Posts Tagged ‘Cybersecurity’
FCC Advisory Council Announces Cybersecurity Recommendations
Posted on March 23, 2012The FCC’s Communications, Security, Reliability, and Interoperability Council (CSRIC) has adopted and announced its recommendations for voluntary action by Internet service providers (ISPs) to combat major cyber security threats. CSRIC is a federal advisory committee that provides recommendations regarding the security, reliability, and interoperability of the nation’s communications system. CSRIC endorsed industry-based recommendations in each of three cybersecurity areas, including (i) a voluntary U.S. Anti-Bot Code of Conduct for Internet Service Providers to reduce the threat of botnets in residential networks; (ii) Domain Name System best practices to combat spoofing, which can allow Internet criminals to fraudulently obtain credit card numbers and personal data from users; and (iii) an industry framework to prevent Internet route hijacking, which is the erroneous routing of Internet traffic through potentially untrustworthy networks.
Cybersecurity Act of 2012 Introduced
Posted on February 17, 2012Senator Joe Lieberman (I-CT) has introduced legislation that would give the U.S. Department of Homeland Security the power to regulate the security measures of critical infrastructure companies, such as power, telecommunications, and water companies. The bill, entitled the Cybersecurity Act of 2012, would require these companies to take adequate precautions to safeguard their computer systems and would enhance the ability of the private sector and the federal government to share cyber threat information. The bill is pending on the Senate Legislative Calendar.
Feinstein Introduces Cybersecurity Sharing Legislation in Senate
Posted on February 16, 2012Senator Dianne Feinstein (D-CA) has introduced the Cybersecurity Information Sharing Act of 2012, which seeks to offer increased authority for the sharing of cyber-threat information and facilitate the sharing of cybersecurity information by private entities with each other and the federal government. The bill would require the establishment of a federal “cybersecurity exchange” to serve as a hub for sharing cyber-threat information and establish various procedures for private sector companies and the federal government to securely share and receive classified cybersecurity threat information. The proposed legislation is similar to previous bills introduced in the House.
GAO Recommends Steps for Sector-Specific Cybersecurity Guidance
Posted on January 17, 2012The U.S. Government Accountability Office (GAO) has issued a report recommending that the Secretary of the Department of Homeland Security (DHS), in collaboration with various private sector partners for seven critical infrastructure sectors, determine whether it is appropriate to have key cybersecurity guidance listed in sector plans. The sectors reviewed by GAO include banking and finance; communications; energy; health care and public health; information technology; nuclear reactors, material, and waste; and water. According to the report, federal policy generally establishes and promotes cybersecurity-related standards and guidance, but DHS and the other sector-specific agencies have not identified the key cybersecurity guidance applicable to or widely used in each of their respective critical infrastructure sectors.
New Bill Encourages Cybersecurity Information Sharing with Homeland Security Oversight
Posted on December 19, 2011Representatives Peter T. King (R-NY), Chairman of the Committee on Homeland Security, Dan Lungren (R-CA) and several others have introduced a new cybersecurity bill in the House. The Promoting and Enhancing Cybersecurity and Information Sharing Effectiveness Act of 2011 (PrECISE Act) would articulate the cybersecurity authority of the Department of Homeland Security (DHS) and require DHS to (i) conduct an evaluation of cybersecurity risks to critical infrastructure and (ii) determine the best mitigation methods. The bill also would establish the National Information Sharing Organization (NISO), a private-sector-controlled, not-for-profit organization to facilitate best practices, provide technical assistance, and enable the sharing of cyberthreat information across critical infrastructure and with the federal government. A similar House bill encouraging the sharing of cyber threat intelligence and information recently passed the House Intelligence Committee. The PrECISE Act has been referred to several House committees.
House Committee Passes Cybersecurity Sharing Bill
Posted on December 8, 2011A bill recently introduced in the House by Representatives Mike J. Rogers (R-MI) and Dutch Ruppersberger (D-MD) has passed the House Intelligence Committee. The bill, known as the Cyber Intelligence Sharing and Protection Act (H.R. 3523), would provide for the sharing of cyber threat intelligence and information, including certain classified information, between the federal government and certain approved private sector entities. The bill is intended to help American businesses expand their cyber defense efforts to better protect themselves and customers from hackers. While pending before the House Intelligence Committee, the bill was passed with two amendments enhancing privacy protections and adding Congressional review over information shared by the private sector with the government.