Shows & Panels
- The 2014 Big Picture on Cyber Security
- AFCEA Answers
- Ask the CIO
- Connected Government
- Consolidating Mission-critical Systems
- Constituent Servicing
- Continuous Monitoring: Tools and Techniques for Trustworthy Government IT
- The Data Privacy Imperative: Safeguarding Sensitive Data
- Eliminating the Pitfalls: Steps to Virtualization in Government
- Federal Executive Forum
- Federal Tech Talk
- Government Cloud Brokerage: Who, What, When, Where, Why?
- Government Mobility
- Mission-critical Apps in the Cloud
- Mobile Device Management
- The Modern Federal Threat Landscape
- The Path from Legacy Systems
- Understanding the Intersection of Customer Service and Security in the Cloud
Shows & Panels
Analysis: Cyber bills must ensure 'sanitized' info sharing
Tuesday - 1/31/2012, 11:16am EST
Specifically, the think tank has raised concerns about Einstein, the software the Homeland Security Department uses to monitor intrusions to federal computer networks.
"As the nation harnesses the power of computer networks to create and share knowledge ... it is also developing new vulnerabilities to those who would steal, corrupt, harm, or destroy public and private assets that are vital to our national interests," according to Jan. 27 report by the Constitution Project.
The Constitution Project argues Einstein raises concerns of infringements to the Fourth Amendment, barring unreasonable searches and seizures — particularly as agencies increase public-private partnerships to guard against cyber threats.
The organization has made recommendations in three categories for future cyber legislation, as outlined by Sharon Bradford Franklin, senior counsel of the Constitution Project:
- Ensure effective oversight, through congressional and inspector general reviews.
- Include privacy safeguards that limit the private personal information shared within government.
- Limit the scope of government access and use of content from private communications.
The congressional proposals are aimed at giving the federal government a role in protecting private networks, Franklin said in an interview with The Federal Drive with Tom Temin.
"A lot of these bills contemplate information sharing programs, where private companies would share cybersecurity information with the federal government," she said. "We want to make sure personally identifiable information is sanitized out of that sharing unless that is absolutely necessary for the cybersecurity purpose."
In other words, the goal is to prevent a "permanent government wiretap on all of our communications," Franklin said.
The Senate is expected to take up cyber bills later this week, Franklin said. She said the Constitution Project is "cautiously optimistic" about these measures. Meanwhile, the House has two lead bills — H.R.3523 and H.R.3674 — neither of which have as strong privacy controls as the Senate proposals, Franklin said.