What steps can you take?

People need to be careful about clicking on links, so we're very restrictive. We're putting a lot of things in place, like moving toward a policy on our firewalls to deny all except by exception. There's a registry of sites you're allowed to go to. Today, it's simply a blacklist and we block by categories.

What would you like to see the high-tech industry work on in terms of products or services to support the Air Force Cyber Command?

I'd like to see more work done on being able to identify where an attacker has put embedded code, perhaps in a Web site, and detect data that may pose a threat to you. We start by looking at commercial off-the-shelf products, and that's the kind of thing we look for to defend a network.