|
|
|
Bill Would Grant President Unprecedented Cyber-security Powers
By: Roy Mark
2009-04-02
Article Rating: / 88
There are 84 user comments on this Network Security & Hardware story.
The Cybersecurity Act of 2009 introduced in the Senate would allow the president to shut down private Internet networks. The legislation also calls for the government to have the authority to demand security data from private networks without regard to any provision of law, regulation, rule or policy restricting such access.The headlines were all about creating a national
cyber-security czar reporting directly to the president, but the Cybersecurity
Act of 2009 introduced April 1 in the U.S. Senate would also give the president
unprecedented authority over private-sector Internet services, applications and
software.
According to the bill's language, the president would have broad authority to
designate various private networks as a "critical infrastructure system or
network" and, with no other review, "may declare a cyber-security
emergency and order the limitation or shutdown of Internet traffic to and from"
the designated the private-sector system or network.
The 51-page bill does not define what private sector networks would be
considered critical to the nation's security, but the Center for Democracy and
Technology fears it could include communications networks in addition to the
more traditional security concerns over the financial and transportation
networks and the electrical grid.
"I'd be very surprised if it doesn't include communications systems, which
are certainly critical infrastructure," CDT
General Counsel Greg Nojeim told eWEEK. "The president would decide not
only what is critical infrastructure but also what is an emergency."
The bill would also impose mandates for designated private networks and
systems, including standardized security software, testing, licensing and
certification of cyber-security professionals.
"Requiring firms to get government approval for new software would hamper
innovation and would have a negative effect on security," Nojeim said. "If
everyone builds to the same standard and the bad guys know those standards it
makes it easier for the bad guys."
The legislation also calls for a public-private clearinghouse for cyber-threats
and vulnerability information under Department of Commerce authority. The
Secretary of Commerce would have the authority to access "all relevant
data concerning such networks without regard to any provision of law,
regulation, rule or policy restricting such access."
In another section of the bill, though, the president is required to report to
Congress on the feasibility of an identity management and authentication
program "with appropriate civil liberties and privacy protections."
Nojeim complained the bill is "not only vague but also broad. Its very
broad language is intended to confer broad powers." Nojeim also speculated
that the bill's vague language and authority may prove to be powerful incentive
for the private sector to improve its cyber-security measures.
"The bill will encourage private-sector solutions to make the more
troubling sections of the bill unnecessary," he said.
According to a number of media reports, the bill was crafted with the
cooperation of the White House. The legislation aims to create a fully
integrated, coordinated public-private partnership on cyber-security in
addition to pushing for innovation and creativity in cyber-security solutions.
"We must protect our critical infrastructure at all costsfrom our water
to our electricity, to banking, traffic lights and electronic health recordsthe
list goes on," Sen. Jay Rockefeller (D-W.Va.), bill co-sponsor, said in a
statement. "It's an understatement to say that cyber-security is one of
the most important issues we face; the increasingly connected nature of our
lives only amplifies our vulnerability to cyber-attacks and we must act now."
Fellow co-sponsor Sen. Olympia Snowe (R-Maine) added, "America's vulnerability to massive cyber-crime, global
cyber-espionage and cyber-attacks has emerged as one of the most urgent
national security problems facing our country today. Importantly, this
legislation loosely parallels the recommendations in the CSIS [Center for
Strategic and International Studies] blue-ribbon panel report to President
Obama and has been embraced by a number of industry and government thought
leaders."
The CDT's Nojeim stressed that are a "number of good things in
the bill," including creation of a cyber-security czar, scholarships for
cyber-security programs and collaborations between the government and the
private sector. While urging Congress to change the bill, he argued that the "problematic
provisions shouldn't crowd out the beneficial provisions of the bill."
