Debate Club

CISPA Not the Right Way to Achieve Cybersecurity

By + More

There is a need for cybersecurity legislation, but CISPA—an overly broad bill that lacks restrictions on government abuse—is not the right way to achieve it.

[Read: Civil Liberties Organizations Launch Protests Against CISPA]

CISPA allows companies to voluntarily share information pertaining to suspected attacks on their networks with other companies and the government. Operators of networks have said they need clearer legal authority to share this information. However, there are three major problems with how CISPA would allow Internet users' information to be shared and used.

  1. CISPA has an almost unlimited definition of what user information can be shared with the government. This definition should be narrowed to apply only to actual cyberattacks or threats.
  2. CISPA would allow companies to share Internet users' information directly with the National Security Agency. The National Security Agency is a super-secret agency with the dual roles of intelligence collection and protecting U.S. government networks. Entrusting the agency with private online communications also means trusting it not to use this information for intelligence purposes unrelated to cybersecurity. Once our information goes to the NSA, there will be little meaningful oversight of what the agency does with it. Information should instead go to the Department of Homeland Security, a civilian agency that will provide more accountability to the public for failure or abuse.
  3. CISPA would allow information shared with the government to be used for purposes unrelated to cybersecurity, including law enforcement purposes—this has the potential to turn cybersecurity into a new surveillance program.

[Read the U.S. News debate: Should Congress Pass Anti-Online Piracy Legislation?]

On top of this, CISPA supersedes all other privacy laws. If privacy protections for Internet users aren't built into the bill, they simply don't exist.

Legislation that secures networks can be achieved without posing these threats—an important first step is to narrow the language.

The authors of CISPA have made some positive changes recently. Unfortunately, none of the changes gets to the heart of the privacy concerns that Internet users and advocacy groups have expressed. The Center for Democracy & Technology is still hopeful that major problems with the bill can be addressed before it goes to a vote next week—if they aren't, Congress should reject CISPA.

Kendall Burman

About Kendall Burman Senior National Security Fellow at the Center for Democracy & Technology


Other Arguments

210 Pts
CISPA Is Dangerously Vague

No – CISPA Is Dangerously Vague

Rainey Reitman Activism Director for the Electronic Frontier Foundation

154 Pts
CISPA Lacks Protections for Individual Rights

No – CISPA Lacks Protections for Individual Rights

Sharon Bradford Franklin Senior Counsel at the Constitution Project

-126 Pts
CISPA Will Improve U.S. Cybersecurity

Yes – CISPA Will Improve U.S. Cybersecurity

Matthew Eggers Senior Director of National Security and Emergency Preparedness for the U.S. Chamber of Commerce

-138 Pts
CISPA Effectively Addresses Threat of Cybercrime

Yes – CISPA Effectively Addresses Threat of Cybercrime

Cordell Carter Vice President of the Business Roundtable.

-138 Pts
CISPA Is a Model of Bipartisan Legislating

Yes – CISPA Is a Model of Bipartisan Legislating

James K. Conzelman President & CEO of The Ripon Society.

-140 Pts
Mike Rogers: CISPA Defends America From Internet Predators

Yes – Mike Rogers: CISPA Defends America From Internet Predators

Mike Rogers Chairman of the House Permanent Select Committee on Intelligence

You Might Also Like

See More