-
Rep. Michael McCaul, R-Tex., said Wednesday he plans to introduce a bill that would clarify the Department of Homeland Security's role in receiving information about cyber threats from companies.
April 24 -
Legislative efforts to strengthen the nation's cyber defenses are shifting to the U.S. Senate after passage of a controversial bill by the House of Representatives.
April 19 -
As expected, the U.S. House of Representatives on Thursday passed a controversial bill that aims to bolster the nation's defenses against cyber threats.
April 18 -
The White House issued an executive order on Tuesday that aims to strengthen protection of the nation's critical infrastructure against cyberattack.
February 12
The White House says the nation needs new laws to reinforce its cyber defenses but that the push should not come at the cost of privacy.
The House of Representatives on April 18
The White House has
"The President has been clear that the United States urgently needs to modernize our laws and practices relating to cybersecurity, both for national security and the security of our country's businesses — but that shouldn't come at the expense of privacy," Todd Park, the White House’s chief technology officer, and cybersecurity coordinator Michael Daniel,
The petition, which called on the administration to oppose CISPA, had garnered 117,576 signatures as of Thursday afternoon.
Companies should be able to share information about cyberattacks with the government and each other, according to the officials, who said the government would use the information to help prevent future intrusions.
"When it comes to information sharing, we need clearer rules to promote collaboration and protect privacy," Park and Daniel wrote. "Right now, each company has to work out an individual arrangement with the government and other companies on what information to share about cyber threats. This ambiguity can lead to harmful delays."
The officials said the White House would assess any legislation to promote information sharing according to whether the information to be shared with the government minimizes data that can be used to identify specific individuals. "For example, if a utility company is looking for government assistance to respond to a cyberattack, it is unlikely that it needs to share the personal information of its customers, like contact information or energy-use history, with the government," they wrote.
The White House says legislation "should not provide broad immunity" for businesses that act in ways likely to reveal personal information, and that information from companies should enter the government through a civilian agency like the Department of Homeland Security, as opposed to a spy agency.
Civil liberties groups agree. They say companies that share cyber threat information with the government should receive immunity from any resulting legal liability only if the companies send the information to the Department of Homeland Security, a civilian agency, not to the National Security Agency or other spy bodies.
Debate over legislation to strengthen the nation’s cyber defenses has moved to the Senate, where efforts to pass cybersecurity legislation stalled twice last year.
Senator Saxby Chambliss, R-Ga., the top Republican on the Intelligence Committee, told
Other senators, including Commerce Committee Chairman Jay Rockefeller, D-W.Va., and Homeland Security Chairman Tom Carper, D-Del., say they expect to