technology Challenges: Lessons and Legacies for Homeland Security". PA TIMES, Vol. 24, No. 11, November 2001. Also see http://gordonhomeland.com.

Paula D. Gordon, "A Call to Action: National and Global Implications of the Year 2000 and Embedded Systems Crisis: A Working White Paper on Y2K," 1998 and 1999, for link see http://gordonhomeland.com. The archived material on this website remains pertinent after 9/11 since mid-range to worst case scenarios such as the kind that were possible with Y2K could still be triggered as a result of cascading infrastructure failures, including those caused by terrorism or cyberterrorism and cyberwarfare, sabotage, or mischievous acts. Many of the references there, including those on preparedness, also remain pertinent.

Naval War College, "Naval War College Year 2000 International Security Dimension Project," 1999, http://www.nwc.navy.mil/y2k/y2ksite.htm.

Alan Paller, Director of Research, The SANS Institute, Testimony before the Subcommittee on Government Efficiency, Financial Management and Intergovernmental Relations, Committee on Government Reform, House of Representatives, Oversight Hearing on "Cyber-terrorism: Is the Nation's Critical Infrastructure Adequately Protected?" July 24, 2002.

Kevin Poulsen, "Slammer worm crashed Ohio nuke plant network," SecurityFocus, August 19, 2003, http://www.securityfocus.com/news/6767.

Riptech, Inc., "White Paper on Understanding SCADA System Vulnerability," January 200l. See http://www.iwar.org.uk/cip/resources/utilities/SCADAWhitepaperfinal1.pdf.

John S.Tritak, Director, Critical Infrastructure Assurance Office, Bureau of Industry and Security, U.S. Department of Commerce, Statement before the Subcommittee on Government Efficiency, Financial Management and Intergovernmental Relations, Committee on Government Reform, House of Representatives, Oversight Hearing on "Cyber-terrorism: Is the Nation's Critical Infrastructure Adequately Protected?" July 24, 2002.

Dan Verton, Black Ice: The Invisible Threat of Cyber-Terrorism. McGraw-Hill/Osborne, 2003.

Bruce F. Webster, The Y2K Survival Guide: Getting to, Getting Through, and Getting Past the Year 2000 Problem. Prentice Hall, Upper Saddle River, NJ, 1999.

Joseph M. Weiss, P.E., Executive Consultant, KEMA Consulting, "Control System Cyber Security - Maintaining the Reliability of the Critical Infrastructure," Testimony before the Subcommittee on Government Efficiency, Financial Management and Intergovernmental Relations, Committee on Government Reform, House of Representatives, Oversight Hearing on "Cyber-terrorism: Is the Nation's Critical Infrastructure Adequately Protected?" July 24, 2002.

Edward Yourdon, Byte Wars: The Impact of September 11 on Information Technology, Prentice Hall, Upper Saddle River, NJ, 2002. Ed Yourdon addresses information technology vulnerabilities in this book.

The Association for Enterprise Integration (AFEI) is "working on developing a coordinated input to the GAO on a study for Congress on to produce a Technological Assessment of Cybersecurity for Critical Infrastructure Protection. The study is intended to assess what cybersecurity technologies can be applied to critical infrastructure protection. AFEI is working with NDIA to assist with evaluating the Defense Industrial Base sector. GAO has provided a list of questions designed to inform GAO of key issues, concerns and requirements in protecting the nation’s critical infrastructures." Those wishing to contribute should contact Dave Chesebrough at dchesebrough@afei.org. (From AFEI's August 13, 2003 newsletter.) The AFEI website is at http://www.afei.org.)

For a report that provides an interesting analysis and overview of SCADA system and related vulnerabilities, see http://gsmweb.udallas.edu/info_assurance/pdf/Gunnerson_SCADA.PDF.

For background interviews and material bearing on the April 2003 PBS Frontline program on "Cyber War", go to http://www.pbs.org and search on "cyberwar" or see
http://www.pbs.org/wgbh/pages/frontline/shows/cyberwar/experts/
http://www.pbs.org/wgbh/pages/frontline/shows/cyberwar/talk/
http://www.pbs.org/wgbh/pages/frontline/shows/cyberwar/interviews/weiss.html
http://www.pbs.org/wgbh/pages/frontline/shows/cyberwar/interviews/saydjari.html

A video of the April 2003 PBS Frontline program entitled "Cyber War" is available through PBS Video 1-800-424-7963. # FROL - 2116. 60 minutes.

"Michael Vadis: Call for a Manhattan Project", press release at
http://www.ists.dartmouth.edu/ISTS/press_releases/april1_02.htm.

Riptech, Inc., "White Paper on Understanding SCADA System Vulnerability," (January 2001) See http://www.iwar.org.uk/cip/resources/utilities/SCADAWhitepaperfinal1.pdf.

April 9, 1999 Report by the U.S. Department of Commerce, International Trade Administration, Trade Development, Office of Computers and Business Equipment entitled "The Year 2000 Problem and the Global Trading System". This report "connects the dots" concerning the cascading impacts that were possible as a result of Y2K technology problems. The document had been at http://y2k.ita.doc.gov/y2k/y2k.nsf/. It may now only be available directly from the Department of Commerce.

Cyberattacks: The Results of the Digital Pearl Harbor War Game. Gartner Group, August 21 - 23, 2002, Sector 5 Conference. See http://www3.gartner.com/2_events/audioconferences/dph/dph.

National Information Assurance Leadership Conference V - (NIAL)
NIAL V whitepapers are posted online at: http://www.sans.org/rr/special/NIALV/. Also see the Sans Institute website for other relevant information concerning cybersecurity.

For information concern the C4I organization, see http://www.c4i.org/. This website includes a focus on cyber concerns.

InfoSec News is "a privately run, medium traffic list that caters to the distribution of information security news articles. These articles will come from newspapers, magazines, online resources, and more." For information concerning subscribing, see http://www.c4i.org/isn.html.

The following is from a US Newswire item entitled "Website Offers Tips for Corporate Homeland Security Efforts": "Help is now online for businesses across the nation looking to reexamine their security infrastructure as the threat of terrorism at home continues," according to U.S. Newswire. The Security Industry Association, an international trade organization representing more than 700 manufacturers and service providers in the electronic and technology security industry, is providing the help on a new website." From http://releases.usnewswire.com/GetRelease.asp?id=110-07282003. Also see http://www.sia.com/ and http://www.sia.com/member_services/web_links/.

Michael Shnayerson has written an article entitled "The Code Warrior" in the January 2004 issue of Vanity Fair. The article is about Mikko Hypponen of F-Secure in Helsinki, Finland. Hypponen is quoted as saying that "the August 14, 2003] blackout wouldn't have happened without the [Blaster] worm." Shnayerson also writes that "In January 2003 a worm called Slammer blocked commands that operated power utilities."

"Agencies Express Interest in Windows Sealant ~ White House and Others give ImmuneEngine a Closer Look" August 16, 2004 article by Frank Tiboni, Federal Computer Week, http://fcw.com/fcw/articles/2004/0816/news-agencies-08-16-04.asp

Cyber Security Industry Alliance. See https://www.csialliance.org and https://www.csialliance.org/resources "CSIA’s newsletter is issued monthly, to keep you informed and up-to-date on activities, issues and breaking news that affect cyber security public policy…" To view past editions of the CSIA newsletter, see: https://www.csialliance.org/news/newsletters. To subscribe to this informative newsletter, go to https://www.csialliance.org/news/newsalertssignup. Contact information: Cyber Security Industry Alliance, 2020 14th Street North, Suite 750, Arlington, VA 22201, Phone: 703-894-2742. http://www.csialliance.org .

