Well consider me surprised this morning to read the if DHS thinks the Senate’s cyber security information sharing bill is terrible then why is it moving? (emphasis added)
What do numerous privacy groups, civil liberties organizations, open government advocates, free market proponents, technologists, and the Department of Homeland Security have in common? Deep concern about the Cybersecurity Information Sharing Act, or “CISA,” a bill expected to come to a vote this week in the Senate.
As we’ve said before, CISA is the latest attempt to pass a bill that would give companies broad legal protections when they share personal information with the government and then allow the government to use that information for surveillance.
Now even DHS is joining the chorus of experts who agree that CISA is terrible. In a letter responding to questions from Sen. Al Franken (D-Minn.), DHS warned of the ways CISA could harm privacy and increase “complexity and difficulty” in responding to cybersecurity threats. In fact, the letter confirmed virtually all of our concerns about the bill:
CISA won’t improve cybersecurity
DHS already has a central hub created to promote sharing of cyber threats between private industry and the government. CISA would make this system less effective.
Because CISA bypasses all privacy laws and allows companies to share cyber threat information, which could include personal data and communications, with “any federal entity,” it would actually make the job of keeping track of real cyber threats difficult. CISA would “limit the ability of DHS to connect the dots and proactively recognize emerging risks,” according to the letter.
Add this to the already overwhelming evidence that CISA makes Americans’ online data less secure by making the government an even more tempting target for hackers.