Network World - The second draft of a Senate cybersecurity billappears to tone down language that would grant President Obama the power to shut down the Internet.
The Senate bill, first introduced in April by Sen. John Rockefeller (D-W. Va.), still includes language that gives Obama the authority to direct responses to cyberattacks and declare a cyber emergency.
The bill also gives the president 180 days, as opposed to one year outlined in the bill's first draft, to implement a cybersecurity strategy from the day the bill is passed, which for now could be a long way off.
But the language in the first draft of the bill, which has yet to make it out of Rockefeller's Senate Committee on Commerce, Science, and Transportation and onto the Senate floor, has been rewritten regarding the President's authority to shut down both public and private networks including Internet traffic coming to and from compromised systems.
Critics contend sweeping presidential power isn't good news since private networks could be shut down by government order. In addition, those same networks could be subject to government mandated security standards and technical configurations.
The original bill included the words: "The President may....order the limitation or shutdown of Internet traffic to and from any compromised Federal government or United States critical infrastructure information system or network."
The second draft, which has not been released publicly, rearranges those words, according to text of the bill posted by CNet.
The second draft contains more convoluted language concerning the president's control over computer networks and deletes references to the Internet.
It qualifies his authority to include "strategic national interests involving compromised Federal Government or United States critical infrastructure information system or network," but says he may "direct the national response to the cyber threat" in coordination with "relevant industry sectors."
The reference to relevant industry sectors is new in the second draft.
The bill still includes language that would have the president directing the "timely restoration of the affected critical infrastructure information system or network."
Earlier this year, critics expressed concern over potentially giving the president power to tell private network operators when they could turn their systems back on after a cybersecurity threat.
Proponents, however, including officials from the Center for Strategic and International Studies (CSIS), are on record as saying the legislation is comprehensive and strong and reflects the need for thorough debate around digital security that is long overdue.
The original bill proposed by Rockefeller, and now co-sponsored by Evan Bayh (D-Ind.) Bill Nelson (D-Fla.) and Olympia Snowe (R-Maine), touched off a storm of debate over how much power the president should have to control the operation of "critical infrastructure."
Free Insider GuideCopyright © 1994 - 2013 Computerworld Inc. All rights reserved. Reproduction in whole or in part in any form or medium without express written permission of Computerworld Inc. is prohibited. Computerworld and Computerworld.com and the respective logos are trademarks of International Data Group Inc.
