Software Engineering Institute

This report was submitted to the President's Commission on Critical Infrastructure Protection for their consideration. Based on the experience of the CERT Coordination Center, we identify threats to and vulnerabilities of the Internet and estimate the cascade effect that a successful, sustained attack on the Internet would have on the critical national infrastructures set out in Executive Order 13010. Finally, we discuss the implications for public policy and make specific recommendations.