Senate Finally Gets Around To Drafting A Cybersecurity Bill

    July 11, 2013
    Zach Walton
    Comments are off for this post.

Earlier this year, the House proved yet again that it doesn’t care about your privacy by passing CISPA. The controversial cybersecurity bill would let the government and private companies easily share information to counter cyber threats. Now the Senate has finally gotten around to drafting its own legislation, but it’s nothing like CISPA. It’s not like it matters though.

The Hill reports that the Senate Commerce, Science and Transportation Committee has drafted a bill that would address the nation’s lack of cybersecurity standards.

So, who would be creating these standards? As it stands, the bill tasks the National Institute of Standards and Technology to create “voluntary cybersecurity standards and best practices for critical infrastructure, such as banks and power plants.”

The bill doesn’t stop there, however, as it would also help improve research and education relating to cybersecurity. The latter is especially important as many people still aren’t aware of just how much malware is on the Web.

As you can see, the proposed bill contains nothing about information sharing. That doesn’t mean the Senate doesn’t want to pass its own version of CISPA though. Sen. Jay Rockefeller, who just so happens to be the chairman of the Committee for Commerce, Science and Transportation, says he would support legislation that enabled information sharing. That won’t come until later down the road, however, and the Senate bill will probably once again look different from the House’s CISPA.

It should be noted that bills like CISPA and CSA are actually kind of pointless. We now know that the NSA is collecting information on foreign threats and Americans alike through programs like PRISM. Leaked documents have also shown that the data collected by the agency can be used for cybersecurity purposes. Kind of makes the White House’s response to CISPA seem a little disingenuous in light of recent statements from the administration.

But I digress, cybersecurity standards are incredibly important, and its encouraging to see the Senate only make them voluntary. It’s not like I don’t have faith in the National Institute for Standards and Technology, but mandatory standards are rarely a good thing when it comes to technology. The ever changing nature of it requires people that actually know what they’re doing to apply new standards as new threats emerge.

  • Name

    Go out to the internet and download a trial keylogger then install it on your computer. Use your computer for a day as you normally would and then review all the logs and data collected by the keylogger software. It collects EVERYTHING. Every password, every email, every mouse click, every screen you looked at, every application you open, every account number. In short, it collects your life.

    Now imagine that data in the wrong hands. Where it can be manipulated, analyzed, taken out of context, or outright altered.

    Anyone with that information could destroy you in a day. All they have to do is send some altered information with some real information to the police and you will be arrested for anything. Try proving your innocence in a court of law. It is much harder than you think.

    Think it can’t happen? Crazy vigilantes are setting people up on the internet as we speak … people they don’t even know and who live thousands of miles away. Those vigilantes alter chat conversations, go to the police, and don’t turn over the computers they use to entrap people.