Department of Homeland Security's National Cyber Security Division (NCSD)

U.S. Computer Emergency Readiness Team (US-CERT)

NIST Computer Security Resource Center (CSRC)

Government Reform Committee Oversight Hearing: "No Computer System Left Behind: A Review of the 2005 Federal Computer Security Scorecards," Thursday, March 16, 2006. From the background for the hearing: "…One of the best ways to defend against attacks is to have a strong, yet flexible, protection policy in place. Chairman Tom Davis wrote the Federal Information Security Management Act of 2002 (FISMA) to accomplish this by requiring each agency to create a comprehensive risk-based approach to agency-wide information security management. Therefore, compliance with the Act is critical to protect our economy and national security. The FISMA reports submitted to Congress by the agency Chief Information Officers (CIOs) and the Inspectors General (IGs) are used to compile the Committee's annual scorecards, which help us gauge government information security progress. The Committee will review the results of the agencies' 2005 FISMA reports, identify strengths and weaknesses in government information security, and explore reasons for continued unacceptable performance by some agencies. Overall, the Committee will evaluate whether federal computer operations are prepared for a major cyber-attack…"

Information Security: Emerging Cybersecurity Issues Threaten Federal Information Systems. GAO-05-231, May 13, 2005 (72 pages). http://www.gao.gov/docdblite/details.php?rptno=GAO-05-231

Critical Infrastructure Protection: Department of Homeland Security Faces Challenges in Fulfilling Cybersecurity Responsibilities. GAO-05-434, May 26, 2005 (73 pages). http://www.gao.gov/docdblite/details.php?rptno=GAO-05-434

3) Selected Government Documents: Legislation, Congressional Documents, Public Laws, Executive Orders, and Presidential Directives
Executive Office of the President, The Status of Federal Critical Infrastructure Protection Activities, Report of the President of the United States, January 2001.

Executive Order 13231, Federal Register, Volume 86, No. 202, October 18, 2001, pp. 53063 - 53071.

Executive Order 2001-13228. Executive Order Establishing Office of Homeland Security and the Homeland Security Council, October 8, 2001.

Executive Order 2002-034. Homeland Security Council Executive Order Establishing the President's Homeland Security Advisory Council and Senior Advisory Committees for Homeland Security, March 21, 2002.

H.R. 3448, Public Health Security and Bioterrorism Response Act of 2002, To improve the ability of the United States to prevent, prepare for, and respond to bioterrorism and other public health emergencies. Became law on June 12, 2002 http://www.absa.org/pdf/H.R.%203448%20-%20Biosecurity%20summary.pdf.

National Homeland Security and Combating Terrorism Act of 2002, Report of the Committee on Governmental Affairs United Stated Senate together with Additional Views to accompany S. 2452 to Establish the Department of National Homeland Security and the National Office for Combating Terrorism, June 24, 2002, Report 107-175.

The National Security Strategy of the United States of America, September 17, 2002 http://www.whitehouse.gov/nsc/nss.html.

National Strategy for Combating Terrorism, The White House, Washington, DC, February 14, 2003. http://www.whitehouse.gov/news/releases/2003/02/20030214-7.html

National Strategy to Combat Weapons of Mass Destruction, The White House, Washington, DC, December 2002. http://www.whitehouse.gov/news/releases/2002/12/WMDStrategy.pdf

National Strategy for Homeland Security, Office of Homeland Security, Executive Office of the President, July 2002, http://www.whitehouse.gov/homeland/book/.

The National Strategy for the Physical Protection of Critical Infrastructure and Key Assets, February 14, 2003, http://www.whitehouse.gov/pcipb/physical_strategy.pdf.

National Strategy to Secure Cyberspace (Draft), The President's Critical Infrastructure Protection Board, September 2002 http://www.whitehouse.gov/PCIpb/cyberstrategy-draft.html.

The National Strategy to Secure Cyberspace, The President's Critical Infrastructure Protection Board, February 14, 2003, http://www.whitehouse.gov/pcipb/.

Public Law 107-56, U.S. Patriot Act. See http://www.google.com/search?q=%22US+Patriot+Act%22+%2B+critical+infrastructure&hl=en&lr=&ie=UTF-8&oe=UTF-8&start=20&sa=N.

USA Patriot Act of 2001, officially “Uniting and Strengthening American by Providing Appropriate Tools Required to Intercept and Obstruct Terrorism,” June 2002, pp. 1-18. http://www.epic.org/privacy/terrorism/hr3162.pdf

Senate Bill 5005, Congressional Record, 148:150-151, November 20, 2002. National Homeland Security and Combating Terrorism Act of 2002 signed into law November 25, 2002.

U.S. House of Representatives, Committee on Government Reform, November 19, 2002 Computer Security Report Card "prepared by Chairman Stephen Horn, Subcommittee on Government Efficiency, Financial Management and Intergovernmental Relations, based on agency reports required by the Government Information Security Reform Act of 2000." See
http://www.house.gov/reform/gefmir/hearings/2002hearings/1119_computer_security/computersecurityreportcard.doc.

Executive Order on Critical Infrastructure Protection in the Information Age, 16 Oct 2001.
http://www.whitehouse.gov/news/releases/2001/10/print/20011016-12.html

Executive Order Establishing Office of Homeland Security
http://www.whitehouse.gov/news/releases/2001/10/20011008-2.html

Executive Order Establishing President’s Homeland Security Advisory Council and Senior Advisory Committees for Homeland Security
http://www.ncs.gov/ncs/html/eo13260.htm

Homeland Security Presidential Directive (HSPD) 1, SUBJECT: Organization and Operation of the Homeland Security Council
http://www.whitehouse.gov/news/releases/2001/10/20011030-1.html

HSPD 2, Subject: Combating Terrorism Through Immigration Policies
http://www.whitehouse.gov/news/releases/2001/10/20011030-2.html

HSPD 3, Subject: Homeland Security Advisory System
http://www.whitehouse.gov/news/releases/2002/03/20020312-5.html

HSPD 4 / NSPD-17 (Unclassified version) http://www.fas.org/irp/offdocs/nspd/nspd-17.html

HSPD 5, Subject: Management of Domestic Incidents
http://www.fema.gov/pdf/reg-ii/hspd_5.pdf

HSPD 6, Subject: Subject: Integration and Use of Screening Information
http://www.whitehouse.gov/news/releases/2003/09/text/20030916-5.html

HSPD 7, Subject: Critical Infrastructure Identification, Prioritization, and Protection
http://www.whitehouse.gov/news/releases/2003/12/20031217-5.html

HSPD 8, Subject: National Preparedness (companion to HSPD-5)
http://www.whitehouse.gov/news/releases/2003/12/text/20031217-6.html

HSPD 9, Subject: Subject: Defense of United States Agriculture and Food
http://www.whitehouse.gov/news/releases/2004/02/text/20040203-2.html

For a listing of all National Security Presidential Directives (1 through 46 as of March 2006) and all Homeland Security Presidential Directives (1 through 15 as of March 2006), see http://www.fas.org/irp/offdocs/nspd/.

