ASIS Session Explores Cybersecurity Legislation

• By Brent Dirks
• Sep 12, 2012

An education session at ASIS 2012 on Tuesday explored the current state of cybersecurity legislation on the federal level.

Speaker A. Spencer Wilcox examined Cyber Intelligence Sharing and Protection Act of 2011 (CISPA), the Cybersecurity Act of 2012, the SECURE IT Act, and possible executive from the Obama White House.

The most likely scenario will come from an executive action. Wilcox said the White House does plan on issuing some order on how critical infrastructure needs to protect itself from cyberattack. In early drafts of the order, critical infrastructure is defined as energy and communication.

The action will also possibly call for a National Infrastructure Protection Plan.

On the legislative side, the other three proposals seemed to be bogged down in Congress. The House passed CISPA, but it was roundly decried, and President Obama promised to veto the legislation if it ever passed the Senate.

The Cybersecurity Act of 2012 was widely debated by the Senate and is believed to be discussed when the legislature returns to session later this month. One of the most interesting parts of the act, which Wilcox called very comprehensive, allows companies to protect from cyber threats by returning attacks.