GovTrack’s Bill Summary
We don’t have a summary available yet.
S. 2105 (112th): Cybersecurity Act of 2012
- Introduced:
- Feb 14, 2012 (112th Congress, 2011–2013)
- Sponsor:
- Sen. Joseph Lieberman [I-CT]
- Status:
- Died (Reported by Committee)
The bill’s title was written by the bill’s sponsor. S. stands for Senate bill.
- Full Title
A bill to enhance the security and resiliency of the cyber and communications infrastructure of the United States.
- Summary
-
No summaries available.
- Text
-
Last updated Feb 15, 2012.
206 pages
- Primary Source
-
View on THOMAS (The Library of Congress)
GovTrack gets most information from THOMAS, which is updated generally one day after events occur. Activity since the last update may not be reflected here.
- Citation
-
Click a format for a citation suggestion:
Library of Congress Summary
The summary below was written by the Congressional Research Service, which is a nonpartisan division of the Library of Congress.
2/14/2012--Introduced.
Cybersecurity Act of 2012 - Directs the Secretary of Homeland Security (DHS), in consultation with owners and operators of critical infrastructure, the Critical Infrastructure Partnership Advisory Council, and other federal agencies and private sector entities, to:
(1) to conduct a top-level assessment of cybersecurity risks to determine which sectors face the greatest immediate risk, and beginning with the sectors identified as having the highest priority, conduct, on a sector-by-sector basis, cyber risk assessments of the critical infrastructure;
(2) establish a procedure for the designation of critical infrastructure;
(3) identify or develop risk-based cybersecurity performance requirements; and
(4) implement cyber response and restoration plans.
Sets forth requirements for securing critical infrastructure, including notification of cyber risks and threats and reporting of significant cyber incidents affecting critical infrastructure.
Defines "critical infrastructure" as systems and assets, whether physical or virtual, so vital to the United States that the incapacity or destruction of such systems and assets would have a debilitating impact on security, national economic security, or national public health or safety.
Amends the Federal Information Security Management Act of 2002 (FISMA) to revise information security requirements for federal agencies and provide for continuous monitoring of, and streamlined reporting of, cybersecurity risks.
Amends the Homeland Security Act of 2002 to consolidate existing DHS resources for cybersecurity within a National Center for Cybersecurity and Communications. Sets forth the duties of the Center, including managing efforts to secure, protect, and ensure the resiliency of the federal information infrastructure, supporting private sector efforts to protect such infrastructure, prioritizing efforts to address the most significant risks to the information infrastructure, and ensuring privacy protections.
Requires:
(1) the DHS Secretary to implement outreach and awareness programs on cybersecurity;
(2) the DHS Secretary and the Secretary of Commerce to establish a program to identify, develop, and recruit talented individuals to work in cybersecurity;
(3) the Director of the National Science Foundation (NSF) to establish a program to stimulate innovation in basic cybersecurity research and development and to recruit and train cybersecurity professionals; and
(4) the Director of the Office of Personnel Management (OPM) to assess the readiness and capacity of the federal workforce to meet cybersecurity needs and to establish a cybersecurity awareness and education curriculum for all federal employees and contractors.
Requires the Secretary of Education to develop model curriculum standards to address cybersecurity issues for elementary school students and for students in institutions of higher education and career and technical institutions.
Requires federal agencies to adopt OPM best practices for motivating employees to demonstrate leadership in cybersecurity.
Requires the Director of the Office of Science and Technology Policy to develop a national cybersecurity research and development plan to advance the development of new technologies to protect against evolving cyberthreats.
Requires the DHS Secretary to coordinate with private sector and academic experts, the Secretaries of Defense (DOD), Commerce, and State, the Director of National Intelligence (DNI), and other federal agencies to develop and periodically update an acquisition risk management strategy to ensure the security of the federal information infrastructure.
Authorizes private entities to disclose or receive lawfully obtained cybersecurity threat information to protect an information system.
Establishes a process to designate cybersecurity exchanges for distributing, receiving, and exchanging cybersecurity threat information.
Allows a non-federal entity to disclose lawfully obtained cybersecurity threat information to an exchange.
Provides legal protections for entities engaged in cybersecurity monitoring activities, including a good faith defense.
Directs the DHS Secretary and the Secretary of Defense (DOD) to report to Congress annually on major cyber incidents involving networks of executive agencies and military departments.
Requires the Attorney General and the Director of the Federal Bureau of Investigation (FBI) to report on investigations and prosecutions of cybercrimes.
Requires the Attorney General to report on the ability of federal courts to grant timely relief in matters relating to cybercrime.
