DrJBHL DrJBHL

CISPA Passed the House. “All Your Info Are Belong To Us.”

CISPA Passed the House. “All Your Info Are Belong To Us.”

from JoeUser Forums

 

I’ve written before on this topic (https://forums.wincustomize.com/423486/page/1/#3140935). This is more of an update. The House of Representatives passed the bill last week, and it’s moving on to the Senate.

So what?

“CISPA would allow for voluntary information sharing between private companies and the government in the event of a cyber attack. If the government detects a cyber attack that might take down Facebook or Google, for example, they could notify those companies. At the same time, Facebook or Google could inform the feds if they notice unusual activity on their networks that might suggest a cyber attack.” - http://www.pcmag.com/article2/0,2817,2417993,00.asp

OK… ostensibly that’s a good thing. Cyber attacks are not good things right? Right. However, the EFF has argued that “CISPA would override the relevant provisions in all other laws—including privacy laws.” (https://www.eff.org/cybersecurity-bill-faq#company).

“Right now, well-established laws like the Cable Communications Policy Act, the Wiretap Act, the Video Privacy Protection Act, and the Electronic Communications Privacy Act provide judicial oversight and other privacy protections that prevent companies from unnecessarily sharing your private information, including the content of your emails.

And these laws expressly allow lawsuits against companies that go too far in divulging your private information. CISPA threatens these protections by declaring that key provisions in CISPA are effective “notwithstanding any other law,” a phrase that essentially means CISPA would override the relevant provisions in all other laws—including privacy laws. CISPA also creates a broad immunity for companies against both civil and criminal liability. CISPA provides more legal cover for companies to share large swaths of potentially personal and private information with the government…CISPA allows a company to obtain and share "cyber threat information" if it has both a "cybersecurity purpose" and believes it is protecting its rights and property.

A "cybersecurity purpose" only means that a company has to think that a user is trying to harm its network. What does that mean, exactly? The definition is broad and vague. The definition allows purposes such as guarding against “improper” information modification, ensuring “timely” access to information or “preserving authorized restrictions on access…protecting…proprietary information” (i.e. DRM).”

- https://www.eff.org/cybersecurity-bill-faq#company

Worse, under CISP there is essentially nothing you can do even if you are harmed. This is a fundamental violation of our right “to seek redress” since such a suit would be neutralized by “a belief cybers security was violated.” It doesn’t even have to be proven. This is nonsense. Also, companies don’t need to share personally identifying information to have such material removed and neutralized. Indeed, if companies need to share an email, such as a phishing email message, existing exceptions allow the recipient to divulge the information; there is no need for the blanket authority in CISPA.

More, your info once in the hands of DHS can be distributed to any agency it wants, and

“Even though the information was passed along to the government for only “cybersecurity purposes”—the government can use your personal information for cybersecurity, investigating any cybersecurity crime or criminal exploitation of minor, protecting individuals from death or serious physical injury, or protecting the national security of the United States. Under the National Security Act, which CISPA amends, national security interests can include:

(i) threats to the United States, its people, property, or interests;

(ii) the development, proliferation, or use of weapons of mass destruction; or

(iii) any other matter bearing on United States national or homeland security.”

- https://www.eff.org/cybersecurity-bill-faq#company

Who’s supporting it? The list is here: https://intelligence.house.gov/hr-624-letters-support

Google, face book and others who supported prior versions haven’t expressed support for the current version.

You can read more about CISPA here: https://www.eff.org/cybersecurity-bill-faq#company

There are some useful links in the article.

103,775 views 39 replies
Reply #26 from JoeUser Forums Top

Quoting jackswift85, reply 25
I think if Skynet went active today, the line of reasoning would be, "These humans are no threat to my existence, they couldn't even legislate how to properly take a dump without arguing with each other endlessly."
End of jackswift85's quote

My response was semi-sarcastic.  Yours is funny!  Sadly too true as well.

Reply #27 from Sins Forums Top

CISPA suffers setback in Senate amid privacy concerns

According to the chairman of a key Senate committee, the cybersecurity bill passed by the House is "important" but its privacy protections are "insufficient."

Zack Whittaker
by Zack Whittaker
 
 April 25, 2013 12:04 PM PDT
U.S. Capitol(Credit: Shara Tibken/CNET)

The Senate will almost certainly kill a controversial cybersecurity bill, recently passed by the House, according to a U.S. Senate Committee representative.