For a copies of the following documents and reports, see http://www.fas.org/irp/offdocs/index.html : National Intelligence Strategy of the United States of America, October 2005; Final Report of the WMD Commission, March 31, 2005; Final Report of the National Commission on Terrorist Attacks Upon the United States; Congressional Debates and Other Material; Presidential Directives and Executive Orders; Director of Central Intelligence Directives; Department of Defense Directives on Intelligence; Laws and Federal Regulations on Intelligence; Congressional Research Service Reports .

Tom Ridge, The Department of Homeland Security Strategic Plan, DHS, Washington, DC, February 2004. http://www.dhs.gov/interweb/assetlibrary/DHS_StratPlan_FINAL_spread.pdf

The National Commission on Terrorist Attacks Upon the United States (also known as the 9-11 Commission) http://www.9-11commission.gov/

~ Complete 9/11 Commission Report
http://www.9-11commission.gov/report/911Report.pdf 7.4 MB

~ Executive Summary
http://www.9-11commission.gov/report/911ReportExec.pdf 5.9 MB

~ Contents, List of Illustrations and Tables, Members, and Staff
http://www.9-11commission.gov/report/911Report_FM.pdf 233 KB

~ Preface
http://www.9-11commission.gov/report/911Report_Pref.pdf 67 KB

~ Chapter 1: "We Have Some Planes"
http://www.9-11commission.gov/report/911Report_Ch1.pdf 952 KB

~ Chapter 2: The Foundation of the New Terrorism
http://www.9-11commission.gov/report/911Report_Ch2.pdf 1.44 MB

~ Chapter 3: Counterterrorism Evolves
http://www.9-11commission.gov/report/911Report_Ch3.pdf 188 KB

~ Chapter 4: Responses to al Qaeda's Initial Assaults
http://www.9-11commission.gov/report/911Report_Ch4.pdf 185 KB

~ Chapter 5: Al Qaeda Aims at the American Homeland
http://www.9-11commission.gov/report/911Report_Ch5.pdf 312 KB

~ Chapter 6: From Threat to Threat
http://www.9-11commission.gov/report/911Report_Ch6.pdf 209 KB

~ Chapter 7: The Attack Looms
http://www.9-11commission.gov/report/911Report_Ch7.pdf 949 KB

~ Chapter 8: "The System Was Blinking Red"
http://www.9-11commission.gov/report/911Report_Ch8.pdf 146 KB

~ Chapter 9: Heroism and Horror
http://www.9-11commission.gov/report/911Report_Ch9.pdf 2.3 MB

~ Chapter 10: Wartime
http://www.9-11commission.gov/report/911Report_Ch10.pdf 109 KB

~ Chapter 11: Foresight--and Hindsight
http://www.9-11commission.gov/report/911Report_Ch11.pdf 133 KB

~ Chapter 12: What to do? A Global Strategy
http://www.9-11commission.gov/report/911Report_Ch12.pdf 184 KB

~ Chapter 13: How to do it? A Different Way of Organizing the Government
http://www.9-11commission.gov/report/911Report_Ch13.pdf 158 KB

~ Appendices
http://www.9-11commission.gov/report/911Report_App.pdf 109 KB

~ Notes
http://www.9-11commission.gov/report/911Report_Notes.pdf 669 KB

The Duelfer Report: Comprehensive Report of the Special Advisor to the DCI on Iraq's WMD http://www.lib.umich.edu/govdocs/duelfer.html and http://www.cia.gov/cia/reports/iraq_wmd_2004/index.html (posted October 6, 2004)

US Intelligence Community's Prewar Intelligence Assessments on Iraq, Senate Select
Committee on Intelligence, published 9 July 2004 [full text: 24 MB PDF file]
www.fas.org/irp/congress/2004_rpt/

The National Response Plan was completed on January 6, 2005. For a PDF copy of the National Response Plan (NRP), see http://www.dhs.gov/nationalresponseplan. For a fact sheet and a press release on the National Response Plan, see http://www.dhs.gov/dhspublic/interapp/press_release/press_release_0581.xml and
http://www.dhs.gov/dhspublic/interapp/press_release/press_release_0582.xml respectively.
For a "course designed for DHS and other Federal department/agency staff responsible for implementing the National Response Plan as well as State, local and private sector emergency management professionals," see http://training.fema.gov/emiweb/is/is800.asp.

Department of Homeland Security. National Infrastructure Protection Plan. Washington, DC: DHS, June 30, 2006. Accessed at: http://www.dhs.gov/dhspublic/interapp/editorial/editorial_0827.xml

*** For updates on Executive Orders and Legislation, see Guide to Emergency Management and Related Terms, Definitions, Concepts, Acronyms, Organizations, Programs, Guidance, & Executive Orders and Legislation. Emmitsburg, MD: FEMA, Emergency Management Institute, April 10, 2008, 1175 pages. At: http://training.fema.gov/EMIWeb/edu/docs/terms%20and%20definitions/Terms%20and%20Definitions.pdf

4) Information Concerning Selected Government Efforts

Note: For a full listing of government-related homeland security and defense efforts, see the http://www.dhs.gov website and Section 8 of this list for other portals, websites, and resources relating to government efforts.

For information concerning the President's Homeland Security Advisory Council, see March 21, 2002 White House press release at http://www.whitehouse.gov/news/releases/2002/03/20020321-9.html and the Homeland Security Council Homepage at http://www.dhs.gov/dhspublic/interapp/editorial/editorial_0331.xml.

For information concerning the President's Statewide Template Initiative, see http://www.dhs.gov/interweb/assetlibrary/Statewide_Template_Initiative.pdf.

For information concerning The National Infrastructure Simulation and Analysis Center (NISAC), see http://www.sandia.gov/CIS/NISAC.htm. "Los Alamos National Laboratory and Sandia National Laboratories have joined in partnership to leverage their existing research and development activities, and have established a critical infrastructure modeling, simulation, and analysis center. This will focus on interdependencies and represents a capability not available elsewhere. This Center will evolve to provide our nation's government and industry decision makers with the best available analytic predictive resources to protect the nation's critical infrastructures."

June 6, 2003 Press Release from the Department of Homeland Security: "Secretary Ridge Creates New Division to Combat Cyber Threats". "The Department of Homeland Security (DHS) is implementing the President's National Strategy to Secure Cyberspace and the Homeland Security Act of 2002, has created the National Cyber Security Division (NCSD) under the Department's Information Analysis and Infrastructure Protection Directorate. The NCSD will provide for 24 x 7 functions, including conducting cyberspace analysis, issuing alerts and warning, improving information sharing, responding to major incidents, and aiding in national-level recovery efforts. This Division represents a significant step toward advancing the Federal government's interaction and partnership with industry and other organizations in this critical area."

"DHS center to focus on security research" article by Judi Hasson, Federal Computer World, May 19, 2003 See http://www.fcw.com/fcw/articles/2003/0519/news-security-05-19-03.asp.

