Yesterday, after years of contention and literally millions of grassroots messages opposing it, the US Senate passed CISA, the Cybersecurity Information Sharing Act (S. 754), by a vote of 74 – 21. The senate action comes despite broad public and private sector opposition for many reasons detailed in District Dispatch. As the NY Times reported, the move comes notwithstanding the fact that the bill would do nothing to prevent modern data breaches like those recently perpetrated by criminal rings and nation states against entities like Sony Pictures, the Office of Personnel Management or the Department of Defense’s non-classified email servers. Upon CISA’s passage, ALA released a statement by President Sari Feldman underscoring that:
“CISA won’t prevent cyberattacks like the Office of Personnel Management breach and other high-profile incidents cited by its sponsors. It will, however, weaken the privacy of millions of Americans and expose library and other computer systems to potentially damaging “defensive measures.” Sadly, with CISA, Congress has again traded civil liberty for a mirage of security.”
Prior to approving the final version of CISA, a “Manager’s Amendment” that made some improvements to the bill as introduced, the Senate also rejected a number of potentially constructive amendments. These included two that ALA and its many coalition partners particularly backed: one by Sen. Patrick Leahy (D-VT) to prevent FOIA from being weakened by adding a new and overbroad exemption, and another by Sen. Al Franken (D-MN) to better protect personal privacy by narrowing the statutory definition of what constitutes a “cyberthreat.” These proposals were rejected by 37 – 59 and 35 – 60, respectively. Two other pro-privacy amendments also were defeated.
The fight to improve CISA, though now an even more uphill battle will shift to informal talks between the House and Senate, which must reconcile their different approaches to “cybersecurity” as reflected in their disparate bills. To become law, a single bill will need to be reapproved by both chambers of Congress and signed by the President (who backed S. 754). Further action is not anticipated, however, before late this year or early 2016.
- EFF Disappointed as CISA Passes Senate
- Privacy-infringing Cyber-surveillance Bill Passes in Senate
- CISA Security Bill Passes Senate With Privacy Flaws Unfixed
- Senate Passes Dangerous Cybersecurity Information Sharing Act
Latest posts by District Dispatch (see all)
- Section 702: Advocates brace for surveillance reform fight - October 6, 2017
- Libraries again oppose unneeded, risky Section 108 update - September 29, 2017
- Copyright Office releases draft bill to change Section 108 - September 19, 2017