Академический Документы
Профессиональный Документы
Культура Документы
www.isalliance.org The Honorable Harry Reid Senate Majority Leader United States Senate Washington, DC 20510 Dear Senators Reid and McConneli: The Honorable Mitch McConneli Senate Minority Leader United States Senate Washington, DC 20510
The Internet Security Alliance (ISA) wishes to congratulate and commend the sponsors of S. 3414 for introducing this legislation. This new bill seeks to address a number of serious issues that the ISA has long urged Congress to confront and raises a range of new issues and ideas worthy of serious consideration. ISA was founded in conjunction with Carnegie Mellon University in 2000 as a multi-sector trade association with representation from most of the designated critical infrastructure sectors and a mission to work with government to create a sustainable system of cyber security. ISA has been sounding the alarm about our cyber vulnerabilities for more than a decade and has long believed that both industry and government need to do more to address the cyber threat. The ISA membership consists of cyber security experts who understand that while the threat is real and immediate, the issue is also subtle and complex. We believe Congress can and ought to pass meaningful cyber security legislation in this session. However, even well-intentioned initiatives, without careful consideration and discussion with the entities that will be affected by the proposals, can easily make our security situation worse. And that, we cannot afford. In the week we have been given to to analyze S. 3414, we have noted a range of positive modifications from previous versions of the bill, many of which have long been advocated by the ISA. These positive steps include: Elimination of the extensive regulatory structure and direct mandate authority for the Department of Homeland Security. As even supporters of the previous bill testified, under such a regulatory structure, it would take 8-10 years for the government to decide what cyber security standards they would want to impose on the private sector. This procedure is obviously out of touch with the state of modern cyber attacks and has been appropriately eliminated. The instruction to the newly created National Cybersecurity Council to work with the private sector to develop a more incentive-based system of cyber security. Cyber technology and attack methods change so rapidly that any traditional regulatory mechanism cannot hope to keep up
Arlington, VA 22201-3834
Arlington, VA 22201-3834
Arlington, VA 22201-3834
Sincerely,
Larry Clinton President & CEO Internet Security Alliance cc; Members of the United States Senate
Arlington, VA 22201-3834
(f) 703/907-7093