Language Selection

English French German Italian Portuguese Spanish

Inaction Could Lead to Cybersecurity Law

Filed under
Web
Legal

U.S. businesses for years have urged the government to let them set computer-security standards of their own, but their inability to do so could now prompt Congress to step in, experts say.

Those who worry that regulation may stifle innovation say the business community may have already missed an opportunity to prove the government's help is not needed.

"The market is in a much better position to respond to this challenge ... but corporate America has not provided evidence across the board that they've taken this issue seriously enough to protect consumers," said Bob Dix, a lobbyist for Citadel Security Software Inc., who until last year handled cybersecurity for a congressional subcommittee.

The private sector is under scrutiny after a string of incidents at data brokers, retailers and other businesses exposed at least half a million U.S. citizens to identity theft.

The business community for years has argued that any government regulations would quickly become outdated in a rapidly changing field, and a 2003 Bush administration plan called on the private sector to set its own standards.

Working with the Homeland Security Department, an industry-led task force issued a set of guidelines in April 2004 that called for company chief executives to take direct responsibility for their computer systems.

One year later, only two companies have adopted the guidelines: Entrust Inc. and RSA Security Inc., whose chief executives co-chaired the task force.

Corporate lawyers warned that any public security promises could open the door for lawsuits in the wake of a security breach, said Entrust CEO Bill Connor.

"Clearly people would rather be risk-averse to the legal side than risk-averse to the hacking and breaching," he said.

The Department of Homeland Security is also to blame for not promoting the guidelines after they were released, Connor said. A department spokeswoman did not return a call seeking comment.

A separate effort that took place on Capitol Hill had similar results.

Continued ...

More in Tux Machines

Wine 1.9.13 Released<

FOSS in Multimedia

  • Organize your movie and TV files with tinyMediaManager
    The trouble with video files is that they are not easily parseable. How can your computer tell whether that 8 GB file in your ~/Movies folder is the latest superhero movie, or your daughter's soccer game? I consider myself an early adopter of digital content. I prefer a digital format, and since I consume a lot of independent content that doesn't have the budget for physical releases anyway, most of my purchases are digital files. I keep these on an NFS shared drive, and stream to Kodi or ncmpcpp, or whatever media client I happen to be using on any given Linux or Android device.
  • 6 reasons why Guayadeque is a music lover's open source player
    Recently I upgraded my laptop's Linux to the latest release, and I was surprised and saddened to discover that the wonderful music player Guayadeque seems to be considered as dead upstream, at least in Debian and Ubuntu. In a January blog post, the original author Juan Rios (@anonbeat) wrote that he is no longer able to support the code, which relies on outdated version of GStreamer 0.10. (When I asked about the status of Guayadeque on AskUbuntu, someone replied that it can now be built from source using the code on GitHub, so I'm keeping my fingers crossed.)
  • Which open source audio player is your favorite?

Peppermint OS 7 Linux Distribution Officially Released Based on Ubuntu 16.04 LTS

It's a bit earlier than expected, but the Peppermint OS 7 GNU/Linux distribution has been officially unveiled today, June 24, 2016, based on the Ubuntu 16.04 LTS (Xenial Xerus) operating system. Peppermint OS 7 has been in development for the past year, and it comes as a drop-in replacement for the Peppermint Six version, which was officially released back in May 2015. It is distributed as 64-bit and 32-bit flavors for all computers, but the 64-bit one also offers complete support for UEFI/Secureboot systems. Read more

today's leftovers

  • Installing Arch Linux. Part 1
    Arch Linux is often rather challenging or scary when it comes to a newbie's first Linux experience. Some reasons you may want to go with Arch would be the Pacman package handler, or the fact that it comes with no bloat software that will allow you to truly make it your own. In the installation process, there is no GUI or "Press Next to Continue" to hold your hand. This usually drives people away. I also found the forums to have lots of impatient people who expect you to magically know what you're doing. Here I will try to provide an in depth guide on how to install and setup your own Arch Linux computer.
  • openSUSE News: openSUSE Conference Day 2
    Frank Karlitschek, founder of Nextcloud and ownCloud, talked about the importance of federation infrastructure and reaching the critical mass. He pointed out that Free Open Source Software projects that offer similar applications to those that are proprietary fail to gain mainstream acceptance. One of the reasons he gave was trying to balance the balance between privacy and openness. He suggested that more projects should work with one another on a cloud-sharing standard and perhaps there should be a Global User Directory. Users could manage their privacy data that is shared or visible on a GUD as an answer to sharing personal cloud-based content with users running different applications or services.
  • DebCamp16 day 0
  • GSoC-Journey till Mid term
  • Debian/TeX Live 2016.20160623-1
    About one month has passed since we did release TeX Live 2016, and more than a month since the last Debian packages, so it is high time to ship out a new checkout of upstream. Nothing spectacular new here, just lots and lots of updates since the freeze.
  • Raspberry Pi Stays on Top in Survey of 81 Open-Spec SBCs