In an effort to protect our economy and our way of life, we have authored targeted, narrow legislation that permits the government to share classified threat intelligence and other cyberthreat information with the private sector. In turn, the private sector would be authorized to share cyberthreat information with the government, creating a two-way street of information sharing. This will break down legal barriers written into law decades before the Internet age so the government can help protect private sector networks, which comprise a vast majority of the infrastructure.
We must mount a much stronger defense against these attacks, which starts by changing the law. We need simple, common sense legislation that enables the government and private sector to work together to protect America’s vast networks of information and resources. Our bill, the Cyber Intelligence Sharing and Protection Act (CISPA), is a critical first step in giving American employers a fighting chance against these relentless attacks. CISPA provides for an exchange of cyber threat information and it does so while protecting individuals’ privacy and personal information.
CISPA, which passed the House of Representatives last year with a strong, bipartisan margin, makes information sharing entirely voluntary. No company has to participate if they choose not to, and no company is required to share information with the government. CISPA also requires oversight and reporting by the Inspector General of the Intelligence Community. The bill permits the government to only use and retain information shared by the private sector for five specific, narrow purposes. The bill requires private entities to act in good faith when using cyber threat information, in order to benefit from the liability protections contained in the bill, which are key to sending a green light that it is okay to share. And the bill does not create a new government surveillance program allowing monitoring of the Internet, but rather it protects the Internet from foreign hackers and attacks that threaten the very openness which has made the Internet great.
Recently the House Intelligence Committee held an open hearing to discuss the threat of cyber attacks and discuss potential solutions. The panelists from the business community agreed that our approach would be an important step in strengthening our defenses from these persistent attacks. And perhaps most importantly ours is an approach that enjoys bipartisan support and could actually get done. It is our hope now that the House and Senate can come together this year to approve our narrow but important legislation to protect the American economy. We expect the bill will pass our committee this week with an overwhelming bipartisan majority.
Unfortunately for every American, the Mandiant report was just the tip of the iceberg.
Rogers is chairman of the House Permanent Select Committee on Intelligence. Ruppersberger is the ranking member of the committee.