Cybersecurity legislation still draws intense opposition
September 23, 2015
Five bills aimed at governing the sharing of cyberthreat information have been proposed in the current session of Congress. Technically, only two are now pending, but that’s because two in the House and two in the Senate were combined.
The House bills – originally labeled H.R. 1560, Protecting Cyber Networks Act (PCNA); and H.R. 1731, the National Cybersecurity Protection Advancement Act of 2015 (NCPAA) – both passed the House during the week of April 20 and were then combined, with the PCNA becoming Title I and the NCPAA Title II of H.R. 1560.
According to the Congressional Research Service (CRS), both Titles of the combined House bill have several things in common. They both include the following:
- Focus on the sharing of cyberthreat information within the private sector, and between the private sector and government.
- Create a structure for the information-sharing process.
- Address issues like privacy, civil liberties and the liability risks of private-sector sharing.
However, they differ in how they define some common terms, such as “cyberthreat indicator,” and also in what roles the Department of Homeland Security (DHS) and intelligence agencies will play, the uses permitted for shared information and reporting requirements.