Rep Langevin: Senate cybersecurity bill could spur House to act

Despite the apparent divide between the two chambers on the details of comprehensive cybersecurity legislation, the passage of a Senate bill would put pressure on the House to act, according to Rep. Jim Langevin (D-RI).

Few lawmakers have more experience on the issue than Rep Langevin, the co-founder of the bipartisan Congressional Cybersecurity Caucus, and he expressed optimism recently that some form of legislation to improve the security of private sector networks would pass Congress this year. "I think the Senate passing something would be a major gamechanger and a major step forward in seeing comprehensive cybersecurity legislation pass Congress this year," Rep Langevin said. " Absent that, I think this thing kind of goes on in fits and starts."

The GOP unveiled their own recommendations for comprehensive cybersecurity legislation recently that favor incentives and information-sharing over government mandates. They also restrict the new rules to nuclear power, water treatment facilities and other high-regulated sectors. Langevin said his reaction to the Republican proposal was generally positive and suggested there is room for compromise between the two parties, particularly since there is bipartisan support for legislation that would allow firms to share more information on cyber threats without incurring legal liability. While Rep Langevin feels some form of regulation will be necessary for critical infrastructure providers, he said an information-sharing bill would constitute progress, especially considering how little attention cybersecurity received as a policy issue just a few years ago. "Four years ago when I first started with this issue, it was not something that was widely thought about or written about," Langevin said. "The process was just beginning....as a country we were just waking up to the fact we were getting hacked and penetrated at an unacceptable level." Langevin is particularly concerned about securing the electric grid, where he believes the potential for cyberattacks to create physical damage is greatest. He pointed to the development of more sophisticated viruses such as Stuxnet as evidence the threat is increasing. He also stressed the need for the administration and military to define what constitutes an attack and what the appropriate response would be, echoing the concerns of Senate Armed Services chairman Carl Levin (D-MI)