"There is more than one answer to this question. First, if threats are not being reported, analyzed, and publicized in real time, then the threat information will be stale, and warnings will be ineffective. Second, it undermines confidence in protections for the reporting system. There is no guarantee that when Congress re-enacts the reporting systems, it will have the same protections as before. And the longer that the protections are absent, the greater the possibility that someone will seek to seek compensation from an entity"
"On Jan. 20, lawmakers revealed a minibus package that would provide funding for departments of Defense, Education, Health and Human Services, Homeland Security, Labor, Transportation and Housing, and Urban Development. Included in this package would be a $20 million expansion for the Cybersecurity and Infrastructure Security Agency. This would also extend the Cybersecurity Information Sharing Act (CISA). Today, Jan. 30, is the deadline for the previously extended act. Renewing it would make it active through Sept. 30."
Lawmakers proposed a Jan. 20 minibus funding package covering Defense, Education, Health and Human Services, Homeland Security, Labor, Transportation, Housing, and Urban Development, with a $20 million CISA expansion and an extension of the Cybersecurity Information Sharing Act. The CISA extension deadline is Jan. 30; renewing would extend the law through Sept. 30. Short-term, stop-and-go authorizations and temporary extensions create perpetual legal uncertainty that can deter real-time cyber threat reporting, render shared threat information stale, erode confidence in legal protections, raise potential liability, and risk permanent loss of unreported threat data.
Read at Securitymagazine
Unable to calculate read time
Collection
[
|
...
]