For information concerning Information Analysis and Infrastructure Protection
(IAIP) of the Department of Homeland Security, see http://www.whitehouse.gov/deptofhomeland/sect6.html#6-2.

For information concerning the Council of Information Officers, see
http://www.cio.gov/index.cfm?function=members&subsection=councilmembers.

President Bush speech on WMD, 04 Feb 2004:
http://www.whitehouse.gov/news/releases/2004/02/20040211-4.html

Richard B. Meyers, The National Military Strategy of the United States 2004, Washington, DC: Joint Chiefs of Staff, May, 2004.
http://www.oft.osd.mil/library/library_files/document_377_National%20Military%20Strategy%2013%20May%2004.pdf

David H. McIntyre, “Strategies for a New Long War: Analysis and Evaluation,” Testimony before the Committee on Government Reform, Subcommittee on National Security, Emerging Threats, and International Relations, U.S. House of Representatives, Washington, DC, February 3, 2004.
http://thinkingenemy.com/SiteFiles/03index-nss/index-nss.html

Homeland Security DOD Directives, RAND Corporation
http://www.rand.org/publications/MR/MR1251/MR1251.AppC.pdf

President’s Homeland Security Advisory Council, Statewide Template Initiative, Washington, DC: Department of Homeland Security, March 3, 2003.
http://www.dhs.gov/interweb/assetlibrary/Statewide_Template_Initiative.pdf

Brian A. Jackson, D.J. Peterson, James T. Bartis, Tom LaTourrette, Irene Brahmakulam, Ari Houser, Jerry Sollinger, Protecting Emergency Responders: Lessons Learned from Terrorist Attacks, Arlington, VA: RAND Science and Technology Policy Institute, 2002.
http://www.rcmp-learning.org/download/rand_2002.pdf

_____, Arlington County After-Action Report on the Response to the September 11 Terrorist Attack on the Pentagon, Arlington, VA: Titan System Corporation, 2002. (selected pages)
http://www.co.arlington.va.us/fire/edu/about/docs/aar.htm

The Hon. Frank Keating, Governor of Oklahoma, “Catastrophic Terrorism: Local Response to a National Threat,” The Journal of Homeland Security, ANSER Institute for Homeland Security
http://www.homelandsecurity.org/journal/articles/displayArticle.asp?article=16

Donald F. Kettl, The States and Homeland Security: Building the Missing Link, NY: The Century Foundation, 2003.
http://www.tcf.org/Publications/Homeland_Security/KettlPapers/Kettl.pdf

Louise K. Comfort, Assessment of the Homeland Security Initiatives: Commonwealth of Pennsylvania, NY: The Century Foundation, 2003.
http://www.tcf.org/Publications/Homeland_Security/KettlPapers/comfort.pdf

Robie Robinson, David A. McEntire, and Richard T. Weber, Texas Homeland Defense Preparedness, NY: The Century Foundation, 2003.
http://www.tcf.org/Publications/Homeland_Security/KettlPapers/Robinson.pdf

Steven D. Steher, Homeland Security in the State of Washington: A Base line Report on the Activities of Sate and Local Governments, NY: The Century Foundation, 2003.
http://www.tcf.org/Publications/Homeland_Security/KettlPapers/Stehr.pdf

Dennis L. Dresang, Strengthen Federal-State Relationships to Prevent and Respond to Terrorism: Wisconsin, NY: The Century Foundation, 2003.
http://www.tcf.org/Publications/Homeland_Security/KettlPapers/Dresang.pdf

"Department of Homeland Security Needs Under Secretary for Policy", Heritage Foundation Backgrounder #1788 by James Jay Carafano, Ph.D., Richard Weitz, Ph.D., and Alane Kochems, August 17, 2004. http://www.heritage.org/Research/HomelandDefense/bg1788.cfm

5) Task Groups, Partnerships, Consortia, Councils, Commissions, and Other Efforts

For information concerning, ISACs, see http://www.ni2ciel.org/ISACs. "ISACs are Information Sharing and Analysis Centers created by the Presidential Directive 63 (PDD 63). They were designed to share important information about vulnerabilities, threats, intrusions and anomalies within and between industry sectors and the National Infrastructure Protection Center (NIPC)."

Under the PATRIOT Act, the Secret Service has established Electronic Crimes Task Forces in several major cities in the US. For information see http://www.ectaskforce.org/Regional_Locations.htm. For a listing of helpful links relating to electronic crimes, see http://www.ectaskforce.org/Helpful_Links.htm.

InfraGard was established in 1996. It is "an information sharing and analysis effort serving the interests and combining the knowledge base of a wide range of members...InfraGard is a cooperative undertaking between the U.S. Government (led by the FBI and the National Infrastructure Protection Center of the FBI) and an association of businesses, academic institutions, state and local law enforcement agencies, and other participants dedicated to increasing the security of United States critical infrastructures...All InfraGard participants are committed to the proposition that a robust exchange of information about threats to and actual attacks on these critical infrastructures is an important element for successful infrastructure protection efforts....The goal of InfraGard is to enable the flow of information so that the owners and operators of infrastructure assets can better protect themselves and so that the United States government can better discharge its law enforcement and national security responsibilities....." For information about the InfraGard program and local InfraGard chapters, see http://www.infragard.net/ and http://www.infragard.net/about.htm. For information about the National Infrastructure Protection Center, see the NIPC website or inquire via e-mail at nipc.watch@fbi.gov. Also see http://www.infragard.net/warnings.htm for NIPC warnings.

The Partnership for Critical Infrastructure (PCIS) is headed by Kenneth Watson. See http://www.pcis.org/about.cfm. The PCIS "supports the information security, protection, and assurance interests of the critical infrastructures of the United States as defined in Presidential Decision Directive-63 (PDD-63) and the October 16, 2001 Executive Order on Critical Infrastructure Protection. Key infrastructure sectors include: Electricity, Emergency Services, Financial Services, Government Services, Health Services, Information Technology, Oil and Gas, Telecommunications, Transportation, and Water....The PCIS is a forum for cross-sector and public-private dialog on reducing vulnerabilities, mitigating risks, identifying strategic objectives, and sharing sound information security practices... (T)he PCIS is open to all interested businesses as well as public sector participation. It offers a unique opportunity for participants to network with information security leaders from other industries and government agencies and to plug into the latest developments on security issues that affect both the public and private sectors... (It) is a public-private partnership that is also a non-profit organization run by companies and private sector associations representing each of the critical infrastructure industries. The Critical Infrastructure Assurance Office provides support for the Partnership and government officials are invited to participate in Partnership meetings on a collaborative basis...The mission of the PCIS is to 'coordinate cross-sector initiatives and complement government and industry efforts to promote the assurance of reliable provision of critical infrastructure services in the face of emerging risks to economic and national security.' "

The Open Group is headed by Allen Brown. See http://www.opengroup.org and http://www.opengroup.org/overview/index.htm. The Open Group is "an international vendor and technology-neutral consortium that is committed to delivering greater business efficiency by bringing together buyers and suppliers of information technology to lower the time, cost and risk associated with integrating new technology across the enterprise...The Open Group allows for almost any size of organization to join and influence the future of the IT world, and the introduction of membership for individuals is currently being considered...(M)embers.. include some of the largest and most influential organizations in the world and buy-side members have combined budgets of over $50 billion per annum....." The e-mail address for Allen Brown is a.brown@opengroup.org.

