following up on this little bit, miss cantley. there is a survey described in your written testimony, significant drop in commercial account takeovers between 2009-2010. what do you attribute this reduction? >> the answer may surprise you. you see the most recent survey, customer education was the most specific driver. >> any idea about current corporate account takeovers? >> it is specific to corporate account takeover. >> mr. -- information sharing groups that you have, it seems there might be too many of these groups, each slightly different so that we might have a lot of information flowing back and forth. potentially the correct information may never get to the right place. is it possible -- should we be streamlining information sharing as we seek to improve this flow of information? >> i think the answer is probably on two levels. in terms of the initiative we take around best practices and improvements and resiliency i think we do work closely together across a number of organizations and associations we had and we try to m

cantley? >> thank you. speaking on behalf of the attempt to address the smaller institutions, the dtcc this is more important and the last two years focused on education both for customers and the smaller institutions and we have held a number of seminars. another important step that we took because we think it's critical to deal with the fact most of these small and medium institutions use the same processors. so we build on the authentication guidance that came out in 2005 and with updated last year in some of our recommendations got even more prescriptive to the service providers on here are things you need to providing our products that your institutions can take it vantage of. i would also like to point out to the committee that i don't think additional regulation as the answer to this problem. it is applicable to all institutions and it provides a method for dealing with these attacks in a cost-effective means for financial institutions of all sides. >> what i'm trying to get at is i'm reading "the ne

cantley, you play a key role with the coordination, is it working and how can we do better protectioning our companies and individuals and countries from this type of attack? >> first off, we have a high amount of public/private information center. i think we can do more. we would like the government to share more threat caters that they have with us on a timely basis so we can act on those and prevent cyber crime in our industry. we also would like to be in a position to share information safely with the government without having to go through the scrubbing steps, so we would appreciate the opportunity for that to be exempted from the freedom of information act. we would like some work done in the telecommunications industry, currently carriers are required to deliver everything to the end user, the government knows that some of the traffic on our networks is malicious and if they could give that to the telecommunications carriers and they are allowed to dump that traffic before it gets to the end point, that would be great and working on legal and diplomatic levels, when we say that pe