Members of the House Cyber security Task Force today released their 20 page recommendations for improving cyber security. The Task Force identified four issues:
1) Critical Infrastructure & Incentives
The Task Force recommended a combination of voluntary incentives and targeted and limited regulation to encourage private sector companies to improve cybersecurity.
2) Information Sharing & Public-Private Partnerships
Task Force recommended improving information sharing and developing active defense capability, develop an awareness campaign, and data breach legislation.
3) Updating Existing Cyber security Laws
Task Force members recommended updating several laws to facilitate more resilient and robust cyber security. The report includes a list of suggested updates.
4) Legal Authorities
Updating legal authorities was id enticed as one of the most complex issues related to cyber. The Task Force identified several questions such as What is the responsibility and/or authority of the federal government to defend a private business when it is attacked by cyberspace? How should we use the full range of instruments of national power and influence to discourage bad actors in cyberspace? Among others listed in the attached.
Finally the Task Force identified workforce development; recruitment, retention and training; Federal research and development; international cooperation and coordination and Internet Service Provider (ISP) Code of Conduct as longer term recommendations. The full report is available here.