Facebook, Google, Yahoo et al voice concerns about CISA

Facebook, Google, Yahoo and many other tech and communications companies have come out swinging against the Cybersecurity Information Sharing Act of 2015 (CISA).

CISA is a controversial bill that intends to “improve cybersecurity in the United States through enhanced sharing of information about cybersecurity threats, and for other purposes”, but many view it as another government surveillance tactic.

The Computer & Communications Industry Association, a trade group that all of these tech and communications companies are a part of, are claiming that CISA does not provide enough security to protect users’ privacy, nor does it put high enough limits on how the information shared with the government can be used.  They also argue that “the bill authorizes entities to employ network defense measures that might cause collateral harm to the systems of innocent third parties” in their blog.

The Computer & Communications Industry Association did want to make it clear that they support the idea behind the bill, but can’t support the bill as it is currently written.  They are hoping to work with congress to improve the bill.

It is important to note that while appropriately constructed cybersecurity information sharing legislation can provide a more efficient regime for the voluntary sharing of appropriately limited information between the private sector and government, it is not the only means through which information sharing can occur,” insists CCIA, “Current legal authorities permit companies to share cyber threat indicators with the government where necessary to protect their rights and the rights of their users, and should not be discounted as useful existing mechanisms.”

CISA includes immunity from customer/user lawsuits for companies that provide information to the government, but certainly wouldn’t be able to stop the damage to a company’s reputation for sharing that information.

CISA is coming up for consideration on the floor of the U.S. Senate in the next few weeks.
For information on how you can prevent your organization from being breached, visit www.miltonsecurity.com or call 714-515-4011.

Be First to Comment

Leave a Reply

Your email address will not be published. Required fields are marked *