Yay, Let's sacrifice cybersecurity for increased shareholder value!

Started by CountDeMoney, April 23, 2012, 12:32:40 AM

Previous topic - Next topic

CountDeMoney

QuoteHouse gears up for 'cyber week,' but security bill's fate rests with Senate
By Brendan Sasso - 04/21/12
www.thehill.com

The House is set to vote on a host of cybersecurity bills next week, but the fate of the legislation rests in the Senate.

The House is expected to approve the Cyber Intelligence Sharing and Protection Act (CISPA), which would tear down legal barriers that discourage companies from sharing data about cyber attacks.

The goal of the legislation is to help companies beef up their defenses against hackers who steal business secrets, rob customers' financial information and wreak havoc on computer systems.

CISPA, sponsored by Reps. Mike Rogers (R-Mich.) and Dutch Ruppersberger (D-Md.), has more than 100 co-sponsors.

But the White House and Senate Democrats argue CISPA is inadequate.

They say any cybersecurity legislation should include tougher privacy protections and should require critical infrastructure systems to meet minimum security standards.

"Legislation without new authorities to address our nation's critical infrastructure vulnerabilities, or legislation that would sacrifice the privacy of our citizens in the name of security, will not meet our nation's urgent needs," White House National Security Council spokeswoman Caitlin Hayden said, without explicitly mentioning CISPA.

The White House has endorsed a cybersecurity bill from Sens. Joe Lieberman (I-Conn.) and Susan Collins (R-Maine) that would empower the Homeland Security Department to set mandatory security standards for critical systems, such as electrical grids or chemical plants.

A Democratic aide said the Lieberman-Collins bill is a "priority" for Senate Majority Leader Harry Reid (D-Nev.) and "we expect to take up the legislation in the next few weeks."

But it is unclear whether there are enough votes in the Senate to pass the bill.

Sen. John McCain (R-Ariz.) is rallying opposition to the measure and has introduced his own alternative bill, the Secure IT Act. Like CISPA, Secure IT focuses only on voluntary information-sharing about cyber threats.

The bill has attracted seven GOP co-sponsors. 

McCain argued Lieberman-Collins would impose regulations that "would stymie job creation, blur the definition of private property rights and divert resources from actual cybersecurity to compliance with government mandates."

The powerful U.S. Chamber of Commerce is also lobbying against the Lieberman-Collins bill. Companies that could be classified as critical infrastructure, such as banks, telecom companies, wireless carriers and electrical companies, are skeptical of new government regulations.

But the bill has the support of figures in the national security community including Joint Chiefs of Staff Chairman Martin Dempsey and former Homeland Security Secretary Michael Chertoff.

Chertoff, who served under President George W. Bush, argued free market pressures will not be enough to protect critical systems.

"Left to their own devices, few private companies would invest more in securing their cyber assets than the actual value of those assets," he said earlier this year. "Yet in an interconnected and interdependent world, the failure of one part of the network can have devastating collateral and cascading effects across a wide range of physical, economic and social systems."

Heavyweights from the administration, including Homeland Security Secretary Janet Napolitano, FBI Director Robert Mueller and National Security Agency Director Keith Alexander, were dispatched to Capitol Hill to emphasize the threats facing critical infrastructure.

But the House GOP leadership has indicated they will not bring any bill to the floor that includes new regulations.

CISPA-sponsor Rogers said he has already had discussions with Senate Democrats about moving forward with the information-sharing provisions if their effort to pass the regulatory piece fails.

If the Senate manages to approve the critical infrastructure provisions, and the House passes CISPA, lawmakers would have to negotiate the differences in a conference committee.

Typical.

Ideologue

Quote"Left to their own devices, few private companies would invest more in securing their cyber assets than the actual value of those assets," he said earlier this year. "Yet in an interconnected and interdependent world, the failure of one part of the network can have devastating collateral and cascading effects across a wide range of physical, economic and social systems."

Does private companies fighting negligence class actions ranging in the billions of dollars increase shareholder value?  Well, it increases my ability to secure contract work, so work your libertard magic, you old fool!
Kinemalogue
Current reviews: The 'Burbs (9/10); Gremlins 2: The New Batch (9/10); John Wick: Chapter 2 (9/10); A Cure For Wellness (4/10)

Jaron

What's the deal with CISPA anyway? Why are people all up in arms about it like they were with SOPA?
Winner of THE grumbler point.

CountDeMoney

Quote from: Jaron on April 23, 2012, 01:17:27 AM
What's the deal with CISPA anyway? Why are people all up in arms about it like they were with SOPA?

Because it would require regulations, standards and enforce achievable metrics.  And TEH JOB CREATERS hate that stuff.

Admiral Yi

Power lines go down all the time.  I've not noticed much in the way of devestating collateral whatevers.

Neil

Quote from: Admiral Yi on April 23, 2012, 07:29:18 AM
Power lines go down all the time.  I've not noticed much in the way of devestating collateral whatevers.
The ice storm back in the day was pretty damaging.
I do not hate you, nor do I love you, but you are made out of atoms which I can use for something else.

Maximus

Quote from: Jaron on April 23, 2012, 01:17:27 AM
What's the deal with CISPA anyway? Why are people all up in arms about it like they were with SOPA?
Basically that it overrides existing privacy laws and doesn't have sufficient safeguards of its own. There's a pretty good rundown here:

http://www.wired.com/threatlevel/2012/04/opinion-meeks-cispa-cyber/?utm_source=feedburner&utm_medium=feed&utm_campaign=Feed:%20wired/index%20(Wired:%20Index%203%20(Top%20Stories%202))

grumbler

Quote from: Jaron on April 23, 2012, 01:17:27 AM
What's the deal with CISPA anyway? Why are people all up in arms about it like they were with SOPA?

I don't think people are up in arms about it.  There is debate as to whether it is adequate, but I find few people who think that it is actively harmful.  Those who do are mostly arguing from a boogieman stance:  suppose the NSA (!!!111oneoneone) gets a hold of information about individuals!
The future is all around us, waiting, in moments of transition, to be born in moments of revelation. No one knows the shape of that future or where it will take us. We know only that it is always born in pain.   -G'Kar

Bayraktar!

Razgovory

Quote from: Neil on April 23, 2012, 07:33:28 AM
Quote from: Admiral Yi on April 23, 2012, 07:29:18 AM
Power lines go down all the time.  I've not noticed much in the way of devestating collateral whatevers.
The ice storm back in the day was pretty damaging.

I was very cold when the power was out for three days.
I've given it serious thought. I must scorn the ways of my family, and seek a Japanese woman to yield me my progeny. He shall live in the lands of the east, and be well tutored in his sacred trust to weave the best traditions of Japan and the Sacred South together, until such time as he (or, indeed his house, which will periodically require infusion of both Southern and Japanese bloodlines of note) can deliver to the South it's independence, either in this world or in space.  -Lettow April of 2011

Raz is right. -MadImmortalMan March of 2017