Requires the DHS Secretary to report on:
(1) available technical options to enhance the security of critical infrastructure,
(2) legal or other impediments to public awareness of cybersecurity threats, and
(3) the national security implications of a disruption of the U.S. electric grid caused by a cyber attack.
Expresses the sense of Congress with respect to engaging in international cooperation to advance U.S. cyberspace objectives and combat cybercrime.
Authorizes the Secretary of State to designate a senior State Department official to coordinate diplomatic efforts on the full range of international cyber issues.
Requires the Secretary to assess and report on significant global issues, trends, and actors with respect to cybercrime and to give priority in foreign assistance to programs designed to combat cybercrime.
House Republican Conference Summary
The summary below was written by the House Republican Conference, which is the caucus of Republicans in the House of Representatives.
No summary available.
House Democratic Caucus Summary
The House Democratic Caucus does not provide summaries of bills.
So, yes, we display the House Republican Conference’s summaries when available even if we do not have a Democratic summary available. That’s because we feel it is better to give you as much information as possible, even if we cannot provide every viewpoint.
We’ll be looking for a source of summaries from the other side in the meanwhile.
The bill contains the following citations to other parts of U.S. law:
Slip Laws
Slip laws refer to enacted bills and joint resolutions in their original form as enacted by Congress, that is, before other laws amend them. Slip laws are cited as “Public Law XXX-YYY”, where XXX is the number of the Congress in which the bill or resolution was introduced.
- Public Law 107-347:
H.R. 2458 (107th): E-Government Act of 2002
United States Code
The United States Code is the compilation of permanent laws enacted by Congress. Temporary and other non-permanent laws do not appear in the United States Code. (About half of the United States Code is the law itself, called positive law. The other half is merely a compilation of the laws but has no legal significance.)
- Title 1: GENERAL PROVISIONS
- Chapter 1: RULES OF CONSTRUCTION
- Section 1: Words denoting number, gender, and so forth
- Title 5: GOVERNMENT ORGANIZATION AND EMPLOYEES
- Part I: THE AGENCIES GENERALLY
- Chapter 1: ORGANIZATION
- Section 105: Executive agency
- Chapter 5: ADMINISTRATIVE PROCEDURE
- Subchapter II: ADMINISTRATIVE PROCEDURE
- Section 552: Public information; agency rules, opinions, orders, records, and proceedings
- Part III: EMPLOYEES
- Subpart A: General Provisions
- Chapter 23: MERIT SYSTEM PRINCIPLES
- Section 2301: Merit system principles
- Section 2302: Prohibited personnel practices
- Subpart F: Labor-Management and Employee Relations
- Chapter 71: LABOR-MANAGEMENT RELATIONS
- Subchapter I: GENERAL PROVISIONS
- Section 7103: Definitions; application
- Title 6: DOMESTIC SECURITY
- Chapter 1: HOMELAND SECURITY ORGANIZATION
- Section 101: Definitions
- Subchapter II: INFORMATION ANALYSIS AND INFRASTRUCTURE PROTECTION
- Part A: Information and Analysis and Infrastructure Protection; Access to Information
- Section 121: Information and Analysis and Infrastructure Protection
- Part B: Critical Infrastructure Information
- Section 131: Definitions
- Section 133: Protection of voluntarily shared critical infrastructure information
- Part D: Office of Science and Technology
- Section 161: Establishment of Office; Director
- Subchapter X: CONSTRUCTION
- Section 511: Information security responsibilities of certain agencies
- Title 10: ARMED FORCES
- Subtitle A: General Military Law
- Part II: PERSONNEL
- Chapter 83: CIVILIAN DEFENSE INTELLIGENCE EMPLOYEES
- Subchapter I: DEFENSE-WIDE INTELLIGENCE PERSONNEL POLICY
- Section 1601: Civilian intelligence personnel: general authority to establish excepted positions, appoint personnel, and fix rates of pay
- Section 1602: Basic pay
