Get the latest market trends in your inbox

Stay on top of the latest market trends and economic insights with the Axios Markets newsletter. Sign up for free.

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Catch up on coronavirus stories and special reports, curated by Mike Allen everyday

Catch up on coronavirus stories and special reports, curated by Mike Allen everyday

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Denver news in your inbox

Catch up on the most important stories affecting your hometown with Axios Denver

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Des Moines news in your inbox

Catch up on the most important stories affecting your hometown with Axios Des Moines

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Minneapolis-St. Paul news in your inbox

Catch up on the most important stories affecting your hometown with Axios Minneapolis-St. Paul

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Tampa-St. Petersburg news in your inbox

Catch up on the most important stories affecting your hometown with Axios Tampa-St. Petersburg

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Construction work signs are stacked against a fence in Miami-Dade County in 2015. Photo: Joe Raedle / Getty Images

President Trump's infrastructure plan encourages states to "incorporate new and evolving technologies" into their proposals, but does not require any form of cybersecurity for those technologies. Experts say that might set states on the path to disaster.

The bottom line: "These plans are not just about putting down pavement. 21st century infrastructure is networked," said Richard Harknett, a University of Cincinnati professor that recently served as scholar-in-residence at the NSA and U.S. Cyber Command.

Flashback: Criminals have already wreaked havoc on current, less-networked infrastructure. In 2016, an attacker installed ransomware on the San Francisco Municipal Railway. As a result, the public transit system was unable to charge for rides for a weekend.

Details: Trump has touted his $200 billion infrastructure plan as a mechanism to generate more than a trillion dollars in investment. The Trump proposal includes a $100 billion incentive program rewarding proposals "incorporat[ing] new and evolving technologies." There is no requirement to evaluate the cybersecurity of any new technology used.

Advantages of modern infrastructure: The state-of-the-art in infrastructure uses data to become more efficient. Take transit for example:

  • Sensors will pick up data on things like congestion or weather, allowing for big data analysis to help optimize traffic by changing traffic light patterns.
  • Cars will communicate with traffic lights and signs to help drivers know when to stop.
  • There will be benefits to traffic, safety, fuel efficiency, and noise.

Yes, but: "Cities do a lot of functionality testing to make sure things work right, but do very little security testing," said Caesar Cerrudo, chief technology officer for the security firm IOActive. Cerrudo is known for showing how to hack traffic light sensors already in use by many large American cities.

  • If hackers are able to tinker with any aspects of a smart system, they can more than negate any safety or efficiency boost.
  • Such tinkering could also trick sensors and manipulate traffic flows through intersections.
  • A cleverly constructed series of traffic jams, for example, could do serious harm to an economy.
  • Toying with weather sensors could cause a system to suggest caution during a perfectly sunny day or, worse, not suggest caution during a freeze.

That doesn't mean it's not worth doing. Businesses have high hopes for replacing crumbling infrastructure that impedes national and international trade. "It's time to invest in a 21st century infrastructure, a system of infrastructures to support and grow a 21st century economy," said Tom Donohue, president of the U.S. Chamber of Commerce, at a speech in January.

But there are concerns to address: Cybersecurity experts say it's much cheaper and effective to address cybersecurity concerns before a major infrastructure project starts. "This is the time to address it, before the shovels hit the ground," said Harknett.

Go deeper

Updated 2 hours ago - Politics & Policy

Coronavirus dashboard

Illustration: Sarah Grillo/Axios

  1. Health: Coronavirus cases rose 10% in the week before Thanksgiving.
  2. Politics: Supreme Court backs religious groups on New York coronavirus restrictions.
  3. World: Expert says COVID vaccine likely won't be available in Africa until Q2 of 2021 — Europeans extend lockdowns.
  4. Economy: The winners and losers of the COVID holiday season.
  5. Education: National standardized tests delayed until 2022.
4 hours ago - Health

Standardized testing becomes another pandemic victim

Photo: Edmund D. Fountain for The Washington Post via Getty

National standardized reading and math tests have been pushed from next year to 2022, the National Center for Education Statistics (NCES) announced Wednesday.

Why it matters: There’s mounting national evidence that students are suffering major setbacks this year, with a surge in the number of failing grades.

4 hours ago - World

European countries extend lockdowns

A medical worker takes a COVID-19 throat swab sample at the Berlin-Brandenburg Airport. Photo by Maja Hitij via Getty

Recent spikes in COVID-19 infections across Europe have led authorities to extend restrictions ahead of the holiday season.

Why it matters: "Relaxing too fast and too much is a risk for a third wave after Christmas," said European Commission President Ursula von der Leyen.