by Paul Rosenzweig | Jan 5, 2013 | Cybersecurity
As 2013 draws to a close, I was reflecting on some of the things that happened, and some of the things that did not. One that struck me is that we celebrated the 10-year anniversary of the “National Strategy to Secure Cyberspace.” It’s good that in…
by Paul Rosenzweig | Dec 18, 2012 | Cybersecurity
As Bobby has already noted the conference report on the NDAA was filed last night. Some readers may recall that I was concerned about section 936 of the Senate version of the bill — a provision that requires Defense contractors to report cyber…
by Paul Rosenzweig | Dec 10, 2012 | Cybersecurity
A colleague just pointed this out to me today. Buried in the Senate-approved NDAA is Section 936, which would require the Pentagon to “establish a process” for defense contractors that have classified information on their networks to report any…
by Paul Rosenzweig | Dec 1, 2012 | Cybersecurity, Homeland Security
One of the things that has struck me about the debate concerning cybersecurity legislation is that we don’t have a really good baseline of existing legal authorities for the protection of cyberspace. Slowly, that is changing. Here is one offering –…
by Paul Rosenzweig | Nov 29, 2012 | Cybersecurity
One of the issues we discussed regarding the proposed cybersecurity bills in the Senate was the question of a regulatory system to identify best practices and require them for critical infrastructure. I was then, and remain, skeptical of the idea.…
