Digital Discourse / Archives for cybersecurity

SIIA Joins other Trade Groups in Supporting Cyber Legislation Introduced Today

February 13, 2013 By

Today, SIIA joined with other leading trade associations in support of the Cyber Intelligence Sharing and Protection Act (CISPA), bipartisan cybersecurity legislation introduced today by Reps. Mike Rogers (R-MI) and Dutch Ruppersberger (D-MD) to enhance sharing of cyber threat information between the public and private sectors.  Early detection and notification of cybersecurity threats is the most critical component of preventing and mitigating cyber-attacks. CISPA would establish a framework that enables the public and private sectors to work together in sharing information on known threats and vulnerabilities, and enactment of this legislation would increase security across the board.

Mark MacCarthy, Vice President, Public Policy at SIIA, directs SIIA’s public policy initiatives in the areas of intellectual property enforcement, information privacy, cybersecurity, cloud computing and the promotion of educational technology. Follow the SIIA Public Policy team on Twitter at @SIIAPolicy

Share|
Filed Under: Policy, Policy - Cybersecurity, Security, Software Tagged With: ,

SIIA Applauds Cybersecurity Commitment Announced in Tonight’s State of the Union Address

February 12, 2013 By

SIIA congratulates President Obama and his Administration for making cybersecurity a priority. We appreciate the President’s efforts to seek broad input in crafting the Executive Order signed today. We are particularly pleased that the Executive Order excludes commercial information technology products and consumer information technology services from the definition of ‘critical infrastructure at greatest risk.’ The Administration is clearly seeking to advance American innovation with this effort, however, the way in which the Order is implemented will be critical in determining its success or failure.

As we work with the Administration on implementation, a priority for our industry will be to avoid rigid regulations that impede the innovation that is essential for effective cybersecurity.

A regulatory approach seeking to cover a broad, rapidly-evolving cross-section of industry would have the unintended consequence of slowing technological innovation and limiting our collective cybersecurity preparedness. Therefore, it is essential that the Administration work with industry to implement the Executive Order in a way that retains necessary flexibility. Technological innovation must be allowed keep up with rapid developments pertaining to both cybersecurity threats and protections.

To that end, we look forward to continuing to work closely with the Administration and congressional leaders to implement this policy.

Ken WaschKen Wasch is President of SIIA. Follow the SIIA Policy team on Twitter at @SIIAPolicy.

Share|
Filed Under: Government, Policy, Policy - Cybersecurity, Security, Software Tagged With: , ,

Maintain Cybersecurity Spending

October 2, 2012 By

A recent article in Politico warned that cybersecurity could be a casualty of a sequester ax.  The problem is that without a change in course, the federal budget is headed for a uniform across the board reduction and that would include the multiple programs that carry out our nation’s responsibilities for protecting federal networks, staving off foreign cyber attacks and researching new technologies. As Politico put it: “Many of those initiatives would be hit hard by deep cuts beginning in 2013 unless Congress pushes back the target date for its legally mandated cuts, exempts some categories of spending or does away entirely with its fallback, deficit-reduction plans.”

And then the news hit that the White House itself had been the target of a cyber attack. Fortunately, this time, no classified systems were compromised and no data was extracted.  This time.

It is not often that events illustrate so vividly the risks to the nation in continuing an unacceptable compromise policy.  No one really wants a sequester, and no one really wants the consequences that would flow from one. Policymakers need to do what it takes to avoid it.

But failing that, the Administration should find a way to prioritize cyber security spending.  Congress did not agree on all aspects of the stalled cybersecurity legislation, but they did agree that more Federal funding for cyber security programs and research was an urgent national priority. Sequester planning should maintain that priority.

Mark MacCarthy, Vice President, Public Policy at SIIA, directs SIIA’s public policy initiatives in the areas of intellectual property enforcement, information privacy, cybersecurity, cloud computing and the promotion of educational technology. Follow the SIIA Public Policy team on Twitter at @SIIAPolicy

Share|
Filed Under: Policy, Policy - Cybersecurity Tagged With:

SIIA Applauds Passage of Cybersecurity Legislation in House

April 26, 2012 By

SIIA commends today’s House passage of the Cybersecurity Intelligence Sharing and Protection Act (CISPA, H.R. 3523). With cyber threats more sophisticated and targeted than ever, and growing at an unprecedented rate, now is the time to act on critical cybersecurity legislative priorities. We believe the top priority is to establish a framework that enables the public and private sectors to work together in sharing information on known threats and vulnerabilities. H.R. 3523 would accomplish the vital objective of early detection and notification of cybersecurity threats. This is the most critical component of preventing and mitigating attacks, and will increase security across the board.

