- Aborted fetuses from Britain incinerated in Oregon plant to make electricity
- Motolotov cocktail thrown a Brooklyn mini-mart
- 3 Americans dead in shooting at Kabul hospital by Afghan guard
- Running on empty: EPA slashes biofuel goals because of ethanol shortage
- ‘Gay Jeans’ that fade into rainbow-colored denim created
- Divided court strikes down big porn award
- Jimmy Carter: Don’t hurt Russian people with sanctions
- Oldest ex-MLB player dies in Cuba, 2 days shy of 103rd birthday
- ‘Top Gun’ for drones: Squadrons of carrier-based killers have Navy’s approval
- Bill Clinton to endorse Charlie Rangel for re-election
Experts urge stronger online regulation bill
WASHINGTON (AP) - Cybersecurity experts urged senators Thursday to close loopholes in legislation to give the government more power to force critical industries to make their computer networks more secure.
Experts told the Senate Homeland Security and Governmental Affairs Committee said the bill could allow many companies to avoid regulation entirely or drag out the process for up to eight years before they would actually have to improve their computer security.
The legislation would limit the number of industries subject to regulation to those in which a cyberattack could cause “an extraordinary number of fatalities” or a “severe degradation” of national security.
“So an individual infrastructure owner, such as a rural electricity provider, has no responsibility under this title if it can show that an undefended cyberattack would only cause an ordinary number of fatalities?” said Stewart Baker, a former assistant secretary at the Department of Homeland Security who is now with the law firm of Steptoe & Johnson. “How many dead Americans is that, exactly?”
Baker and James Lewis, a cybersecurity expert and senior fellow at the Center for Strategic and International Studies, said the bill takes important steps toward improving computer security.
But they said the measure has been weakened by corporate and other interests arguing against any attempt at regulation.
By using “terms like mass casualties, mass evacuations, or effects similar to weapons of mass destruction, we are essentially writing target lists for our attackers,” said Lewis. “They will attack what we choose not to defend.”
The legislation is intended to ensure that computer systems running power plants and other essential parts of the country’s infrastructure are protected from hackers, terrorists or other criminals.
The Department of Homeland Security, with input from businesses, would select which companies to regulate, and the agency would have the power to require better computer security.
U.S. authorities are increasingly alarmed about the constant attacks that target U.S. government, corporate and personal computer networks and accounts. And they worry that cybercriminals will try to take over systems that control the inner workings of water, electrical, nuclear or other power plants.
The most glaring example of that was the Stuxnet computer worm, which targeted Iran’s nuclear program in 2010, infecting laptops at that nation’s Bushehr nuclear power plant.
Business groups argue that more regulation is not the answer and that any new mandates will drive up costs without really increasing security. And Sen. John McCain, R-Ariz., voiced his opposition to the bill Thursday saying that several Republicans will introduce their own legislation that will call for more information sharing and cooperation with the private sector, rather than regulations.
He said the regulations in the committee’s bill “would stymie job-creation, blur the definition of private property rights and divert resources from actual cybersecurity to compliance with government mandates.”
Sen. Joe Lieberman, I-Conn. and chairman of the Homeland Security panel, said the bill will better arm the country against enemies and terrorists who “who would use the Internet against us as surely as they turned airliners into guided missiles.”
And Sen. Susan Collins of Maine, the senior Republican on the committee, said the attacks threaten U.S. economic stability. One study, she said, estimated that global cybercrime costs as much as $388 billion annually.
TWT Video Picks
By Andrew P. Napolitano
Obama's veil of secrecy is pierced
- Pentagon plans to replace flight crews with 'full-time' robots
- 'Top Gun' for drones: Squadrons of carrier-based killers have Navy's approval
- Texas is next! AG warns BLM wants 90,000 acres after Bundy ranch standoff
- America is an oligarchy, not a democracy or republic, university study finds
- Nevada rancher Cliven Bundy hailed as patriot, ripped as lawless deadbeat
- Obama avoids 'red line' for China, prepared to impose tougher sanctions on Russia
- CURL: Obama's foreign policy even worse than his domestic policy
- Ukraine claims torture by pro-Russian forces on the heels of Biden's stern warning to Moscow
- Sold out: Ukraine's leadership swapped best military weapons for cash
- Jimmy Carter: Dont hurt Russian people with sanctions
Top 10 handguns in the U.S.
Celebrity deaths in 2014