Last updated: October 10, 2012 - 8:45am
[Commentary] Congress has recessed until after the November elections without passing cybersecurity legislation, which a bipartisan chorus of prominent defense and intelligence officials says is urgently needed to protect our country’s economic and national security. Since Congress has not been able to find common ground on cybersecurity legislation, I appreciate the president’s stated intention to fortify the security of critical cybersystems through his executive powers.
We know our adversaries are already stealing valuable intellectual property and exploiting our critical infrastructure to prepare for attack. Under the Homeland Security Act of 2002, the Department of Homeland Security has clear authority to conduct risk assessments of critical infrastructure, identify the systems or assets that are most vulnerable to cyberattack, and issue voluntary standards for them to maintain adequate cybersecurity. Executive action is not the best way to protect the United States from cyberattacks. Without congressional action, the president cannot offer liability protections to industry to reward compliance with voluntary security guidelines. Nor can he require industry to report major cyber-intrusions. But the president can encourage owners of critical infrastructure to improve their cybersecurity by identifying systems and assets that pose the greatest risk and recommending measures necessary to protect them.
- Classified meeting stresses urgency of cybersecurity legislation
- Senators Urge New Powers for President to Respond to Cyber Attacks
- Sens Lieberman, Collins split on cyber exec order
- Order Gives Firms Cyberthreat Information
- Rockefeller and Snowe Continue Fighting for Public-Private Teamwork to Ensure Cybersecurity for All Americans
- House Commerce, Manufacturing, and Trade Subcommittee Discusses Legislation to Protect Americans from Data Theft
- US cybersecurity strategy yet to solidify
- Presidential Proclamation -- Critical Infrastructure Protection and Resilience Month, 2012
- Democrats: Cybersecurity legislation a priority in new Congress
- Sen Lieberman: Cybersecurity Bill Without Enforceable Standards 'Doesn't Get Job Done'
- The Time is Ripe for Cybersecurity Legislation
- A gold standard in cyber-defense
- House action on DHS cyber oversight conflicts with Senate proposal
- String of major cybersecurity breaches builds momentum for government action
- Recap: Senate Cybersecurity Hearing