<div dir="ltr"><div><a href="http://www.districtdispatch.org/2015/07/senate-cybersecurity-bill-attacks-civil-liberties/">http://www.districtdispatch.org/2015/07/senate-cybersecurity-bill-attacks-civil-liberties/</a></div><div><br></div><div><h1 class="name post-title entry-title" itemtype="http://schema.org/Thing" itemscope="" itemprop="itemReviewed"><span itemprop="name">Urgent: Help Rebury “Zombie” Cybersecurity Bill</span></h1><p class="post-meta"><span>Posted by: <a title="" href="http://www.districtdispatch.org/author/adameisgrau/"><font color="#4d84b3">Adam Eisgrau </font></a></span> <span>July 27, 2015</span> <span>in <a href="http://www.districtdispatch.org/category/cybersecurity/" rel="category tag"><font color="#4d84b3">Cybersecurity</font></a>, <a href="http://www.districtdispatch.org/category/legislation/" rel="category tag"><font color="#4d84b3">Legislation</font></a>, <a href="http://www.districtdispatch.org/category/ogr/" rel="category tag"><font color="#4d84b3">OGR</font></a></span> </p><div class="clear"></div><div class="entry"><p>It’s back to the “barricades” for librarians and our many civil liberties coalition allies. Just over a year ago, <a href="http://www.districtdispatch.org/2014/06/dangerous-zombie-cybersecurity-legislation-lives-senate/"><font color="#4d84b3">District Dispatch sounded the alarm</font></a> about the return of privacy-hostile “cybersecurity” or “information sharing” legislation. Again dubbed a “zombie” for its ability to rise from the legislative dead, the <a href="https://www.congress.gov/114/crpt/srpt32/CRPT-114srpt32.pdf"><font color="#4d84b3">current version of the bill</font></a> (S. 754) goes by the innocuous name of the “<a href="https://www.congress.gov/bill/114th-congress/senate-bill/754?q=%7b%22search%22%3A%5b%22\%22s754\%22%22%5d%7d"><font color="#4d84b3">Cybersecurity Information Sharing Act</font></a>” . . . but “CISA” is anything but. As detailed below, not only won’t it be effective as advertised in thwarting cyber-attacks, but it de facto grants broad new mass data collection powers to many federal, as well as state and even local, government agencies!</p><p>CISA was approved in a secret session last March by the Senate Intelligence Committee. In April, ALA and more than 50 other organizations, leading cybersecurity experts and academics called on Congress to fix its many flaws in a <a href="http://www.constitutionproject.org/wp-content/uploads/2015/04/Coaltion-Letter-Strongly-Opposing-PCNA.pdf"><font color="#4d84b3">detailed letter</font></a>. Since then, S. 754 hasn’t had a single public hearing in this Congress. Nonetheless, <a href="https://www.techdirt.com/articles/20150714/07144731632/senate-once-again-looks-to-bring-back-cisa-surveillance-expansion-bill-pretending-cybersecurity-bill.shtml"><font color="#4d84b3">Senate Majority Leader Mitch McConnell (R-KY) is pushing for a vote</font></a> on S. 754 by the full Senate right <em>now</em>, before the Senate breaks for its summer recess in a matter of days. Sadly, unless we can stop it, this dangerously and heavily flawed bill looks to be headed for passage even if not amended at all.</p><p>Touted by its supporters as a means of preventing future large-scale data breaches like the massive one just suffered by the federal government’s Office of Personnel Management, <a href="http://www.csmonitor.com/World/Passcode/2015/0612/Security-pros-Cyberthreat-info-sharing-won-t-be-as-effective-as-Congress-thinks"><font color="#4d84b3">leading security experts</font></a> argue that CISA actually won’t do much, if anything, to prevent such incursions . . . and many worry that it <a href="https://cyberlaw.stanford.edu/files/blogs/technologists_info_sharing_bills_letter_w_exhibit.pdf"><font color="#4d84b3">could make things worse</font></a>. As detailed by our compatriots at <a href="https://static.newamerica.org/attachments/2741-cybersecurity-information-sharing-act-of-2015-is-cyber-surveillance-not-cybersecurity/CISA_Cyber-Surveillance.488b3a9d2da64a27a9f6f53b38beb575.pdf"><font color="#4d84b3">New America’s Open Technology Institute</font></a> and the <a href="https://cdt.org/blog/how-the-opm-hack-demonstrates-the-need-to-improve-cisa/"><font color="#4d84b3">Center for Democracy and Technology</font></a>, what it will do is create incentives for private companies and the government to widely share huge amounts of Americans’ personally identifiable information that will itself then be vulnerable to sophisticated hacking attacks. In the process, the bill also creates massive exemptions from liability for private companies under every major consumer privacy protection law now on the books.