 |
|
|
�������x}ks6j�܍gHR%ڑ,�gRJ"!1EjIʏ͟8_N?q��d{&=3m��@_h4��wp{I"�G3L{J(9;ȣKLz��I��|;_�CiZF!c5[2D-4� �a�5˜ڵNm:��p��Xwd�>J�`OS�Su��53ߙ)\v(smJ=�FԜ��\�3�e�ęb�>�I���G2�"&Inp"Z|gqL~rD]<�ϱL�-: O�ۗ<7*�UƎ;spSf_��B.�k4ދ��Ʉ(QG[ad��_i@AUw0vK�xLƖ�N-G ȓ�-CUl<�t�ie23!!k߮R�z$fPrN4Cd jI$:
�`IT�1܋�HЇ�@oX�S*VPTf&ܴ;kj�4[kN�cc{K
20}C�H
�\?Z��Q��N�k�4G)Fn�y�y�?.�cU4g0mm_Kk|�5v:K8&Kz3z�x����K.�м�/�Tw\7�;��tR`_eY3�[~/퉪�U˝˅R5W?Wm8e��U[ֺyˠ+)Ue?C|���q7�[}��om1>xMSj�>
zCrt
�`'H�|'k;oD�\���R)?ljȃ¤Tf�j�W i�f�%ðoPKPͫ9D\*'zZżpM"J0zĢ(*�iu:l/հuݿn�Zd:M\�"BN3��ы�E9ԑ>B�Bp4@�H�!eݴ%��aMmwQ-+EY�\Uɝ�b�(7Z`Lm�,��1,/P7D[Z~V��?-�@5tis�'|N
s95ێ=
X�C!ʠ��ڴb{\ꗦ3�4!!�&
s&l`n�x"(Ab@��oΩe*D�m�q=�&6��lz�d�(4(s.ɹw[P&w&�zeZl
�Kc�ˋ�&`��Vz�����2/?뇶�f|xu�ңP�}L�Z{0`sokwiic���q)��jÐx?��1
W�)@&.$�"D% �
h��4�Af꧰�E|ENN�l�bo(&w$]��q+Xdz"��B�I�gꌔbX@;7҄B��Z
z)�3��eVPI�]7-&D7rB��.G��7Kᅖ.V;oZx�
Y7>г��7~ZATM��0�t�ΏE=kb�$`~��
:w'Nu?RUOf[Zl{In^u 9bH]֕6�P#� ��R5W�V}[a 5
E�A
n29aZV6�X.}�i^'xTRS�v;rl=5'&5yot��..�*نhp�3NjФ0W�2`a��OBU*A3T�&�.xd\4�8�(�V,'`#��TWc=�f.,E༵IW
iؑ~1't4_Z#�V!0�8xpD30`NLzji=nC-f=�1���hfoAdX*�1)6�D�ȸau-`b�ʙ8ܧc�]WָqH8b�1H��`w�7mX87̆CBY)��FH�y�
s/;4/_149 _Fş�uFm�B+�p��&�L6Ek�wYشJ喺q8SJ�REe�xr�Q'&�;AlKSO=pA}�MY����0H$�/`k��@0 !;�D(r>��TQ)1.#_,��ZE`P�Gܜwт.�[k+}4Ӥ-�h0 �5-"�
qa�������#N~��
O]'kj}5��2J^aֲݬ`j��[D
zL�È{�qĆ�Z
jYMfv�r?,pߎ�XA�m%k+sD
�ü�
�|3�3JјljwjMа6�E�LZ�[t3up]oF75_E�S7/ƹ�<�sƅ~�B�OF{yG �q?n2066N�m/��[1�Fd&�T~�!] [32Pߙ}lm�?`,v_�+`jlu
2�`�9z{⧚~\͟M`ٜܶ
W/AD�9 ^%L��ɹ%w��B��Zo^T0pb2ݬ+@Wj>L3�թ�4D6�K����q�qv=j1x�-'y��]S�n:s\��(R+HA�ei,Lݓ?Eq&ݑ-*JnDˈG�dd!W)��V�C�i@/��uM��Xo� h
kz��4CoeE��LHjʋ$|p`��
N���@W�QT:LJ=x�mO5}Ouk'x4Hđ
ʝ?59ʑfUR#r,
Z��ۖR/��s�i�0F\�0|R(U��]ʢ'�r�M7Y��_)r|�vI�*�s>P��|�Oo
-"P{
a�V*{3�7x^&R@c+#I ���F�Q��8x��5/��-�1Ήn!A�ߞ&O!(0�H_d`Cm9$\�auv�>g�
+f[q.7+�uuM9<&ymSy|:A�#~l/8
v�\�0(^).��~_k\0š�HfcR~?7~h�k0NEइg
�q[f#u�I1?x��S19K�OH��/p�𣧻��"Tc�(LàvH)fT�xi'y�0:&s�8@.ѝB,8"s?Ic6�vYԺY�[&�ϙ#dE��2%Ʌ(��=)!�I8'*8JU42�eI?�Mx4㓈PVl
Hɂ��j�c�}g�.iw/n�_")#�N&8v�\' G �q�0l5:"�,Gw��D!AFcrUB�=R%{ݛ&�h�gIs ���۰q�;eΫ� P|e���v�,N�Փ�W#3l;xVul�kd@Tg�]��Z#zlm�H{OG,Aik8�n�;e�/PZZĩUrc�Sg,*5fX%�k5!f\�I�09m~%yH|O�o4yY�s�6y��O>O�4dkwT�7-��9!gM[M�v�z-ړ%̆-ÿ�^:CAwl'-JUZ憎yB�P�?Fv�'c:
I"�IVQԬ+yUdE)IW�99��GG#�~`q8-8���&nu�o�ꧥ�wDMZ4gP:Y:fvu[qƿe�#7o�y�xY<�07?jW;dpw.ߕ#
#z+!+-R!UkE��7_cU+��םyy�J
ГE����B��ãC���&bi8W3ZTfȵ5'|Ȟc�ԲǶ&z#XȌ2?�zokA[ɰ-�DΙ� x� �<
v2�..߯;���^ "B�;DJ��<[N->[4��R�UCf��m�k-ì
,gi��pqNԱ�Q*_��2%;h�ߕ�ŗcݘ3w�cpKV�*��ΒK0k(p!$�qN�M{fr+��p)?8��x̻+VD��86[b�?3| |�wxtnڰJ;~|K598s+9.