The Council of Security and Strategic Technology Organizations was established in 2002. According to its website, "it is a private organization for professionals in the Corporate, City, State & Local Government, Military, Intelligence & International Sectors, with the purpose of accelerating the development and application of safety and security technologies. It is intended that the Council be an international organization, with open membership." The first general meeting of Council members was held in Arlington, VA October 14 - 17, 2002. For information see http://www.costo.info.

The Homeland Security Industries Association (HSIA) "is a non-profit corporation established in August, 2002. Our mission is to provide a mechanism for government and the private sector to coordinate on a wide range of homeland security issues." See http://www.hsianet.org/index.asp.

Press release entitled "Website Offers Tips for Corporate Homeland Security Efforts" (U.S. Newswire), July 28, 2003: "Help is now online for businesses across the nation looking to reexamine their security infrastructure as the threat of terrorism at home continues,' according to U.S. Newswire. The Security Industry Association, an international trade organization representing more than 700 manufacturers and service providers in the electronic and technology security industry, is providing the help on a new website." See http://releases.usnewswire.com/GetRelease.asp?id=110-07282003.

For GAO Reports on homeland security, see http://www.gao.gov.

Homeland Security: Voluntary Initiatives Are Under Way at Chemical
Facilities, but Extent of Security Preparedness Is Unknown. GAO-03-439,
March 14, 2003. See http://www.gao.gov/cgi-bin/getrpt?GAO-03-439 and
http://www.gao.gov/highlights/d03439high.pdf.

Critical Infrastructure Protection: Efforts of the Financial Services Sector to Address Cyber Threats. GAO-03-173, January 30, 2003. See http://www.gao.gov/cgi-bin/getrpt?GAO-03-173 and http://www.gao.gov/highlights/d03173high.pdf.

The Natural Hazards Informer - the Natural Hazard Center's peer-reviewed
series summarizing current knowledge in specific areas of natural hazards.
(Issue 3: Building Back Better: Creating a Sustainable Community
After Disaster, by Jacquelyn L. Monday, in PDF format, February 15, 2002. See www.colorado.edu/hazards/informer/.)

The Natural Hazards Review - A joint publication of the Natural Hazards
Center and the American Society of Civil Engineers (ASCE), the Review is the
first cross-disciplinary journal to bring together engineering, the
regulatory and policy environments, and the social, behavioral, and physical
sciences to confront natural hazards loss and cost reduction. See http://www.pubs.asce.org/journals/nhnews.html.

An infrastructure briefing provided by the World Markets Research Center (WMRC) in the UK can be seen at http://www.wmrc.com/businessbriefing/infrastructurebriefing/media/exploration2002.

John Powers, formerly head of the Office of Civil Preparedness at FEMA, has two websites focusing on homeland security and emergency management-related concerns. See http://www.ccri-concepts.com and http://www.wcdm.org/wcdm_rpowr.html.

For an article on "The National Center for Crisis and Continuity Coordination (NC4)" by Jack Smith, see http://www.seas.gwu.edu/~emse232/emse232oct2002par1.

"Equity International, Inc. is an international business development and investment promotion firm, with offices in Washington, DC and Florida. Considered a leader in providing information, strategies, and programs on topics of global importance, the firm's activities are focused in the following areas: Homeland and Global Security: Winning the global war again terrorism through the participation of countries, governments, agencies, companies, and organizations; and Reconstruction and Development: Equity International has been a leader in facilitating the economic development in emerging markets by bringing together multilateral lending institutions, US and foreign corporations and governments to encourage business and finance opportunities." For information on the outstanding informative programs sponsored by Equity International, see http://www.equityinternational.

For information concerning An Executive's Desk Book on Corporate Risks and Response for Homeland Security, published by the National Legal Center in the Public Interest, November 2002, see http://www.nlcpi.org/search/Detail.CFM?ID=167.

For Homeland Security Advisory Council reports, see http://www.dhs.gov/dhspublic/interapp/editorial/editorial_0331.xml

*** Elin A. Gursky on behalf of the Joint Task Force Civil Support Mass Fatality Working Group, "A Working Group Consensus Statement on Mass-Fatality Planning for Pandemics and Disasters," July 2007. See http://www.homelandsecurity.org/newjournal/Articles/displayArticle2.asp?article=160. Elin A. Gursky, Sc.D., is a Fellow and Principal Deputy for Biodefense of the National Strategies Support Directorate, ANSER/Analytic Services Inc.

*** GAO, Critical Infrastructure Protection: Sector Plans and Sector Councils Continue to Evolve. GAO-07-706R, July 10, 2007. See http://www.gao.gov/cgi-bin/getrpt?GAO-07-706R.

6) Public Health and Safety-Related Concerns, including Pandemic Flu Concerns

For information regarding HealthExecLynx, see http://www.healthexeclynx.org/topics.htm "HealthExecLynx is a fast and easy reference tool for health professionals. With more than 1,100 links to valuable health-related websites, including a complete list of websites related to homeland security, emergency management, pandemic flu and disaster management, HealthExecLynx makes finding relevant information less of a chore and more of a pleasure."

For information concerning the Isabel health care diagnosis system, see http://www.isabelhealthcare.com/. The following is excerpted from the website: "Isabel is an award-winning, clinical decision support system designed to enhance the quality of diagnosis decision making. Its unique feature is a diagnosis reminder system.For a given set of clinical features Isabel instantly provides a checklist of likely diagnoses including bio-terrorism conditions, related diagnoses and causative drugs Isabel not only assists in making the right diagnosis but the Isabel knowledge mobilizing system helps answer clinical questions with up to date knowledge. Isabel uses natural language processing software as opposed to standard key word searches. In studies and clinical trials, Isabel has proved that it is fast, easy to use, improves patient safety and quality of care by augmenting providers’ knowledge and cognitive skills in hospital and family practice. Isabel is web based and is delivered as a stand alone system, interfaced with electronic medical record or on a wireless handheld device. "

For information concerning Johns Hopkins University, School of Public Health and Medicine Center for Civilian Biodefense Studies, see http://www.hopkins-biodefense.org/index.html.

For information about state and Center for Disease Control activities and resources, see the CDC website on Public Health Emergency Preparedness & Response at http://www.bt.cdc.gov/.

For information About Anthrax and Bioterrorism, including bioterrorism plans and a bioterrorism report, see http://www.cdc.gov/mmwr/indexbt.html.

For information concerning anthrax, see MEDLINEplus Health Information, a service of the National Library of Medicine, National Institutes of Health at http://www.nlm.nih.gov/medlineplus/anthrax.html.

Responding First to Bioterrorism: Expert-selected Web resources for "First Responders" on bioterrorism and public safety, with a search engine, see http://search.napedu/shelves/first/.

The Henry L. Stimson Center Chemical and Biological Weapons Nonproliferations Project. See http://www.stimson.org/cwc/terror.htm .
Bioterrorism Publications at the National Institute of Allergies and Infectious Diseases. See http://www.niaid.nih.gov/publications/bioterrorism.htm.

For expert-selected web resources for "First Responders" on bioterrorism and public safety, see http://search.nap.edu/shelves/first/. This website includes a search engine providing access to more than 3000 related Web pages.