As important as this bill is, information sharing is not alone enough to protect the nation’s cyber threats. SIIA continues to support quick passage of other key measures before the House to address the nation’s most pressing cybersecurity challenges, while preserving innovation. These measures include:

• HR 4257 to reform of Federal Information Security Management Act (FISMA),
• HR 2096 and HR 3834 to provide for additional cybersecurity R&D.

A strong and responsive cybersecurity system that doesn’t add burdensome regulation will make everyone more secure and keep our country at the forefront of tech innovation.

Ken WaschKen Wasch is President of SIIA.

Share|
Filed Under: Policy, Policy - Cybersecurity Tagged With: ,

SIIA DPR: Bills Lined-up for Cyber Week, SIIA Releases Education Interoperability Primer, and ICANN Continues to Postpone

April 24, 2012 By

Cyber Week Arrives With Slate of Legislation, Proposed Amendment to CISPA Ongoing
House Republican Leadership officially confirmed last Friday the four cybersecurity bills that will be considered this week. Consistent with expectations, those are: H.R. 2096 – Cybersecurity Enhancement Act, Rep. McCaul (R-TX), H.R. 3834 – Advancing America’s Networking and IT R&D Act, Rep. Hall (R-TX), H.R. 3523 – Cyber Intelligence Sharing and Protection Act, Rep. Rogers (R-MI) and H.R. 4257 – Federal Information Security Amendments Act, Rep. Issa (R-CA). Most of the activity is expected to take place on Thursday, with Rogers’ bill likely to be the most heavily debated. Members were provided until COB Tuesday to file amendments.

Last week, SIIA joined with several other leading technology trade groups in sending a letter in support for these measures. The outlook is still uncertain for two other cyber week hopefuls: Rep. Lungren’s (R-CA) H.R. 3674 -the Promoting and Enhancing Cybersecurity and Information Sharing Effectiveness Act, which saw a slimmed-down version pass the Homeland Security Committee last week, and the data security/breach notification legislation, H.R. 2577 – the Safe DATA Act, Rep. Bono Mack (R-CA). Committee staff shared publicly the latest discussion draft this afternoon, and Rep. Bono Mack is hopeful to advance the legislation through regular order in the coming weeks. So we can possibly expect that to be considered by the E&C Committee soon.

SIIA Releases Primer on K-20 Education Interoperability Standards
This week, SIIA officially released a “Primer on K-20 Education Interoperability Standards” that provides a framework for understanding interoperability standards that facilitate the exchange of information among educational systems and support the integration of content, data, and components from different technology applications. The importance of interoperability is highlighted in the pending initiative to develop online assessments aligned to the Common Core State Standards, funded with federal Race to the Top grants to the SBAC and PARCC state consortia, among other initiatives. The Primer is intended enable developers of educational applications and digital content to further understand how adoption of interoperability standards can advance both education goals as well as their own business needs, with the goal of helping to achieve a flexible, modular assessment technology architecture to meet evolving and unique state and local requirements.

ICANN Further Extends TLD Application Process
ICANN confirmed last week that continuing technical problems have further delayed the deadline for the submission of new gTLD applications. As a result, ICANN will not be in a position to reveal the new gTLD applications received on April 30, as previously scheduled. ICANN has recently said it “will provide an update on the timing of the reopening no later than Friday, 27 April,” and while no new date has been provided to reveal the list, ICANN has said that “the date when applied-for TLDs are announced will follow announcement of the application system re-opening date.” So stay tuned.

David LeDuc is Senior Director, Public Policy at SIIA. He focuses on e-commerce, privacy, cyber security, cloud computing, open standards, e-government and information policy.

Share|
Filed Under: Digital Policy Roundup, Policy Tagged With: , ,

SIIA Joins Call for Narrow, Bipartisan Cybersecurity Legislation

April 18, 2012 By

SIIA today announced its endorsement of three bipartisan measures to make improvements to cybersecurity. SIIA joined with the Information Technology Industry Council (ITI) and other trade associations representing a broad range of U.S. companies in a letter to Speaker John Boehner and Minority Leader Nany Pelosi supporting this major national security priority. The measures seek to bring to bear the resources of U.S. companies to protect personal information.

SIIA urges Congress to pass legislation on the following issues that would immediately enhance our cybersecurity posture:

• Improved information sharing through HR 3523;
• Reform of Federal Information Security Management Act (FISMA) through HR 4257;
• Additional cybersecurity R&D through HR 2096 and HR 3834.

