While many hackers have the knowledge, skills, and tools to attack computer systems, they generally lack the motivation to cause violence or severe economic or social harm.

I favor strategies that encourage industry to include some sort of key recovery capability in their systems which would also address user requirements for access.

New vulnerabilities are continually uncovered, and systems are configured or used in ways that make them open to attack.

I prefer leaving things to the market as much as possible.

Further, the next generation of terrorists will grow up in a digital world, with ever more powerful and easy-to-use hacking tools at their disposal.

I think everybody agrees that we need encryption to protect personal, proprietary and other sensitive information.

The tools used to launch massive denial of service assaults, for example, have advanced command and control capabilities.

Systems are complex, so controlling an attack and achieving a desired level of damage may be harder than using physical weapons.

Computer worms like Code Red can be used to find potential zombies and automatically install the attack software.