For bioterrorism publications at the National Institute of Allergies and Infectious Diseases, see http://www.niaid.nih.gov/publications/bioterrorism.htm.

The article entitled "Bioterrorism on the Home Front: A New Challenge for American Medicine" by H. Clifford Lane, MD and Anthony S. Fauci, MD (Journal of the American Medical Association, Vol. 286 No. 20, November 28, 2001) See http://jama.ama-assn.org/issues/v286n20/ffull/jed10079.html#a0.

December 2002 Chemical and Arms Control Institute (CBACI) report (46-page summary and CD ROM of full report) on "What Should We Know? Whom Do We Tell? Leveraging Communication and Information to Counter Terrorism and Its Consequences." This report "1) identifies the key information requirements of the general public and the responder community, 2) identifies the types of information these two audiences require to deter, prepare for, and respond to terrorist incidents occurring within the borders of the United States, 3) determines the times this information should be communicated, and 4) identifies the optimum mechanisms for communicating this information." A copy of the report can be requested from CBACI at (202) 296-3550. The report can also be downloading from the organization's website at http://www.cbaci.org. Click on "Recent Publications".

See the section of the poster presentation by Paula Gordon on "Recognizing and Addressing Problems of Scientific & Technological Complexity" entitled" A Second Example of an Unmet Challenge: Problems Relating to the Anthrax Attacks in the Washington, D.C. Metropolitan Area." This poster presentation is posted at http://gordonhomeland.com.

Book by Senator Bill Frist, When Every Moment Counts - What You Need to Know about Bioterrorism from the Senate's Only Doctor. See
http://www.wheneverymomentcounts.com. Also see Senator Frist's Senate website at http://www.senate.gov/~frist/ for further references on chem/bioterrorism.

For a March 2002 article by J. Barbera and A. MacIntyre, see
http://www.homelandsecurity.org/journal/articles/displayArticle.asp?article=46.

For information concerning The Center for Health Policy, Research & Ethics, see http://hpi.gmu.edu or contact Teri Fede at tfede@gmu.edu.

For material addressing the question of "how to survive under different scenarios of terrorism or disaster", see http://www.whitehouse.gov/news/rele...0030207-10.html.

A major source of information compiled by the Federal government concerning emergency preparedness can be found at http://www.fema.gov/areyouready/.

A source of information concerning emergency preparedness can be found at http://www.unitedshelter.com. This resource provides numerous links to additional sources of information.

Homeland Security Information Center. "This website, hosted by the National Technical Information Service, is part of the Technology Administration branch of the Department of Commerce. The service is the federal government's central source for the sale of scientific, technical, engineering, and related business information produced by or for the U.S. Government and complementary material from international sources. This section of the website offers recommendations for homeland security information sources covering the topics of health and medicine, food and agriculture, biological and chemical warfare, preparedness and response, and safety and training packages." See http://www.ntis.gov/hs/index.asp.

The Response to Emergencies and Disasters Institute (READI) is in Ashburn, West Virginia. READI "will train police, fire and medical first responders from the District of Columbia, Maryland and Virginia…and... will be run by the George Washington University Medical Center, George Mason University and Shenandoah University…READI ..is the largest emergency response training center to begin operating since the Department of Homeland Security was created…." For further information, see http://www.gwumc.edu/c4ep/pdf/programfinal.pdf.

"AMA Takes on Role of 'Doctor to Homeland Security'" by Peggy Peck, June 17, 2003 CHICAGO (Reuters Health). See http://reuters.com/newsArticle.jhtml?type=healthNews&storyID=2942420 - "The American Medical Association on Monday unveiled a basic disaster life support (BDLS) program aimed at rapidly training physicians, physician assistants, nurses and emergency medical technicians for all disasters -- from nuclear attack to fire and flood…"

Doctors for Disaster Preparedness (DDP) holds annual meetings that bring together authorities on strategic and civil defense and scientists speaking on threats and scares. Jane M. Orient, M.D., President. For articles, information, and for information concerning resource links and the DDP newsletter, see http://www.oism.org/ddp.

For information concerning The Center for Health Policy, Research & Ethics, see http://hpi.gmu.edu.

For articles concerning quarantine issues, see
http://www.homelandsecurity.org/journal/Articles/displayarticle.asp?article=69 and http://www1.umn.edu/cidrap/content/fs/biosecurity/ news/secstrategy.html.

Health Information for the International Traveler 2001- 2002. This book is published by the CDC. See http://www.cdc.gov/travel/yellowbk99.pdf.

"Lessons for Public Health From 9-11 and the Aftermath" by Tee L. Guidotti, M.D. See http://www.seas.gwu.edu/~emse232/emse232per3.

For information concerning the Partnership for Public Warning, see
http://www:partnershipforpublicwarning.org. Points of contact: Kenneth Allen.

For information concerning Jane's Crisis Communications Handbook, see http://www.janes.com/company/catalog/jcch.shtml.

For information concerning a eHealth Initiatives focusing on "Improving America's Health Care", see www.ehealthinitiative.org/events/ For additional information, contact Dianne Norcutt, Social & Scientific Systems via e-mail at dnorcutt@s-3.com. Also see http://www.nhii-03.s-3.net/default.htm.

A United Nations publication, Living with Risk, provides "a global review on disaster reduction initiatives". It is published by the Inter-Agency Secretariat of the International Strategy for Disaster Reduction (ISDR). It is "a 400 page study of the lessons learned by experts and communities in response to hazards presented by natural forces such as volcanoes, fires, hurricanes, tsunamis, landslides and tornadoes as well as technological accidents and environmental degradation." For the full text of the publication see http://www.unisdr.org.

For information concerning emergency management efforts of the Corporation for National and Community Service, see www.cns.gov or contact Cee Cee Molineaux, Emergency Management Coordinator at cmolineaux@cnx.gov.

Approaches to Developing Understanding of the Civil Defense Program, FEMA Issue Paper NP/OCP/CIV STST 82-1 March 1982 (Written by Paula Gordon.) This issue paper was prepared for the Office of Civil Preparedness in the National Preparedness Directorate of FEMA. The paper includes a comparison of range of options. These options are compared using parameters that remain pertinent today. This issue paper focused on options for reorienting Federal nuclear attack preparedness efforts. The issue paper influenced the decision of the FEMA Director and a specially convened task force of the 25 highest ranking individuals in FEMA to reorient FEMA's emergency preparedness efforts along all hazards lines. It is available through Inter Library loan from the FEMA Library at 500 C St. SW, Washington, DC 20472.

A Knowledge Base Relevant to the Development of Guidance Concerned with the Coordination of Medical Services and Assistance in Emergencies, Draft Report, December 1983 (Prepared by Paula Gordon). It is available through Inter Library loan from the FEMA Library at 500 C St. SW, Washington, DC 20472.

Emergency Health and Medical Management: A General Guidance Manual for Local Level Emergency Management Coordinators, Draft, April 1984 (Prepared by Paula Gordon). It is available through Inter Library loan from the FEMA Library at 500 C St. SW, Washington, DC 20472. Both of the latter two documents contain matrices and other material that is also particularly pertinent since 9/11/2001. The purpose of the latter two documents was to provide guidance to local level coordinators concerning medical preparedness and response efforts in a wide range of disasters and catastrophes, through and including a worst case nuclear war.

