White House raises concerns over CISPA bill
Information sharing without privacy safeguards is a problem, National Security Council spokeswoman says
Computerworld - The White House joined the growing chorus of voices expressing concern over the proposed Cyber Intelligence Sharing and Protection Act (CISPA) legislation that is scheduled for a vote in the U.S. House of Representatives next week.
The bill would allow Internet service providers and Internet companies such as Google and Facebook to collect and share a wide range of user data with the government. Privacy and civil rights groups have blasted the bill , saying it would dismantle privacy protections and enable unprecedented surveillance of online activities under the pretext of cybersecurity.
Any cybersecurity legislation should include strong privacy protections, The Hill quoted Hayden as saying. "The nation's critical infrastructure cyber vulnerabilities will not be addressed by information sharing alone," she said in apparent reference to CISPA.
"Also, while information sharing legislation is an essential component of comprehensive legislation to address critical infrastructure risks, information sharing provisions must include robust safeguards to preserve the privacy and civil liberties of our citizens," Hayden is quoted as saying. "Legislation without new authorities to address our nation's critical infrastructure vulnerabilities, or legislation that would sacrifice the privacy of our citizens in the name of security, will not meet our nation's urgent needs."
Though the statement did not mention CISPA by name, Hayden's references to "information sharing" make clear that she is referring to CISPA because that is the only bill under consideration that calls for extensive sharing of information between the private sector and the government.
The White House's comments add to the crescendo of voices that are calling for CISPA to be stopped or seriously amended. U.S. Reps. Mike Rogers (R-Mich.) and Dutch Ruppersberger (D-Md.) introduced CISPA in the House in November.
The bill is designed to help improve cybersecurity by allowing Internet companies to monitor and collect any information on users that they think might pose a threat to their networks or systems.
Rights groups such as the American Civil Liberties Union, the Electronic Frontier Foundation and the Center for Democracy and Technology maintain that CISPA's ambiguous wording can cause serious problems.
For instance, there's nothing in the language of the bill that would prohibit companies from monitoring private email messages, chat messages and Facebook postings simply by claiming a cybersecurity purpose to the monitoring. They can then share that information with any other entity, including the Department of Homeland Security and the National Security Agency, without judicial oversight. The bill affords Internet companies a great deal of immunity for conducting such information monitoring and sharing.
- 15 Non-Certified IT Skills Growing in Demand
- How 19 Tech Titans Target Healthcare
- Twitter Suffering From Growing Pains (and Facebook Comparisons)
- Agile Comes to Data Integration
- Slideshow: 7 security mistakes people make with their mobile device
- iOS vs. Android: Which is more secure?
- 11 sure signs you've been hacked
Changing the Way Government Works: Four Technology Trends that Drive Down Costs and Increase Productivity
This paper discusses four technology-based approaches to improving processes and increasing
productivity while driving down department and agency costs.
- Mobile Policy Checklist Here's what to consider when putting together a mobile policy designed to support a highly productive workforce.
- Mobile Applications Case Study: 8 Billion Transactions a Day The story documents how the online brokerage company tradeMONSTER created a custom mobile app and the success gleaned from this initiative. Also covered...
- Who's afraid of the big (data) bad wolf? Survive the big data storm by getting ahead of integration and governance functional requirements This paper provides a detailed review of the best practices clients should consider before embarking on their big data integration projects.
- Mobile Apps and Devices Slash Customer Cycle Time Consolidated Engineering Laboratories' field employees used to collect data on triplicate forms that were sometimes hard to read and difficult to manage. After...
- Cloud Knowledge Vault Learn how your organization can benefit from the scalability, flexibility, and performance that the cloud offers through the short videos and other resources... All Gov't Legislation/Regulation White Papers | Webcasts