New cybersecurity bill would define 'critical' infrastructure
A group of senators introduced a bill earlier this week that calls for the U.S. government to determine which infrastructure firms are, in fact, "critical," and could force these companies to develop and meet security standards.
The Cybersecurity Act of 2012 calls for the Department of Homeland Security to assess the risks major cyberattacks pose to power plants, electrical and water companies, waste-treatment facilities and other infrastructure systems.
As worded in the legislation, companies "whose disruption from a cyber attack would cause mass death, evacuation, or major damage to the economy, national security, or daily life," would fall under the definition of critical infrastructure. These companies would then have to work with the DHS to develop and comply with security standards and "cybersecurity performance requirements." Firms would retain the right to appeal the "critical infrastructure" designation.
Related Articles
- Australian group wants all pen testers certified - AusCERT agrees
- Megaupload user data to be deleted by Thursday
- Philippine Police claim four hackers funded by militant Saudi group
- Black Hat Pwnie Award winner will probably get arrested
- Prank call sees SWAT team descend on security consultant's home
Recent comments