Sen. Jay Rockefeller (D-NY), the chairman of the U.S. Senate Committee on Commerce, Science and Transportation, said the upper house will not take up the bill," he told U.S. News on Thursday.

It comes a week after Sen. Rockefeller tweeted on the day of CISPA's passing in the House: "CISPA is important first step, but Senate is committed to action on all solutions to strengthen cybersecurity. We have work to do."

He confirmed to the political publication today that staff and senators are "drafting separate bills."

The Cyber Information Sharing and Protection Act, commonly known as CISPA, permits private sector companies -- including technology firms, such as Facebook, Twitter, Google and Microsoft, among others -- to pass "cyber threat" data, including personal user data, to the U.S. government. Civil liberties groups have called it a "privacy killer," and "dangerously vague," and warned that it may be in breach of the Fourth Amendment.

Developing, more soon.

Galactic Civilizations III
Reply #28 from WinCustomize Forums Top

Either the Senate will kill it or it'll be vetoed.

Reply #29 from Sins Forums Top

Quoting DrJBHL, reply 28
it'll be vetoed.
End of DrJBHL's quote

Are you sure about that?  I've been under the impression that the Obama administration is pushing for CISPA's passage....

Reply #30 from WinCustomize Forums Top

Nope... they'll veto. Check the sources in the OP.

Reply #31 from Elemental Forums Top

http://www.usnews.com/news/articles/2013/04/25/aclu-cispa-is-dead-for-now

 

"We're not taking [CISPA] up," the committee representative says. "Staff and senators are divvying up the issues and the key provisions everyone agrees would need to be handled if we're going to strengthen cybersecurity. They'll be drafting separate bills."

Sen. Jay Rockefeller, D-W.V., chairman of the committee, said the passage of CISPA was "important," but said the bill's "privacy protections are insufficient."

That, coupled with the fact that President Barack Obama has threatened to veto the bill, has even CISPA's staunchest opponents, such as the American Civil Liberties Union, ready to bury CISPA and focus on future legislation.

"I think it's dead for now," says Michelle Richardson, legislative council with the ACLU. "CISPA is too controversial, it's too expansive, it's just not the same sort of program contemplated by the Senate last year. We're pleased to hear the Senate will probably pick up where it left off last year."

That's not to say Congress won't pass any cybersecurity legislation this year. Both Rockefeller and President Obama want to give American companies additional tools to fight back against cyberattacks from domestic and foreign hackers.

Reply #32 from Sins Forums Top

Partisan bickering, the only thing that slows the expansion of government...

Reply #33 from JoeUser Forums Top

Quoting psychoak, reply 32
Partisan bickering, the only thing that slows the expansion of government...
End of psychoak's quote

Sad to say, "Amen!"

Reply #34 from JoeUser Forums Top

Quoting Daiwa, reply 33
Sad to say, "Amen!"
End of Daiwa's quote

Glad to say "Amen".  The government that governs least, governs best.

Reply #35 from JoeUser Forums Top

Quoting DrJBHL, reply 30

Nope... they'll veto. Check the sources in the OP.
End of DrJBHL's quote

Don't be too sure.  The White House objection has nothing to do with the privacy section, but with the jurisdiction.  Obama promised to veto any health care law that set up a penalty on people for not participating, yet he signed it anyway.

Believing promises made by politicians is a fools dream.  Not reality.

Reply #36 from WinCustomize Forums Top

Quoting Dr, reply 35
Don't be too sure.
End of Dr's quote

http://www.neowin.net/news/cispa-is-dead-again

"President Obama made comments himself that he would veto the bill, voicing strong opposition to its policies and structure. Whilst Obama could do away with CISPA, it is more likely a watered-down version of the bill will be put forward to the president instead."

 

They'll never give up.

Reply #37 from JoeUser Forums Top

Quoting DrJBHL, reply 36
They'll never give up.
End of DrJBHL's quote

Funny how he said the same thing about Obamacare - during the campaign when Hillary brought it up.

Reply #38 from WinCustomize Forums Top

Daiwa is correct.........soon it will be 1984!

Reply #39 from WinCustomize Forums Top

Oh God! I hope not ... the hair styles are terrible.