(9ʇb|ذ,rC5�õ9&fQx�d& rLc�^_�"'sr&�WE7
=6Y�sKb.VA�MAA"P2+u�LV&�2<~uVN)&#+w2�@-V�� 5_�2@ ,��Cǝ##(}�ML@'4^/j!iЕmYq��� פBӚPhIp���p?׆�.(�cO0J*�0j��Zs,�
nj/�ᕏ>�:,=B@$^?xD
^\E=䟷 �T�A�;9v=8/WJ?<�XTJ$_-�K\Dߞ : 2uL�D\C$RPP��"�eA�lZ�·,ng[G,3>͜L�<��
�|eO,#��;QF|qc㢜�A-&\-T|3y�!ڬAZ"~×�����3h#��o��`PjwEjb9M�ۻI��y#��?Ob@1AY9&L.�Xֶ
Ԅ~M'��Sh�|}�'\>��=�]wx�A*D�+1�m�l6�k6H
nK^m���a%Uͥ2W�]a_p)�C�\E+oRHW}u탵75Kj�A/gro�\b~N@�^*bBb
ơ�*ypʠ�*{J u�Yh?}*].D�#x9#K�iH�Iz���Ls$��`bxR�ψWS0h&�6DxCc+jB%E�skAڗ�@ٻuɚ
)�`,-�z1/BY杦?JJUUK�]�H�0$I�̯P���}w%Jd"��eϵ[6NzI¾ڗN5[T+B[��@�����@|�a�#~z'I�")]B٩ޚ�6IդK0V,�rB*j>m@Jp�1A���%�%��AA�/=C�x(:
g(�sX�aIəH>�sy�&�IKB
5 �l��$�E{�=/@I>�۪�Y�JxWW[�X N,+9999=�ܘ�H�e�p{;o>J/ Ғx]nDc| 0.5�C.,2��G"x#�<�UۮomޢƔ_Fݿ"by&V~uGR?3e1-[i�[��s�11x$x]PB);s�)|
/�dwr�,KG��OxD)Ȍ��d�E�Լt�`q�h71�F80}=HZ!}R{;g�Dqu4-:LG&&;�s.
