The Cybersecurity Information Sharing Act of 2012 would put DHS in charge of business IT security

Discussion in 'Civil Rights & Privacy' started by CelticWhisper, Feb 6, 2012.

  1. CelticWhisper

    CelticWhisper Founding Member

    Uh, how about "Not just no, but (expletive deleted) NO"?
    http://blogs.cio.com/security/16787/law-would-put-homeland-security-charge-business-it-security

    This one hits way the damn too close to home. My background is in information security and I'm the sole operator of my company's network. The article does go on to talk about "critical service providers" and the like, of which my company is nowhere close to being one, but like so many other things it's the principle of this that turns my stomach.

    Oh, a few resources to help put the brakes on this legislative (expletive deleted).

    http://www.congress.org/congressorg/issues/bills/?billtype=H.R.&billnumb=3674&congress=112

    (Note to self: add OpenCongress link once their server stops sucking.)
     
  2. CelticWhisper

    CelticWhisper Founding Member

  3. Lisa Simeone

    Lisa Simeone Original Member

    This is sick.
     
  4. Sunny Goth

    Sunny Goth Original Member Coach

    Revenge of SOPA? Jim Harper at Cato just posted this. He says post far and wide - so I am.

    The Senate's SOPA Counterattack? Cybersecurity the Undoing of Privacy

    Here's part of the problem with the bill (from the article)

    It’s nice that the Constitution would apply</sarcasm>, but the obligations in the Privacy Act of 1974 would not. The Electronic Communications Privacy Act would be void. Even the requirements of the E-Government Act of 2002, such as privacy impact assessments, would be swept aside.

    and

    The Constitution doesn’t constrain private actors, of course. This language would immunize them from liability under any and all regulation and under state or common law. Private actors would not be subject to suit for breaching contractual promises of confidentiality. They would not be liable for violating the privacy torts. Anything goes so long as one can make a claim to defending “information systems,” a term that refers to anything having to do with computers.

    Elsewhere, the bill creates an equally sweeping immunity against law-breaking so long as the law-breaking provides information to a “cybersecurity exchange.” This is a breath-taking exemption from the civil and criminal laws that protect privacy, among other things.
     
  5. Lisa Simeone

    Lisa Simeone Original Member

  6. Sunny Goth

    Sunny Goth Original Member Coach

    I think it is.....

    Should I just kill this thread?
     
  7. Lisa Simeone

    Lisa Simeone Original Member

    No, no. The more the merrier! (and the more chance for more eyeballs to light upon an important issue)
     
  8. Sunny Goth

    Sunny Goth Original Member Coach

  9. Mike

    Mike Founding Member Coach

    But we will merge them. We don't want multiple threads on the same current subject.

    Which thread title is preferred?
     
  10. Sunny Goth

    Sunny Goth Original Member Coach

    Can you merge the titles? Something like --

    The Cybersecurity Information Sharing Act of 2012 would put DHS in charge of business IT security

    It's long, but descriptive. :)
     
  11. Mike

    Mike Founding Member Coach

    Done, left it in Civil Rights since that's where the discussion seems to be headed
     

Share This Page