The State and Territorial Guide to Substance Abuse Prevention in Declared Disasters - Implementation Guide. SAMHSA, U.S. Department of Health & Human Services, 1997. This document is available through Inter Library loan from the FEMA Library at 500 C St. SW, Washington, DC 20472.

Disasters and Community-Based Organizations from background material prepared by Paula Gordon, Project Director, and others in conjunction with the preparation of The State and Territorial Guide to Substance Abuse Prevention in Declared Disasters - Implementation Guide. SAMHSA, U.S. Department of Health & Human Services, 1997. This document has particular relevance to individual assistance programs that are needed in the aftermath of a disaster. It is available through Inter Library loan from the FEMA Library at 500 C St. SW, Washington, DC 20472.

The following is from a US Newswire item entitled "Website Offers Tips for Corporate Homeland Security Efforts": "Help is now online for businesses across the nation looking to reexamine their security infrastructure as the threat of terrorism at home continues," according to U.S. Newswire. The Security Industry Association, an international trade organization representing more than 700 manufacturers and service providers in the electronic and technology security industry, is providing the help on a new website." From http://releases.usnewswire.com/GetRelease.asp?id=110-07282003. Also see http://www.sia.com/ and http://www.sia.com/member_services/web_links/.

Terrorism and Disaster Management -- Preparing Healthcare Leaders for the New Reality, edited by Joanne McGlown, Health Administration Press, Chicago IL, 2004, 343 pages, (312) 424-2800.

American Medical Association (AMA) Related Efforts: The Center for Public Health Preparedness and Disaster Response (CPHPDR) of the American Medical Association serves "as an important national educational resource for enhancing the disaster preparedness and response capabilities of both civilian and military providers…..As the threat of terrorist attacks and other public health emergencies remains high on the list of concerns for the nation, the AMA continues to address the need to train physicians and other health professionals through its National Disaster Life Support (NDLS) Program. This program was created to teach physicians, medical students and other health professionals about their integrated roles and responsibilities in community, state or regional disaster response….(and) to better prepare health care professionals and emergency response personnel for mass casualty events….The NDLS courses stress a comprehensive all-hazards approach to help physicians and other health professionals deal with catastrophic emergencies from terrorist acts as well as from explosions, fires, natural disasters such as hurricanes and floods), and infectious diseases...The overarching goal is to standardize emergency response training nationwide and strengthen our nation's public health system….. In large-scale mass casualty events, physicians and other health care workers must be knowledgeable of the need for efficient coordination among local, state, and federal emergency response efforts; how to protect themselves and others from further harm; how to communicate effectively with other emergency personnel and the media; and how to address the unique psychological impacts and related social chaos that may ensue. By completing these courses, clinicians will better understand their integrated roles in the broader disaster response system." The members of the NDLS Consortium include the Medical College of Georgia, the University of Georgia, the University of Texas, and Southwestern Medical Center at Dallas and the School of Public Health Houston. From http://www.ama-assn.org/ama/pub/category/6206.html For information, contact Disaster.Preparedness@ama-assn.org.

The Yale New Haven Center for Emergency Preparedness and Disaster Response has an emergency preparedness and response web site for healthcare providers at http://yalenewhavenhealth.org/emergency. The site provides "up-to-date information on emergency preparedness including emergency planning, hazard vulnerability analysis, emergency credentialing of healthcare providers, education and training, incident command systems, emergency plan development, capacity building and response planning." An Online Education and Training area also "provides self-paced online courses on emergency preparedness for the healthcare delivery workforce." The latter can be accessed at http://ynhhs.emergencyeducation.org .

Websites and portals to links on pandemic flu:

~ PandemicFlu.gov is managed by the U.S. Department of Health and Human Services. It was established to serve as a one-stop access to U.S. government avian and pandemic flu information. This website is perhaps the richest source of information and official documents and links to websites relating to the subject of avian and pandemic flu. See http://pandemicflu.gov .

~ "The Metropolitan Medical Response System (MMRS) Program began in 1996 and currently is funded by the United States Department of Homeland Security (DHS). The primary focus of the MMRS program is to develop or enhance existing emergency preparedness systems to effectively respond to a public health crisis, especially a weapons of mass destruction (WMD) event. Through preparation and coordination, local law enforcement, fire, hazmat, EMS, hospital, public health, and other "first response" personnel plan to more effectively respond in the first 48 hours of a public health crisis. After a DHS reorganization, effective October 3, 2004, that placed the MMRS Program in the Office for Domestic Preparedness (ODP), the MMRS National Program Office physically moved to ODP on February 7, 2005 and is currently in the Office of Grants and Training. See http://mmrs.fema.gov and http://www.mmrs.fema.gov/Main/avianflu.aspx for "News and Resources."

~ The Ag-Security Alert - Food and Agriculture Security website includes links to Educational Institutions, NGO Resources, Clinical Resources, Military Resources, Intelligence Analysis Resources. See http://www.ag-security.com/Resources.htm.

~ The United States Fire Administrator announced on April 10, 2006 the establishment of "a new information section on the USFA Web site to assist all firefighters and Emergency Medical Service (EMS) first responders to prepare for a national flu pandemic." See www.usfa.fema.gov/subjects/ems/ .

Secretary Mike Leavitt, U.S. Department of Health and Human Services, Emergency Preparedness Health Summit, National Press Club, April 18, 2006. Available on videotape from C-SPAN Archives, 1-877-ONCSPAN. ID#192090-1. 45 minutes.

*** "The National Center for the Study of Preparedness and Catastrophic Event Response (PACER) (http://www.hopkins-cepar.org/idhs/ ), led by Johns Hopkins University, optimizes our Nation's preparedness in the event of a high-consequence natural or man-made disaster, as well as develops guidelines to best alleviate the effects of such an event. The co-director is Dr. Lynn Goldman." [From Homestation, a newsletter of Texas A&M's Integrative Center for Homeland Security.]

*** "The National Center for Food Protection and Defense (NCFPD) (http://www.fpd.umn.edu/) , led by the University of Minnesota, defends the safety of the food system from pre-farm inputs through consumption by establishing best practices, developing new tools, and attracting new researchers to prevent, manage, and respond to food contamination events. The director is Dr. Frank Busta." [From Homestation, a newsletter of Texas A&M's Integrative Center for Homeland Security.]

***"The National Center for Foreign Animal and Zoonotic Disease Defense (The FAZD Center) (http://fazd.tamu.edu/), led by Texas A&M University, protects against the introduction of high-consequence foreign animal and zoonotic diseases into the United States, with an emphasis on prevention, surveillance, intervention, and recovery. The director is Dr. Neville P. Clarke." [From Homestation, a newsletter of Texas A&M's Integrative Center for Homeland Security.]

