 Distilled1
|
Date: May 12, 2009 @ 10:33 AM
Bleh!
Critics, however, have pointed to three actions Rockefeller and Snowe propose that may violate both privacy concerns and even constitutional bounds:
First, the White House, through the national cybersecurity advisor, shall have the authority to disconnect "critical infrastructure" networks from the Internet – including private citizens' banks and health records, if Rockefeller's examples are accurate – if they are found to be at risk of cyber attack. The working copy of the bill, however, does not define what constitutes a cybersecurity emergency, and apparently leaves the question to the discretion of the president.
Second, the bill establishes the Department of Commerce as "the clearinghouse of cybersecurity threat and vulnerability information," including the monitoring of private information networks deemed a part of the "critical infrastructure."
Third, the legislation proposes implementation of a professional licensing program for certifying who can serve as a cybersecurity professional.
And while the critics concede the need for increased security, they object to what is perceived as a dangerous and intrusive expansion of government power.
"There are some problems that we face which need the weight of government behind them," writes Seltzer in eWeek. "This is not the same as creating a new federal bureaucracy setting rules over what computer security has to be and who can do it."
"It's an incredibly broad authority," CDT senior counsel Greg Nojeim told the Mother Jones news website, troubled that existing privacy laws "could fall to this authority."
Jennifer Granick, civil liberties director at the Electronic Frontier Foundation, told Mother Jones the bill is "contrary to what the Constitution promises us."
According to Granick, granting the Department of Commerce oversight of the "critical" networks, such as banking records, would grant the government access to potentially incriminating information obtained without cause or warrant, a violation of the Constitution's prohibition against unlawful search and seizure.
"What are the critical infrastructure networks? The examples provided are 'banking, utilities, air/rail/auto traffic control, telecommunications.' Let's think about this," writes Seltzer. "I'm especially curious as to how you take the telecommunications networks off of the Internet when they are, in large part, what the Internet is comprised of. And if my bank were taken offline, I would think about going into my branch and asking for all of my deposits in cash."
S. 778, which would establish the Office of the National Security Advisor, and S. 773, which provides for developing a cadre of governmental cybersecurity specialists and procedures, have both been read twice and referred to committee in the Senate.
|
pepe512000
Jefrystube
