An updated “Vulnerabilities Equities Policy and Process for the United States Government” charter was released on 15 NOV 2017 and describes the decision-making process for determining whether new vulnerabilities found by US government departments and agencies are disclosed or restricted. According to the White
On 18 August 2017, President Trump announced that the United Stated Cyber Command will be elevated to Unified Combatant Command status. Read the official White House statement. Source: The White House, Statement by President Donald J. Trump on the Elevation of Cyber Command
Executive Order on Strengthening the Cybersecurity of Federal Networks and Critical Infrastructure President Trump’s Executive Order on Cybersecurity expands upon earlier legislation, orders numerous reports to assess federal agencies’ current security policies, moves to modernize federal IT systems by transitioning to consolidated network infrastructures and
Presidential Executive Order on Strengthening the Cybersecurity of Federal Networks and Critical Infrastructure, May 11, 2017
Source: https://threatpost.com/white-house-hires-first-federal-ciso/120471/, https://www.whitehouse.gov/blog/2016/09/08/announcing-first-federal-chief-information-security-officer(ThreatPost, The White House) In February President Obama announced a Cybersecurity National Action Plan (CNAP). One of the key features of this plan was the creation of the first Chief Information Security Officer (CISO) to drive cybersecurity policy, planning, and implementation across the federal
Source: https://threatpost.com/privacy-activists-cheer-passage-of-email-privacy-act-brace-for-senate-battle/117731/ A completely unanimous vote was given for the passing of the Email Privacy Act. Privacy advocates are celebrating this as a win for U.S. citizens and companies. H.R. 699 is meant to reform the old Electronic Communications Privacy Act. H.R. 699 will require a
Source: https://threatpost.com/car-industry-three-years-behind-todays-cyber-threats/116524/ US SPY Car Act of 2015: https://www.congress.gov/bill/114th-congress/senate-bill/1806/all-info Veracode recently reported on the need of the automobile industry to secure their smart car systems. 50% of the people they polled (1,072 drivers in the UK and Germany) were very concerned about the security of their smart car
Sources: https://threatpost.com/white-house-wants-to-renegotiate-u-s-implementation-of-wassenaar/116531/ http://www.theverge.com/2015/7/20/9005351/google-wassenaar-arrangement-proposal-comments http://thehill.com/regulation/cybersecurity/248579-cyber-industry-assails-anti-hacking-regulations The Wassennaar Arrangement is a deal meant to control the exportation of conventional firearms, dual-use goods, and dual-use technologies. The cybersecurity problem that this creates is the fact that the wording of a particular section of the arrangement is too broad.
Posted February 29, 2016 Sources: http://thehill.com/policy/cybersecurity/271233-us-eu-face-blowback-on-data-deal http://fortune.com/2016/02/29/privacy-shield-details/ http://www.computerworld.com/article/3038690/data-privacy/eu-adds-detail-to-privacy-shield-agreement-prepares-to-give-it-force-of-law.html http://arstechnica.com/tech-policy/2016/02/privacy-shield-doomed-from-get-go-nsa-bulk-surveillance-waved-through/ http://fortune.com/2016/02/25/safe-harbor-crackdown/?mod=djemRiskCompliance A new deal between the United States and the EU is currently under review. The agreement consists of policies to protect and enforce the protection of EU customer data that gets transferred to US entities.
Source: https://www.congress.gov/bill/114th-congress/house-bill/1560 HR 1560 will allow companies to share cyber defense information with other businesses and the government without falling under Anti-trust laws. There have been complaints that the current version of this bill removed certain privacy protection sections. This bill has also passed the