Cyber Security Bill Hinges on Liability,Privacy

Published On May 1, 2014 | By Tom Huskerson | Legally Speaking

A draft cyber security bill  is circulating in Congress that will promote information sharing on cyber threats between private industry and government by offering liability protection. The draft legislation was introduced by Senate Intelligence Committee Chairwoman Dianne Feinstein (D-Ca) and Vice Chairman Saxby Chambliss (R-Ga). Officials familiar with the draft legislation says there’s no timeline for when the complete bill will be introduced, saying only that the legislation is merely a “discussion draft.”

This is not the first time an attempt has been made to pass cyber security legislation. In April of 2013 the House of Representatives approved the Cyber Intelligence Sharing and Protection Act by a 288-127 vote. The Obama administration threatened to veto the bill because privacy protections were inadequate. The administration’s response, written by White House Cybersecurity Coordinator Michael Daniel and Federal Chief Technology Officer Todd Park, stated the Obama administration advocates for cyber security legislation that protects privacy. “It’s important to keep in mind that there is a larger legislative process that is ongoing as we speak, including efforts in the Senate,” Daniel and Park wrote.

The second major issue hindering the passing of  cyber security legislation is differences over how much liability protection to grant businesses to get them to share cyberthreat information. Congress simply can’t agree on how much liability protection to offer. Sen. Tom Carper (D-Del), Chairman of the Senate Homeland Security and Governmental Affairs Committee, said “The one issue that has made it difficult for us to put together any kind of comprehensive cybersecurity security has been our inability to agree on what kind of liability is appropriate.” 

Th fundamental concern with providing liability protection is that businesses could potentially exploit it to collude on other matters. Democrats are the primary supporters of targeted liability protection arguing it would provide sufficient protection to enable businesses to share cyberthreat information. Republicans argue businesses would not feel adequately protected if they were granted only limited liability. Corporate legal counsel would caution them that they could still be subject to legal action.

The Obama administration has twice threatened to veto House legislation  providing broad liability protection and there are no indications they will compromise. “This broad liability protection not only removes a strong incentive to improving cybersecurity, it also potentially undermines our nation’s economic, national security, and public safety interests,” the administration said.

Breaking it Down

We could go round and round with this forever. And it seems that is what Congress is going to be doing. The question of liability can easily be translated to mean, we don’t want to pay for our sloppy IT networks.

Private corporations are doing a piss poor job of protecting the consumer. Data breaches are national disgrace and yet they want liability protection. Those we elected to represent us have failed to do anything in this areas because they are looking in the face of lobbyist everyday and those lobbyist have open checkbooks. Why not share information about cyber threats? Instead of working with the government the private corporations are too busy trying to cover their collective asses. Why? because what they are doing on their side of the issue is sloppy and careless. If we can’t get the legislative branch to whip then into shape then let them get sued. Money is the only thing they understand.

I am personally appalled that the government has not mandated that any information regarding cyber threats be reported immediately. The reason this isn’t done voluntary is because the corporation don’t want to answer questions about how carelessly they are handling things.  Example. Target stores.

Like this Article? Share it!

About The Author

Tom Huskerson Bio Born in Richmond Virginia Tom Huskerson is a military veteran who settled in California after his discharge. Tom attended Santa Barbara City College where he began his writing career as a campus reporter. He worked as an intern news reporter for the Santa Barbara News-Press writing feature stories before moving on to San Francisco. At San Francisco State University Tom studied broadcast communications and began to focus on the Internet. He completed his graduate thesis on Internet advertising. Tom was the first student to ever focus on the Internet as a graduate student at San Francisco State University. After graduation he went to work for Zona Research in California’s Silicone Valley. As a research associate Tom supported senior analyst writing on the latest developments in the Internet industry. During the dot com boom Tom worked for several web businesses as a market researcher and analyst. As a writer and researcher Tom has authored various technical works including a training program for Charles Schwab security. Other projects included professional presentations on workplace violence and hiring security contractors. Tom has also written both fiction and non-fiction works and blogging for a travel website. He has published two books of short stories and completed two novels. Tom is the owner of Scribe of Life Literature and EbonyCandle.com. Tom is not the chief editor for the OnTechStreet. com. A news and information blog that focuses on tech news for African-Americans. The blog is the result of his desire to inform the African American community of the dangers and benefits of the cyber age. In his blog Tom reports on information security, new and analysis, scams and hoaxes, legal happenings and various topics that arise from the age of information. Tom believes that technology is a necessary tool for black people and they should know what is happening. Tom writes believing that techno speak is for the professional and that valuable information can be communicated using plain language. As a result he has embraced the motto, Less Tech, More Knowledge.

Comments are closed.