Cybersecurity

Our world runs on computers and the Internet. We use them for everything, from communicating with long-lost classmates to managing our bank accounts to buying anything from cars to diapers. The effort to keep these systems secure is known as cybersecurity. Unfortunately, all too often, simple, effective cybersecurity steps are not taken, like changing passwords routinely or updating and patching holes in software. Even when they are, sophisticated hackers can sometimes get around these defenses. The government is using this threat to try to expand its power and permit companies to funnel our sensitive, personal online information to it. Learn more >>

07/19/2012
Cybersecurity

New Cybersecurity Amendments Unveiled to Address Privacy Concerns

By Michelle Richardson, Legislative Counsel, ACLU Washington Legislative Office at 5:28pm

No cyber news is usually good news, but today is an exception.  Senators have unveiled significant privacy amendments that will be incorporated into S. 2105, the Cybersecurity Act.  Authored by Sens. Lieberman, Feinstein, Rockefeller and Collins, the bill provides comprehensive cybersecurity reform, including a new ‘information sharing’ program that permits companies to share internet info with each other and the government. 

Read More»
07/06/2012
Civil Liberties in the Digital Age

Friday links roundup

By Jay Stanley, Senior Policy Analyst, ACLU Speech, Privacy and Technology Project at 5:38pm

A few links that have caught our eye this past week:

Paul Rosenzweig has posted a nice piece on Lawfare on the reasons to be skeptical of the need for cybersecurity regulation. He breaks cybersecurity down into its constituent parts (as we have urged) of cybercrime, cyber espionage, and truly catastrophic “digital Pearl Harbor” attacks. He suggests that the first two do not justify regulation, and (like us) is skeptical about the degree of risk of the third. In explaining that skepticism, he provides an elegant analysis of the electric grid, the taking down of which is a frequent cyber-attack scenario, and makes the point that the pro-regulation viewpoint “mistakes vulnerability for risk”—in other words, there can be a vulnerability in a system, but still a low risk that anyone will actually be able to or try to exploit it.

Read More»
05/14/2012
Cybersecurity

Next Round in Cybersecurity Battle: The Senate

By Michelle Richardson, Legislative Counsel, ACLU Washington Legislative Office at 3:36pm

Two weeks ago, the House of Representatives passed the Cyber Intelligence Sharing and Protection Act (CISPA). But thanks to internet activism and advocacy by organizations like the ACLU and the Electronic Frontier Foundation, 168 Congressmen voted “no,” including 28 Republicans, the House Democratic leadership, and a chunk of members who sit on the Intelligence and Homeland Security Committees.

Read More»
05/01/2012
Cybersecurity

Cybersecurity Legislation and Common Sense – Still Waiting for the Two to Meet

By Zachary Katznelson, Senior Staff Attorney, ACLU National Security Project at 1:25pm

During the past two weeks, we’ve been highlighting cybersecurity and the dangers that various legislative proposals pose to our civil liberties. One major concern is the prospect of private companies sharing vast amounts of our personal information with the military and other government agencies, without a warrant or any court oversight. Much of the cybersecurity debate has been distorted by the conflation of scary stories of possible terrorist cyberattacks (scenarios that frequently fall apart when confronted by the facts) with troubling, but much lower-grade incidents of credit card and other theft. The result is a pervasive crisis atmosphere, which is then used to justify sweeping aside civil liberties in the name of security.

Read More»
04/27/2012
This Week in Civil Liberties

This Week in Civil Liberties (4/27/2012)

By Rekha Arulanantham, ACLU at 5:23pm

What law threatens the Occupy movement’s and other activists’ right to protest?

What bill recently passed by the House did the President threaten to veto because of its privacy problems?

Which court heard arguments this week regarding Arizona’s anti-immigrant bill, S.B. 1070?

In which state does U.S. citizen and ACLU plaintiff Jim Shee carry his passport at all times because the color of his skin makes him look suspicious?

Read More»
04/26/2012
Cybersecurity

Cybersecurity Myths: Beware the Hype

By Zachary Katznelson, Senior Staff Attorney, ACLU National Security Project & Jay Stanley, Senior Policy Analyst, ACLU Speech, Privacy and Technology Project at 10:01am

Much current cybersecurity discourse is inspired by a vivid and compelling image: terrorists remotely taking over dams, nuclear power plants or other critical infrastructure in order to wreak havoc and kill large numbers of Americans. In one revealing incident, congressional staffers pushing for new government powers argued that their legislation was needed to prevent cyber attackers from accessing a system that could “cause the floodgates to come open at the Hoover Dam and kill thousands of people.” There’s only one problem: officials at the Dam told reporters that “Hoover Dam and important facilities like it are not connected to the internet.” The incident shows that threat inflation combined with the power of a vivid image or narrative can override facts and drive policy. Congress should be aware of the facts before charging forward with privacy-busting legislation like the Cyber Intelligence Sharing and Protection Act.

Read More»
04/23/2012
Cybersecurity

The Political Effects of Conflating Separate Meanings of "Cybersecurity"

By Jay Stanley, Senior Policy Analyst, ACLU Speech, Privacy and Technology Project at 12:25pm

Washington is in the midst of debating something called “cybersecurity.” But that term actually includes several very separate and distinct problems that call for very different solutions. Not only does conflating them confuse the issue — it also has very distinct political consequences. So let’s unpack the separate meanings of the term.

1. Criminal and malicious online behavior
As every computer owner knows, internet security is a very real problem for individual households and businesses. The open architecture of computers and the internet has led to an explosion of innovation, collaboration, and creativity — but the very openness that has fuelled so much innovation has also made us vulnerable to viruses, spyware, and other forms of malware. These problems are endemic among home computers and among a surprising number of professionally managed institutional machines as well. Much of this is due to the failure to perform basic computer security.

Read More»
04/16/2012
CISPA

Kicking off "Stop Cyber Spying Week"

By Mandy Simon at 12:00pm

Today we're launching a weeklong campaign called "Stop Cyber Spying Week" to draw attention to the massive civil liberties problems in H.R. 3523, better known as CISPA.

Read More»
04/16/2012
On the Agenda

On the Agenda: Week of April 16 – 20, 2012

By Suzanne Ito, ACLU at 11:29am

Congress is back in session, so we've got a busy week ahead.

Today, the ACLU, along with several other groups, is launching a weeklong campaign called "Stop Cyber Spying Week" to draw attention to the massive civil liberties problems in H.R. 3523, the Cyber Intelligence Sharing and Protection Act of 2011, better known as CISPA. CISPA is scheduled to be voted on by the House of Representatives next week. Tomorrow ACLU Legislative Counsel Michelle Richardson will speak at a House Hill Briefing called "The False Choice: Cybersecurity vs. Civil Liberties."

Read More»
10/06/2011
Cybersecurity

Happy Cybersecurity Awareness Month!

By Michelle Richardson, Legislative Counsel, ACLU Washington Legislative Office at 5:50pm

We would like to educate you about how cybersecurity may justify the next series of big brother powers.

Read More»

Related

slideshow

6/18/2013
Press Conference Announcing Legal Challenge to NYPD Muslim Surveillance Program

case

6/18/2013
Raza v. City of New York - Legal Challenge to NYPD Muslim Surveillance Program

video

6/12/2013
What's NSA Surveillance Got To Do With Me?

case

6/11/2013
Al-Aulaqi v. Panetta

press

5/23/2013
ACLU Comment on President’s National Security Speech
Statistics image