***The Center for Advancing Microbial Risk Assessment (CAMRA) (http://camra.msu.edu/), led by Michigan State University and established jointly with the U.S. Environmental Protection Agency, fills critical gaps in risk assessments for decontaminating microbiological threats - such as plague and anthrax - answering the question, "How Clean is Safe?" The co-directors are Dr. Charles Haas and Dr. Joan Rose. "

7) Communication, Monitoring, and Tracking Concerns

The Information Collection and Reporting System (ICRS): The ICRS is a software program that was developed and used by the President's Council on Year 2000 Conversion to monitor incidents and problems occurring before and after the Y2K rollover. The system was used in the Federal government's Y2K Information Coordination Center (ICC). The overall cost of standing up and operating the ICC was around $45 million. The cost of developing the software alone was several million dollars. The software could be redeployed today. It could be refined and adapted to meet current needs for homeland security and emergency management operation centers. It could be used to address national security as well as homeland security needs. It could be used to enhance situational awareness in man-made as well as natural disasters and catastrophic events. For more about the ICRS, see the poster presentation by Paula D. Gordon entitled "Recognizing and Addressing Problems of Scientific and Technological Complexity" at http://gordonhomeland.com. For additional information concerning ICRS, contact pgordon@erols.com.

For information regarding the 2003 National Conference on Incident Command for Emergency Response, October 6-8, 2003, in Washington, DC, contact Shawn Keeley at keeley@performanceweb.org or see http://www.performanceweb.org. "Hosted by The Performance Institute, the conference will teach strategies to promote incident command efforts between all branches and jurisdictions of the emergency response system. It will also provide training on response to acts of terror, natural disasters, major event disruptions and other emergencies."

For the proceedings of conferences and workshop on homeland security and emergency management-related topics, see the website of the National Academies of Science. Topics since 9/11 have included risk management communication and the future of the emergency manager. To search for topics see http://search.nap.edu/shelves/first/.

Disaster Management Interoperability Services (DMIS) provides "a suite of functionality that falls into three major categories:
~ Tactical Information Exchange
~ Expert Reference - Convenient access to information repositories
~ Disaster Management"

For information concern DMIS, see: http://www.cmi-services.org/services.asp.

"Can we learn to share?" By William Welsh, in Washington Technology, 07/07/03; Vol. 18 No. 7. See http://www.washingtontechnology.com/news/18_7/cover-stories/21098-1.html. "The CapWIN program emerges as a model for first responders." William Welsh can be reached wwelsh@postnewsweektech.com.

Learning to Talk: The Lessons of Non-Interoperability in Public Safety Communication Systems. April 2002. Justice Works, University of New Hampshire. http://www.justiceworks.unh.edu/Research/B_B_Vol_5/justiceworkspub.pdf.

For information concerning the 2003 Disaster Resource Guide, see http://www.disaster-resource.com. This Guide includes a focus on planning, human concerns, information technology, facility issues, crisis communication and response, disaster recovery, and business continuity.

For the Emergency Information Infrastructure Partnership (EIIP) home page, see http://www.emforum.org. "The EIIP is an educational non-profit seeking to enhance effectiveness in coping with disasters and emergency situations by sharing information and ideas through electronic technology. The EIIP has hosted online 'Virtual Forums' since 1997; see the Web site for an extensive archive of formatted transcripts. The EIIP also shares its vision and educational opportunities through the EIIP Community on the DisasterHelp.gov website." http://www.disasterhelp.gov. Anyone who is interested may participate in EIIP. EIIP maintains a searchable archive of transcripts of past forums. An example of a transcript from one of these forums can be found at http://www.emforum.org/vforum/lc030723.htm. The Virtual Forum was held July 23, 2003 and was entitled, The International Dimension of Emergency Management: Information, Communication, and Coordination. Presenters were Dr. Eelco Dykstra, University of Kuopio, Finland, and Dennis Kouba, Public Entity Risk Institute (PERI).

December 2002 Chemical and Arms Control Institute (CBACI) report (46-page summary and CD ROM of full report) on What Should We Know? Whom Do We Tell? Leveraging Communication and Information to Counter Terrorism and Its Consequences. This report "1) identifies the key information requirements of the general public and the responder community, 2) identifies the types of information these two audiences require to deter, prepare for, and respond to terrorist incidents occurring within the borders of the United States, 3)
determines the times this information should be communicated, and 4) identifies the optimum mechanisms for communicating this information."
A copy of the report can be requested from CBACI at (202) 296-3550. The report can also be downloaded from the organization's website at http://www.cbaci.org. Click on "Recent Publications".

For "Panel Finds Media Emergency Alert System Needs a Big Fix" an article by Bill McConnell in Broadcasting & Cable, 3/3/2003, see http://www.broadcastingcable.com/CA280605.htm. Bill McConnell writes: "Lack of coordination among state and local emergency agencies could hamper the use of the media-operated Emergency Alert System following a terrorist attack or environmental disaster, say members of an industry group charged with improving media outlets' ability to warn local communities."

As a pilot program, the Metropolitan Washington Council of Governments has entered into a contract with E-Team, Inc., to provide a regional incident tracking system. For more information see http://www.mwcog.org/security/download/RECP_2_902.pdf.

Environmental Systems Research Institute (ESRI), SAP, and E-TEAM played a role in collecting information, monitoring developments, and providing needed information to emergency managers who were involved in responding to the fires in California that occurred in the fall of 2003. Hewlett Packard also provided support. A write up of these efforts can be found at http://www.esri.com/news/releases/03_4qrt/fires.html.

Crisis Communications & Response Nuggets. See http://www.disaster-resource.com/articles/03p_121nugg.shtml

8) Online Portals, Resources, and Libraries of Particular Note

For homeland security references and resources, see the National Technical Information Services website on Homeland Security at http://www.ntis.gov/hs/index.asp.

For information concerning the National Infrastructure Institute (NI2 Center for Infrastructure Expertise) and the Center for Infrastructure Expertise and Critical Infrastructure Library, see http://www.ni2cie.org/our_mission.htm and http://www.ni2ciel.org/Organizations.

For a website focusing on "Resources Relating to Critical Infrastructure Protection", see http://www1.umn.edu/cidrap/content/fs/biosecurity/infrastruct/cip.html.

Jane's maintains a website that contains information concerning a wide range of resources. See http://www.janes.com and http://catalog.janes.com/catalog/public/index.cfm.

For information concerning Potomac Tech Wire's Directory of Homeland Security, see http://nvtc.homeland-directory.com.

The Institute for Homeland Security website is an excellent information source. The website includes an extensive compilation of references and resources, "Suggested Reading", a "Virtual Library", an online Journal of Homeland Security, a free weekly newsletter, and a listing of upcoming events. See http://www.homelandsecurity.org. The weekly newsletter can be found at http://www.homelandsecurity.org/bulletin/current_bulletin.cfm. For a listing of "upcoming events", also see www.homelandsecurity.org/upcoming.cfm.

The Oklahoma City Memorial Institute for Terrorism Prevention website is another excellent information source. The website includes a listing of resources, references, reports, and lessons learned. See http://www.mipt.org. For a listing of upcoming events and conferences, see http://www.mipt.org/eventscalendar.asp. For the MIPT library, see http://www.mipt.org/library.asp.

For information concerning the Terrorism Research Center, Inc., see
http://www.trccon.com/App/homepage.cfm?moduleid=42&appname=100320.

For information concerning the 2007 Disaster Resource Guide, see www.disaster-resource

List of Selected Homeland Security References and Resources Revised August 18, 2008

Prepared by Paula D. Gordon, Ph.D.

List of Selected Homeland Security References and Resources
Revised August 18, 2008