Passing these bipartisan measures, which are expected to be taken up in the House of Representatives next week, will improve public and private cybersecurity infrastructure without adding unnecessary expense or bureaucracy.

SIIA has long called for a measured, collaborative approach to cybersecurity legislation in order to protect consumers while allowing companies to continue to innovate. These bills tackle important security issues without adding excessive regulation or bureaucracy that could stifle American technology leadership. They will allow industry to work closely with government to ensure aggressive security that is flexible enough to keep up with the speed and sophistication of today’s cyber attacks.

Ken WaschKen Wasch is President of SIIA.

Share|
Filed Under: Policy, Policy - Cybersecurity Tagged With:

Digital Policy Roundup: House Cyber Week Approaching, SCOTUS to Hear Key Textbook IP Case, and DOC Unveils IP Econ Report

April 17, 2012 By

Congress Returns, Next Week is House “Cyber Week”
With Congress back from the Easter recess, there is much activity ongoing for “cyber week,” beginning on April 23. During the week, several cybersecurity bills are expected to be brought to the House floor for a vote, including: H.R. 2096 – Cybersecurity Enhancement Act, Rep. McCaul (R-TX), H.R. 3834 – Advancing America’s Networking and IT R&D Act, Rep. Hall (R-TX), H.R. 3523 – Cyber Intelligence Sharing and Protection Act, Rogers (R-MI), H.R. 4257 – Federal Information Security Amendments Act, Issa (R-CA). In preparation for next week, Rep. Rogers continues to explore amendments to his legislation to address concerns raised by the civil liberties watchdogs, and the Homeland Security Committee is also scheduled to consider additional information sharing legislation Wednesday morning, H.R. 3674- Promoting and Enhancing Cybersecurity and Information Sharing Effectiveness Act, legislation that the bill’s sponsor, Rep. Lungren (R-CA) is seeking to have considered.

Supreme Court to Hear Key Textbook “First Sale” Copyright Case
This week, the Supreme Court decided to hear the copyright case of Kirtsaeng v. John Wiley & Sons Inc., a key case for SIIA members focused on whether the copyright law’s “first sale doctrine” applies when the copyrighted work–here a foreign edition of a textbook–is made and sold outside the United States and then imported into the United States. The case at issue involves a student from Thailand who attempted to subsidize his expenses by having friends and family members send him foreign editions of textbooks, which he would then sell online. If the Supreme Court affirms the lower courts by holding that the first sale defense does not apply, the unauthorized distribution and sale of a copyrighted work here would constitute a copyright infringement.

Department of Commerce Releases IP Economic Report
As we reported last week, on April 11, the Department released a report titled “Intellectual Property and the U.S. Economy: Industries in Focus,” which estimates the economic impact of IP related industries on the U.S. economy. The report, which was prepared by the Economics and Statistics Administration and the U.S. Patent and Trademark Office, was initiated as part of the Intellectual Property Enforcement Coordinator’s (IPEC) 2010 Joint Strategic Plan to create a comprehensive study to better understand the role of IP in the economy and to inform policy decisions related to IP enforcement. In response, SIIA issued a statement hailing the Report as evidence that IP is essential to the creation of American jobs and growth and underscores the critical importance of adequately protecting the software and digital content industries.

ICANN Extends Window for gTLD Applications
Last week, ICANN extended the window for submitting applications for new gTLDs from April 12 to April 20, because of a technical issue effecting the performance of the TLD Application System (TAS). April 30 remains the target date for ICANN to publish the applied-for new domain names, but this is subject to change.

Ninth Circuit Rules on Reach of CFAA
Last week, the Ninth Circuit Court, in US v. Nosal reached a decision in a highly-anticipated Computer Fraud and Abuse Act (CFAA) case, that Nosal’s acts did not violate the CFAA, concluding that the “plain language of the CFAA ‘target[s] the unauthorized procurement or alteration of information, not misuse or misappropriation’” and more significantly that “the CFAA does not extend to violations of use restrictions.” In the case, the U.S. brought criminal charges under the CFAA against a former employee for “exceed[ing] authorized access” to his former company’s computers for the purpose of obtaining and using company information in violation of the terms of the company’s computer use policy.

For SIIA policy updates including upcoming events, news and analysis, subscribe to SIIA’s weekly policy email newsletter, Digital Policy Roundup.

David LeDuc is Senior Director, Public Policy at SIIA. He focuses on e-commerce, privacy, cyber security, cloud computing, open standards, e-government and information policy.

Share|
Filed Under: Digital Policy Roundup, Policy Tagged With: , ,
« Older Posts