Congress Jumps Into Cyber Security: Commentary

April 20, 2009 By Wayne Hanson

Anyone who has ever been attacked by a computer virus, or been showered with adware nuisances, had e-mail sent back or deleted by some ham-handed spam filter, or had a Web site hacked and defaced realizes the extent of cyber security problems and the many supposed solutions that have been advanced. Now, Congress is jumping into the fray, and two new Senate bills -- S. 773 and S. 778 -- would establish the position of National Cybersecurity Advisor and would institute some 50 pages of new Internet regulations and oversight in the name of protection of networks and critical infrastructure.

S. 773 the "Cybersecurity Act of 2009," has stirred controversy as it would give the Secretary of Commerce access to federal and private-sector "critical infrastructure information systems and networks" and "... all relevant data concerning such networks without regard to any provision of law, regulation, rule, or policy restricting such access." A number of bloggers are attacking the bills on the assumption that it would strip privacy protections and open the floodgates to a new era of surveillance.

However, the most damning thing about the bill may be that it advances no new solutions. Steven Bellovin, Columbia University professor of computer science said in his blog that "the odds on anyone ... finding a magic solution to the computer security problems are exactly 0. Most of the problems we have are due to buggy code, and there's no single cause or solution to that. In fact, I seriously doubt if there is any true solution; buggy code is the oldest unsolved problem in computer science, and I expect it to remain that way."

While admitting that the bill has some "good parts," Bellovin goes on to say that the bill is poorly thought out, solves non-problems and assumes that "research results can be commanded into being by virtue of an act of Congress."

You may use or reference this story with attribution and a link to
http://www.govtech.com/security/Congress-Jumps-Into-Cyber.html

| More

An Unsecured Internet is Worse Than None At All

Add Your Comment

Name *

Comment *

You are solely responsible for the content of your comments. We reserve the right to remove comments that are considered profane, vulgar, obscene, factually inaccurate, off-topic, or considered a personal attack.

Latest From Security

GovTech Papers and Case Studies View Library

Follow @govtechnews

Government Best Practices

Accelerate and Protect Your eLearning Initiatives With Akamai’s Cloud Based Intelligent Platform

IDC: Delivering Customer Value with Enterprise Flash Deployments

The Legacy Play

Five Myths of Cloud Computing

Secure Access to Your Data in a Bring-Your-Own-Device (BYOD) World

Disaster Recovery

Big Data, Big Promise

Protecting Government and Citizen Data

Virtualizing the Government Desktop

Service Virtualization: Streamlining Development of Complex Applications

Uncovering Costs in Towing and Impound Services

Mobile Government: Getting your employees the right tools for the job

Secure Mobile Productivity

Collaborative Video Solutions in Healthcare

Collaborative Justice: Transforming Criminal Justice Services Through Unified Collaboration

Most Viewed

This Section | Whole Site

Most Commented

Site Reveals Salaries of New York State Employees, Other State Financial Data

"Under the current mayor all NYC agencies increased the number of overpaid managers and their salarie"
Washington State Courts Office Suffers Data Breach

"Yep, I'm sure they do regret this breach has occurred. Once again, SS #'s being used for something o"

Collaboration for the Public Sector

Collaborative Justice: Transforming Criminal Justice Services Through Unified Collaboration
This issue brief examines video collaboration in every stage of the human justice process, demonstrating how this technology can not only make services more efficient, affordable, and accessible.