In our continuing effort to maintain and expand the partnership between the private sector and the government to address our nation’s cybersecurity challenges, SIIA submitted comments to the Department of Commerce on Monday in response to their recent Green Paper on Cybersecurity, Innovation and the Internet Economy.
At the heart of the Green Paper is an effort to help define the roles of the Government and the private sector in combating cybersecurity threats and protecting the systems and networks that support the infrastructure that drives the nation’s economy. In our comments, SIIA offered strong support for the Department’s approach of looking toward voluntary codes of conduct for an innovative sector such as the Internet and Information Innovation Sector (I3S). We noted that the most critical element of achieving these goals is to resist an approach that is overly-prescriptive, where mandates would have the adverse effect of slowing the development of standards in the private sector, or the unintended effect of putting U.S. companies at a disadvantage to their counterparts around the world. Given the broad, rapidly-evolving cross-section of industry that comprises the I3S, a flexible industry-led approach is the correct best path forward to achieve an ideal security framework, rather than a regulatory model.
SIIA also noted that while the primary purpose of the Green Paper is to discuss an area that is outside of the critical infrastructure segment, and to bolster security in this area, this exercise can also help to appropriately define the critical framework of what is “covered critical infrastructure,” and it can help to avoid confusion and appropriately allocate resources where they are most needed.
For SIIA policy updates including upcoming events, news and analysis, subscribe to SIIA’s weekly policy email newsletter, Digital Policy Roundup.