by Paul Rosenzweig | Dec 10, 2012 | Cybersecurity
A colleague just pointed this out to me today. Buried in the Senate-approved NDAA is Section 936, which would require the Pentagon to “establish a process” for defense contractors that have classified information on their networks to report any…
by Paul Rosenzweig | Dec 1, 2012 | Cybersecurity, Homeland Security
One of the things that has struck me about the debate concerning cybersecurity legislation is that we don’t have a really good baseline of existing legal authorities for the protection of cyberspace. Slowly, that is changing. Here is one offering –…
by Paul Rosenzweig | Nov 29, 2012 | Cybersecurity
Here it is … this version is dated November 21, 2012, so it seems to be the current iteration: White House Draft Executive Order (Dated 11-21-12). Analysis to follow ….. Here it is … this version is dated November 21, 2012, so it seems to be…
by Paul Rosenzweig | Nov 29, 2012 | Cybersecurity
One of the issues we discussed regarding the proposed cybersecurity bills in the Senate was the question of a regulatory system to identify best practices and require them for critical infrastructure. I was then, and remain, skeptical of the idea.…
by Paul Rosenzweig | Nov 27, 2012 | Cybersecurity
Readers will recall our earlier discussion of the House Intelligence Committee report that called two Chinese companies, Huawei and ZTE threats to American information security. Well, it hasn’t taken long for a Chinese response — though an…
by Paul Rosenzweig | Nov 19, 2012 | Cybersecurity
As close readers of Lawfare will be aware (but many others will not) the International Telecommunication Union (ITU) will be meeting next month in Dubai. The ITU, a relative backwater of the UN, has long had ministerial responsibilities for…
