The White House on Thursday unveiled a long-delayed legislative proposal for cybersecurity that, among other things, calls on industries critical to the nation’s economy and security to create plans — vetted by the government — for securing their computer systems.
At the same time, the proposal places penalties on companies that fail to scrub personal identifying information from certain data shared with the government. […]
The White House has sought to develop a proposal for cybersecurity legislation that would satisfy security hawks and privacy advocates. Most notably, it has sought to win the support of the private sector, which owns and operates most of the nation’s networks.
Among other measures, the new package would create a federal data breach notification law, clarify penalties for computer crimes and set minimum penalties for intrusions into critical systems. It drew cautious praise from key lawmakers […]
Sen. John D. Rockefeller IV (D-W.Va.), chairman of the Senate Commerce Committee, said Thursday that the proposal mirrors elements of a bill that he and Sen. Olympia J. Snowe (R-Maine) introduced last year. It included a similar measure that called on critical networks, such as energy providers, to develop plans, for instance. As with the White House proposal, it provided for an independent, third-party auditor to assess the adequacy of the provider’s network security plan.