Committee approves cybersharing bill despite privacy concerns

The bill would give the NSA access to private information held by U.S. companies, a critic says

The U.S. House of Representatives Intelligence Committee has approved a recently introduced bill that would allow greater cyberthreat information sharing between U.S. intelligence agencies and private companies even though privacy advocates say it would allow those agencies to spy on U.S. residents.

The committee approved the Cyber Intelligence Sharing and Protection Act late Thursday by a 17-1 vote. The bill, introduced just Wednesday, would allow intelligence agencies to share classified cyberthreat information with approved U.S. companies, while encouraging companies to share their own information with the government or other companies.

The next step for the bill is a vote in the full House. That vote has not yet been scheduled.

The bill will protect privacy, said Representative Mike Rogers, a Michigan Republican and committee chairman. "The decisiveness of the vote shows the tremendous bipartisan support for this bill," he said in a statement. "Through hard work and compromise we have struck a delicate balance that provides strong protections for privacy and civil liberties, while still enabling effective cyber threat sharing and providing clear authority for the private sector to defend its own networks."

The bill would help protect U.S. businesses from cyberespionage, Rogers said.

Information sharing is a good goal, but the bill goes too far, said Jim Dempsey, vice president of public policy for the Center for Democracy and Technology. The bill could give the U.S. National Security Agency new access to personal information held by U.S. companies, given the legislation's broad definition of the kind of information that companies can share with the NSA and other government agencies, he said.

The bill allows companies to share any information pertaining to the protection of information systems, Dempsey said. That "potentially could be all traffic," he said.

The bill, although it says information sharing with the government is voluntary, could also allow the NSA to demand that private companies share their information in exchange for the cyber-threat information the agency has, Dempsey said. "It creates an incentive structure as to who gets the NSA's secret sauce," he said. "We're afraid that the NSA would use that, basically, as a trading card. They would say, 'We'll give you our good stuff, if you give us a lot of your good stuff.'"

The bill would also shift responsibility for cybersecurity from private industry to the government, and from civilian agencies within the government to intelligence and military agencies, Dempsey said. "We think the government should not be involved in monitoring the private-sector networks," he said.

Bill sponsors Rogers and Representative C.A. "Dutch" Ruppersberger, a Maryland Democrat, introduced an amendment, approved by the committee, designed to limit government agencies' use of information they get from private companies.

The amendment prohibits the government from using cyberthreat information unless at least one significant purpose is cybersecurity or national security. It also prohibits the government from searching through any cyberthreat information it receives from the private sector for any purposes not authorized by the bill.

Grant Gross covers technology and telecom policy in the U.S. government for The IDG News Service. Follow Grant on Twitter at GrantGross. Grant's e-mail address is grant_gross@idg.com.

Tags Government use of ITU.S. National Security AgencyCenter for Democracy and TechnologyJim Dempseydata protectionC.A. RuppersbergerMike RogersgovernmentlegislationprivacyU.S. House of Representatives Intelligence Committeesecurity

Keep up with the latest tech news, reviews and previews by subscribing to the Good Gear Guide newsletter.

Grant Gross

IDG News Service

Comments

Comments are now closed.

Latest News Articles

Most Popular Articles

Follow Us

GGG Evaluation Team

Kathy Cassidy

STYLISTIC Q702

First impression on unpacking the Q702 test unit was the solid feel and clean, minimalist styling.

Anthony Grifoni

STYLISTIC Q572

For work use, Microsoft Word and Excel programs pre-installed on the device are adequate for preparing short documents.

Steph Mundell

LIFEBOOK UH574

The Fujitsu LifeBook UH574 allowed for great mobility without being obnoxiously heavy or clunky. Its twelve hours of battery life did not disappoint.

Andrew Mitsi

STYLISTIC Q702

The screen was particularly good. It is bright and visible from most angles, however heat is an issue, particularly around the Windows button on the front, and on the back where the battery housing is located.

Simon Harriott

STYLISTIC Q702

My first impression after unboxing the Q702 is that it is a nice looking unit. Styling is somewhat minimalist but very effective. The tablet part, once detached, has a nice weight, and no buttons or switches are located in awkward or intrusive positions.

Resources

Best Deals on GoodGearGuide

Latest Jobs

Don’t have an account? Sign up here

Don't have an account? Sign up now

Forgot password?