- Section 1603: Additional compensation, incentives, and allowances
- Part III: TRAINING AND EDUCATION
- Chapter 112: INFORMATION SECURITY SCHOLARSHIP PROGRAM
- Section 2200a: Scholarship program
- Part IV: SERVICE, SUPPLY, AND PROCUREMENT
- Chapter 137: PROCUREMENT GENERALLY
- Section 2304: Contracts: competition requirements
- Chapter 140: PROCUREMENT OF COMMERCIAL ITEMS
- Section 2377: Preference for acquisition of commercial items
- Title 15: COMMERCE AND TRADE
- Chapter 7: NATIONAL INSTITUTE OF STANDARDS AND TECHNOLOGY
- Section 271: Findings and purposes
- Section 278g: International activities
- Section 278g-3: Computer standards program
- Section 278g-4: Information Security and Privacy Advisory Board
- Chapter 81: HIGH-PERFORMANCE COMPUTING
- Subchapter II: AGENCY ACTIVITIES
- Section 5524: Department of Commerce activities
- Chapter 100: CYBER SECURITY RESEARCH AND DEVELOPMENT
- Section 7403: National Science Foundation research
- Section 7404: National Science Foundation computer and network security programs
- Section 7406: National Institute of Standards and Technology programs
- Title 18: CRIMES AND CRIMINAL PROCEDURE
- Part I: CRIMES
- Chapter 47: FRAUD AND FALSE STATEMENTS
- Section 1030: Fraud and related activity in connection with computers
- Chapter 119: WIRE AND ELECTRONIC COMMUNICATIONS INTERCEPTION AND INTERCEPTION OF ORAL COMMUNICATIONS
- Section 2510: Definitions
- Title 20: EDUCATION
- Chapter 28: HIGHER EDUCATION RESOURCES AND STUDENT ASSISTANCE
- Subchapter I: GENERAL PROVISIONS
- Part A: Definitions
- Section 1002: Definition of institution of higher education for purposes of student assistance programs
- Title 31: MONEY AND FINANCE
- Subtitle I: GENERAL
- Chapter 9: AGENCY CHIEF FINANCIAL OFFICERS
- Section 901: Establishment of agency Chief Financial Officers
- Title 40: PUBLIC BUILDINGS, PROPERTY, AND WORKS
- Subtitle III: INFORMATION TECHNOLOGY MANAGEMENT
- Chapter 113: RESPONSIBILITY FOR ACQUISITIONS OF INFORMATION TECHNOLOGY
- Subchapter III: OTHER RESPONSIBILITIES
- Section 11331: Responsibilities for Federal information systems standards
- Title 41: PUBLIC CONTRACTS
- Subtitle I: Federal Procurement Policy
- Division A: General
- Chapter 1: DEFINITIONS
- Subchapter I: SUBTITLE DEFINITIONS
- Section 103: Commercial item
- Division B: Office of Federal Procurement Policy
- Chapter 13: ACQUISITION COUNCILS
- Subchapter II: CHIEF ACQUISITION OFFICERS COUNCIL
- Section 1311: Establishment and membership
- Division C: Procurement
- Chapter 33: PLANNING AND SOLICITATION
- Section 3301: Full and open competition
- Section 3304: Use of noncompetitive procedures
- Section 3307: Preference for commercial items
- Title 42: THE PUBLIC HEALTH AND WELFARE
- Chapter 23: DEVELOPMENT AND CONTROL OF ATOMIC ENERGY
- Division A: Atomic Energy
- Subchapter I: GENERAL PROVISIONS
- Section 2014: Definitions
- Chapter 46: JUSTICE SYSTEM IMPROVEMENT
- Subchapter I: OFFICE OF JUSTICE PROGRAMS
- Section 3713d: Annual reports
- Chapter 68: DISASTER RELIEF
- Subchapter IV-B: EMERGENCY PREPAREDNESS
- Section 5195c: Critical infrastructures protection
- Title 44: PUBLIC PRINTING AND DOCUMENTS
- Chapter 35: COORDINATION OF FEDERAL INFORMATION POLICY
- Subchapter I: FEDERAL INFORMATION POLICY
- Section 3502: Definitions
- Chapter 36: MANAGEMENT AND PROMOTION OF ELECTRONIC GOVERNMENT SERVICES
- Section 3603: Chief Information Officers Council
- Title 47: TELECOMMUNICATIONS
- Chapter 5: WIRE OR RADIO COMMUNICATION
- Subchapter I: GENERAL PROVISIONS
- Section 151: Purposes of chapter; Federal Communications Commission created
- Title 50: WAR AND NATIONAL DEFENSE
- Chapter 15: NATIONAL SECURITY
- Section 401a: Definitions
- Chapter 36: FOREIGN INTELLIGENCE SURVEILLANCE
- Subchapter I: ELECTRONIC SURVEILLANCE
- Section 1801: Definitions
- Other Citations
- 44 U.S.C. 3552
- 44 U.S.C. 3554(c)
Statutes at Large
The United States Statutes at Large is the compilation of all laws enacted by Congress.
- 116 Stat. 2946
Other Citations
- 5 U.S.C. Chapter 5
- 5 U.S.C. Chapter 75
- 40 U.S.C. Chapter 113
- 44 U.S.C. Chapter 35