NTA:�*P$�P%�롮
]=�5��ؑ^I�9I7MOpMu��pa/~�`�Q8�ʜN_�&R>�IݓV⪠��}�ylY
0�)O
=>Ch"X-�ܰC���V�0;R{[�ۭ�q-Cg);ӠxlE�/5ͺ��0�K¢�^i(嫕r%B�C oF o4T&e�4JX$j`h�oN.kKό�kCe.f̅r!u1m��7�Q:}},��l��X1f�(c��S"�\e
�_
_˛�#uc8o}w3�_:w\���b$�0G"0��!���Y�b�N+"#�s=_
py^�&L�'cqa;-�^Ȃ�{qO/8�|]p:�?�v�cä}u�Y�1Y�=ϯ#�<:{�g0��շ|~_S4z:`Kg3Ͳ=)�9�$�sߦ̷a$
��p^�^�"qƁ�ua� "-\`_|ސc,}5.ci ��P3x`&GMdS(H�O;hg�|�wP#?;^��{▯�g����kB�*�_<��Î<��gv��XoM|͆P!Lj..�kaN($;5锹൙$#y{�wi�S`�Wݱ:ư9�/
բ]m dUooȲ.Zx-۴RkPSW=6CۥiyLy4�zl/���LVTˬ�[�Q1
ƹɜ3N!�53�xR�(YZB GM7z6�n">8^COv0+ǠG+t~xt؇�k�;4䠨x|MR__NS'Xܷ(9.̫�wV꿓�$~nr`'
Vn8bd=�Dw߁\w=ߟ��jƘ[,NF�P�dB)SxEq|�c�%Ղ$#9P\����&,ܖGtXxG�WGcgl�
Uo%P`�qT��x4nRf�stj5ϗPʿ�J&zgn9vq]�@��y'��DB�͂z�G�(cAL�MF����;/-(6��lx�sGF
RC??7o-nį0E`= ch
C-�+Z9;�Y0�Dzƚ���in0�(HL QRxzNb�]�$�BqӜh���+MWߺO2�a����A�p),f,7Ur�< LJ�ry3HNJREtȣx ͒G2�q3sh6[֎S�~z�gG> \�ΣnTf0l�Ja72e�M�p��
O!v�NlHzWL=0[EF�ȱR�ߧ�忤_C�Pj#�彔r&J)?瀟�\@/R�?l/lgfnC)CL*�NA~R ?m/�N
|vntaݔw�~7
>ෛ..2.g7>@�D�J�G(R~ )wR�{2W?W)s�w2=/=?��K/}~
}~@?)3�R?�R?��g(y{��)�?>#c
n&�&~oonR/$)E�Ay#�}\8b��3�z)@^_�~J+%yJy�SY)�)�+z/^K๔2�o%ߧdndu
CFWX=m *dm5j8F햓ap_l$�_yi�
V�{8{L
�['W4�|d�٘�@�X{#u�s1wO»ϝ>n��se3nWbr˭Xѧ�Ry5_9�rR�9'e9xٷiH� !==
ȠvG"\p-ʽKqǜo.e }^Җ��&����߃�*9�F�n
zx��n|Oq8\&@_uq{Z|ҫ�\�wp#2�a;�wv�S췡\2|���f�g:hK�{P�۰ҙq%q ޢʄ2[/��8}�x@A/˥ʏ�5>�>\S߭�ҺjtFE=Z}G_"vDS
!PiH�ݤ�p�K5?�a箩%gh�WxJ
W{2��L�Ԍn�@R#r,
ZP[)R/�5"�GDD��ݥbEq0j)W-���E�QP�%��h�[g��C5Crޣm<�bL=4�xK_c(wp E��!ХS�ݰfx͛Y9f�(�ݢ�;|ᄽMo�
��D`9%c8P"`%�~8H�؞;�FcV��-0/F-mƪ1iR�
��{{�[3gډ�:�o�#Q8Sc,}�;���Ի�sc���;-3^9L97u4�W�LԻm"
*kHH�*s�{F�|%»`6ߝK;��(l<бiL�X8£_ ":� #,xHTPg$3�]��-NO��>Dz�Ƅ)I탏�I{�W)^{�3��̰4%�#�DRsAXsF^d k�4 B3q2��Y�8;�T"?Xmm)˸P�%&m�Fc*HsԲx*���DBߦK �ܘ}oPr-�`�LY[1B/7Qk|��G /ñ�_�2̷��n
.5�c8͝up�w�VRc��{�dLvf\¸)j%*SQ�"*m^ x;9O�Aeэ@`bu�ݏ�˱ezlk�Okl�)C.ҾT)V�M#ʵ.mS�ܟ>CNVa��2f�
P�X��(K# Lc'Ps::KiãÍ'H�k-�m䅨<���߂aS.%m}'nNQi#]Qa_����n
k"yLs
\7o泌/G}y���Q�/�>Il}X�<���sOW=?5v���vaL~so,e7`Y~Tik3+6I���A0��&Eȣd`C�v�_̈~ph{*MF��S:e�b|[͐sxI1%h3l䃈mAb�?�ic߱L���˙xdyȏ:|R3 .�,{k�^c"08#vl-i��,$?��ˋ�}���9�9�.@LUf}')VS/-.�?i"g\`�ʂ�?�Ө)jI-ǂID#{o��b$-�U.I5Ww!���ڔp&s.C+Mm�7\ ^)ԦK�+�5Ç/�>dgl�ul�Ld-c6�C-��J�,���
|
Network Security & Hardware 