</p><p>Your collected personal information would be shared <em>instantly</em> under the bill among many federal agencies including the Office of the Director of National Intelligence, the Department of Defense, NSA and the Department of Justice. Worse yet, it also would be shared with garden variety law enforcement entities at every level of government. None of them would be required to adequately restrict how long they can retain that personal information, or limit what kinds of <em>non-cyber</em> offenses the information acquired could be used to prosecute. If enacted, that would be a sweeping “end run” on the Fourth Amendment and, in effect, make CISA a broad new surveillance bill.</p><p>CISA also allows both the government and private companies to take rapid unilateral “countermeasures” to retaliate against perceived threats, which may disable or disrupt many computer networks, including for example a library system’s or municipal government’s, believed to be the source of a cyber-attack.</p><p>With all of its defects and dangers, it’s no wonder that CISA’s been labelled a “zombie!” Now, it’s time for librarians to rise again, too . . . to the challenge of once more stopping CISA in its tracks. This time around, ALA has partnered with more than a dozen other national groups to do it in a way so old its novel again: sending Senate offices thousands . . . of <em>faxes</em>.</p><p>Courtesy of our friends at AccessNow.org, you can join this retro campaign to protect the future of your privacy by delivering a brief, pre-written message online with just a single mouse click at <a href="http://www.stopcyberspying.com/"><font color="#4d84b3">www.stopcyberspying.com</font></a> now! (If you prefer, you’ll also have the option of writing your own message.)</p><p>Together we can stop CISA one more time, but votes could happen anytime now. Please act today!</p><p><strong> <em>Additional Information and Resources</em></strong></p><p><a href="https://www.accessnow.org/blog/2015/07/27/join-access-in-a-week-of-action-opposing-cyber-surveillance-stopcisa"><font color="#4d84b3">AccessNow.org</font></a></p><p><a href="https://www.aclu.org/search/%20?f%5b0%5d=field_issues%3A104"><font color="#4d84b3">American Civil Liberties Union</font></a></p><p><a href="https://cdt.org/issue/security-surveillance/cybersecurity-2/"><font color="#4d84b3">Center for Democracy and Technology</font></a></p><p><a href="https://www.newamerica.org/oti/cybersecurity-information-sharing-act-of-2015-is-cyber-surveillance-not-cybersecurity/"><font color="#4d84b3">New America’s Open Technology Institute</font></a></p><p><a href="https://www.stopcyberspying.com/"><font color="#4d84b3">StopCyberSpying.com</font></a></p></div></div><div><br></div><div><br></div><div><a href="http://www.districtdispatch.org/2015/07/senate-cybersecurity-bill-attacks-civil-liberties/">http://www.districtdispatch.org/2015/07/senate-cybersecurity-bill-attacks-civil-liberties/</a><br clear="all"><br>-- <br></div><div class="gmail_signature"><div><em><span style="font-family:"Comic Sans MS";font-size:10pt">Diedre Conkling</span></em><i><span style="font-family:"Comic Sans MS";font-size:10pt"><br><em><span style="font-family:"Comic Sans MS"">Lincoln County Library District</span></em><br><em><span style="font-family:"Comic Sans MS"">P.O. Box 2027</span></em><br><em><span style="font-family:"Comic Sans MS"">Newport, OR 97365</span></em><br><em><span style="font-family:"Comic Sans MS"">Phone & Fax: 541-265-3066</span></em><br><em><span style="font-family:"Comic Sans MS"">Work email</span></em></span></i><em><span style="font-family:"Comic Sans MS";font-size:10pt;font-style:normal">: </span></em><a href="mailto:diedre@lincolncolibrarydist.org" target="_blank"><i><span style="font-family:"Comic Sans MS";font-size:10pt"><font color="#0000ff">diedre@lincolncolibrarydist.org</font></span></i></a><i><span style="font-family:"Comic Sans MS";font-size:10pt"><br><em><span style="font-family:"Comic Sans MS"">Home email: </span></em></span></i><a href="mailto:diedre08@gmail.com" target="_blank"><em><span style="color:blue;font-family:"Comic Sans MS";font-size:10pt">diedre08@gmail.com</span></em></a></div>
<div> </div>
<div>
<h6>
<span>“If you don't like something, change it. If you can't change it, change your attitude.”―Maya Angelou</span><span></span></h6><span style="font-family:"Comic Sans MS";font-size:10pt"></span></div></div>
</div>