On Monday, May 16, 2016, the Supreme Court of the United States issued its highly anticipated opinion in Spokeo, Inc. v. Robins, a case that examined the question of whether a plaintiff who ...25 May 2016
The White House Announces a Cybersecurity Summit and Information Sharing Proposals
- White House Summit on Cybersecurity and Consumer Protection. On February 13, the White House will host a summit at Stanford University to coordinate public and private sector efforts to ensure the security of American consumers from cyber attacks. The summit will convene a broad array of stakeholders, including senior officials from across the federal government, industry leaders, law enforcement officials, consumer advocates, technical experts, and students. Participants will focus on increasing public-private partnerships and cybersecurity information sharing, creating and promoting improved cybersecurity practices and technologies, and improving adoption and use of more secure payment technologies.
- Cybersecurity Information Sharing and Liability Protection. The Administration elaborated on its proposal to expand collaboration and information sharing between industry and government. The proposal encourages private sector organizations to share cyber threat information with the NCCIC, which will then disseminate that information in near real-time to both federal agencies and other industry stakeholders. The proposal also encourages the formation of Information Sharing and Analysis Organizations by providing targeted liability protection for companies that share information. Shared information could not be used for regulatory action and would not be subject to release under the Freedom of Information Act (FOIA), though law enforcement would have limited access to the data to pursue cyber-crimes, threats to minors or threats of bodily harm. The proposal does not provide further details on how these protections will be targeted, which has been a controversial topic among congressional Republicans. Finally, the administration proposes to require the Department of Homeland Security (DHS), in consultation with the Privacy and Civil Liberties Oversight Board, to develop receipt, retention, use, and disclosure guidelines for use throughout the federal government.
- Combatting Cybercrime. The President announced revisions to his Cybersecurity Legislative Proposal, originally published in 2011. Specifically, he recommended several tools to enhance law enforcement’s ability to investigate, disrupt, and prosecute cybercrime. These include measures that disrupt the sale of botnets, criminalize the overseas sale of stolen US financial information, and enable courts to shut down botnets engaged in criminal activity. The President also proposed updates to the Racketeering Influenced and Corrupt Organizations Act (RICO) and the Computer Fraud and Abuse Act (CFAA) to ensure that both statutes provide protections against cybercrime.
This week’s announcements build upon a series of high-level initiatives focusing on cybersecurity in recent years. In 2013, the President signed an Executive Order on Improving Critical Infrastructure Cybersecurity, which was followed one year later by the release of the NIST Framework for Improving Critical Infrastructure Cybersecurity. And in November 2014, the White House announced the BuySecure Initiative, intended to promote consumer financial protection and critical infrastructure cybersecurity.
Brian Kennedy, an associate in our Washington, D.C. office, contributed to this entry.
The French Data Protection Authority (CNIL) has announced its inspections program topics for 2016, with health data, flight passengers’ data, and data used for marketing and Internet...20 May 2016
The benefits of using Unmanned Aircraft Systems (UAS) for tasks from catastrophe response to infrastructure inspection to construction site monitoring, and everything in between, are great. ...19 May 2016