Critical.
Authoritative.
Strategic.
Subscribe to CIO Magazine »

Critics and supporters respond as House clears CISPA cybersecurity bill

The U.S. House of Representatives Thursday evening passed a controversial cybersecurity bill that would facilitate sharing of information about critical threats among businesses and government bodies.

The bipartisan Cyber Intelligence Sharing and Protection Act, or CISPA, cleared the House by a vote of 248 to 168, though some privacy and civil-liberties groups object to the extent of the personal information that could be sent to secretive military agencies through the bill.

"CISPA goes too far for little reason," Michelle Richardson, legislative counsel for the American Civil Liberties Union, said in a statement responding to the bill's passage. "Cybersecurity does not have to mean abdication of Americans' online privacy. As we've seen repeatedly, once the government gets expansive national security authorities, there's no going back."

Backers of the bill have maintained that it would only provide for limited data collection and sharing, and a variety of amendments were adopted to further limit the scope of the legislation so that it would only cover specific cyber threats.

The bill faces an uncertain future in the Senate, where lawmakers have introduced a more comprehensive cybersecurity bill and a companion to the House legislation is awaiting consideration.

Backers of the House bill noted they have spent more than a year engaging with businesses, digital-rights groups and other concerned parties to fine-tune the language of the legislation in an effort to address the privacy concerns that created a groundswell of opposition.

"This bill does not allow the wholesale violation of privacy rights," Rep. C.A. "Dutch" Ruppersberger (D-Md.), one of the authors of the bill, said in remarks on the House floor.

The version of the bill that cleared the House on Thursday included a number of changes intended to address the concerns that privacy groups had raised, including an amendment stipulating that government agencies could only obtain information from private-sector entities explicitly relating to cyber attacks, national security or other narrowly defined threats.

The Center for Democracy and Technology, one of the outside groups that had been extensively involved with the legislative process, had negotiated a number of changes to the original bill that seemed to indicate a broadening of support earlier in the week, but the group has since pulled back, and blasted the version of the bill that passed on Thursday.

"We worked very hard in cooperation with the Intelligence Committee to develop amendments to narrow some of the bill's definitions and to limit its scope. We are very pleased that those amendments were adopted, leaving the bill better for privacy and civil liberties than it was going into the process," CDT said in a statement."

"However, we are also disappointed that House leadership chose to block amendments on two core issues we had long identified -- the flow of information from the private sector directly to [National Security Agency] and the use of that information for national security purposes unrelated to cybersecurity."

The CDT indicated that it would work to advance its privacy agenda if the CISPA counterpart should gain traction in the Senate.

Kenneth Corbin is a Washington, D.C.-based writer who covers government and regulatory issues for CIO.com.

Read more about government in CIO's Government Drilldown.

Related Articles

  1. CMO interview: Becoming a change agent

    CMO

Join the CIO Australia group on LinkedIn. The group is open to CIOs, IT Directors, COOs, CTOs and senior IT managers.

More about: CDT, National Security Agency, Technology
References show all
Comments are now closed.
Related Whitepapers
Latest Stories
Community Comments
Latest Blog Posts
Whitepapers
  • Building Maturity and Experience in Successful Virtualisation Strategies
    Current trends in the adaption and deployment of virtualisation suggest that as an organisation gains experience, each implementation requires a different technique. A stratified approach to a company’s long-term virtualisation and cloud computing strategy allows the right skills set to be built alongside the resolution of each scale and complexity issue presented. Read more to understanding where you are and how you can compare for the future.
    Learn more »
  • IDC: Delivering Customer Value with Enterprise Flash Deployments
    When it comes to flash, “one size does not fit all.” IDC examines recent flash trends in enterprise storage deployments. This includes: highlighting how SSDs are filling in gaps of existing storage systems when coupled with intelligent archiving and automated tiering, the pros and cons of different SSD approaches, and tips to overcome concerns of reliability, manageability and scalability.
    Learn more »
  • Leading Through Connections – Insights from the Global Chief Executive Officer Study
    IBM’s 2012 Global CEO study follows face-to-face discussions with more than 1,700 CEOs and senior public sector leaders from around the globe. The findings examine how CEOs are responding to the complexity of increasingly interconnected organisations, markets, societies and governments. For example, almost one-quarter of CEOs say their organisations operate below par in terms of driving value from data. CEOs have expressed frustration about their inability to capitalise on available information. This is because: “The time available to capture, interpret and act on information is getting shorter and shorter.” CEO, Chemicals and Petroleum, United States Given the need for deeper business insight, the best performing organisations are more adept at converting complex data into insights, and insights into action. Download Entire Report Now.
    Learn more »
All whitepapers
rhs_login_lockGet exclusive access to Invitation only events CIO, reports & analysis.
Recent comments