If CISPA Is Such A Threat, Why Is Silicon Valley Silent?

TechnoLlama, with a view from abroad:

From the start the Bill was advertised with an unhealthy dose of jingoism, its proponents sold it as a way to defend against foreign cyber-threats. While not mentioned specifically, the Act talks mostly about US intelligence agencies sharing information with private parties (with adequate security clearance) and viceversa. Checks and balances are supposedly placed on the use of that information and how it is to be stored and handled by the US government. The heavy implication here is that these threats come from abroad, or that is how the proponents sold it to the tech industry and to the media. The reality is that the final ACT is horrendously vague, and seems to create a private intelligence apparatus. My greatest concern about CISPA is that it will create surveillance sub-departments in technology companies, just like there are DMCA compliance offices everywhere.

CISPA becomes truly worrying in Sec. 1104.(b)(1), which cites the private entities that will be subject to the law. These are “cybersecurity providers” and “self-protected entities”. The definitions for these are too vague, to say the least. A cybersecurity provider is “a non-governmental entity that provides goods or services intended to be used for cybersecurity purposes.” In other words, this covers anyone who manufactures anything which can be used to secure information online, including certificate authorities and other similar security intermediaries. The clear threat here is that these intermediaries will have to snoop on their users and report back to the US federal government. Interestingly, I think that the definition clearly covers VPN and proxy providers! Similarly, a self-protected entity is “an entity, other than an individual, that provides goods or services for cybersecurity purposes to itself.” In other words, any company with antivirus software and a firewall is subject to the law. Nice piece of legislative jiggery.

Back in January, the major tech companies joined the internet hordes to stop SOPA. This time around those same companies are sitting on their hands. What gives?

Well, for starters, the two laws are very different: among other things, SOPA would have turned them into copyright cops, while CISPA simply gives them the option to pass on data if they choose.

Secondly, cyber-attacks are serious stuff for such companies. For just one example, read Stephen Levy’s In the Plex description of how the Chinese government broke into Google’s computers and stole not only code, but the Gmail messages of political dissidents. China is plundering US tech secrets on a regular basis and it’s understandable that the firms would welcome new tools to help them fight back.

Whether CISPA is the right tool is another question, of course. But the point, for now, is that CISPA doesn’t harm the self-interest of Silicon Valley companies so they have little incentive to kick up dust. (Facebook offered initial support for the goals of the bill but has since gone silent).

Finally, CISPA is not going anywhere fast. It passed the House with Republican support but is unlikely to make quick headway in a Democrat-controlled Senate, especially after the Obama administration threatened to veto it. This means the tech companies may be simply keeping their powder dry, betting that no law is going to pass until after the November election. Or maybe they just don’t care.

Either way, CISPA opponents looking for their SOPA allies to ride to the escape may have a long wait.

GigaOm’s CISPA FAQ, comparison of CISPA and SOPA and step-by-step guide to making CISPA less vile.

Auf Stumbleupon zeigen
Auf tumblr zeigen

  • CISPAisMADEUP

    THE WORLD OF CYBER THREAT MAKE BELIEVE – TO SUPPORT GOVERNMENT CONTROL.

    There are people out there to try to nuke and cranny to find any good aspic of the horrible law HR 3523 – CISPA, unfortunately, there is nothing good about the IT, other any to open the door to U.S. Government to make additional amendments to gain government control of thier people, things like to prosecute people for un-related and unfounded stuff.

    U.S. Government is already come up with a law saying tax delinquent people are a flight risk and those TSA airport staff will have to arrest those people at airports, but TSA Airport Staff is there for terrorist. Do you see my point? The U.S. Government will say anything and hope to find stupid people, usually the older generation or anyone who will believe it, using the term “Cyber Threat” which is a broad term or no such thing term. Well as a stupid people would say, “IT MUST BE RIGHT, A CONGRESSMAN IS NEVER WRONG”.

    But the only problem is, these Pay-Off Corporate Congressman (that is never wrong) have NOT supported any of their scare tactics threats with an actual attack like 9/11 to support with their fantasy to create a corporate society to control the internet and the people of the U.S.. Like the solder’s of Hong Kora War, were back to the same problem. We cannot keep fooling ourselves that the U.S. Government is not lying again with thier scare tactics for political gain. Their hope is for enough stupid people who no nothing about the internet, will come forward to believe the term “cyber threat’ with is “make believe threat’. If there is all these threat to information that can harm us (i can’t ebven belive i saying infomation can harm us, but anyway) then, give us these FACTUAL THEAT EVENTS LIKE THE WORLD TRADE CENTER COMING DOWN, But I bet you, I can make people believe that pigs can fly first – better then U.S. Congress pushing this cyber house pocus to open up a very bad Government control, police state to control “freedom of speech” and our lives.

    Yes, there are stupid people out there that believe CURUPT POWER is more accurate then FACT. BUT, FACT makes more people successfully in life than those who follow the blue collar leader, or in this case, follow the blue collar HR 3523 CISPA bill, But then again, without these types of stupid people, I would have been as successfully myself. So to all your stupid people who watch their football games and blue collar shows tuning the world out, but trying to find what only you can get out of it and believing everything your told, I will only say these “THERE IS NO SUCH THREAT OF ANY THING CALLED A ‘CYBER THEAT’ OR ANYTHING THING THREATING COMING FROM THER INTERNET / WORLD WIDE WEB, FOR THE PEOPLES INFORMATION TO BE MADE OPEN THE TO U.S. GROVERMENT.