IN THE SENATE OF THE UNITED STATES
May 13, 2020
Mr. Wicker (for himself, Ms. Rosen, and Mr. Gardner) introduced the following bill; which was read twice and referred to the Committee on Commerce, Science, and Transportation
To require the Secretary of Commerce to establish national cybersecurity grand challenges, and for other purposes.
This Act may be cited as the
Cybersecurity Competitions to Yield Better Efforts to Research the Latest Exceptionally Advanced Problems Act of 2020 or the
Cyber Leap Act of 2020.
National Cybersecurity Grand Challenges
Title II of the Cybersecurity Enhancement Act of 2014 (15 U.S.C. 7431 et seq.) is amended by adding at the end the following:
National Cybersecurity Grand Challenges
Establishment of national cybersecurity grand challenges
To achieve high-priority breakthroughs in cybersecurity by 2028, the Secretary of Commerce shall establish the following national cybersecurity grand challenges:
Economics of a cyber attack
Building more resilient systems that measurably and exponentially raise adversary costs of carrying out common cyber attacks.
Empowering the people of the United States with an appropriate and measurably sufficient level of digital literacy to make safe and secure decisions online.
Developing a cybersecurity workforce with measurable skills to protect and maintain information systems.
Advancing cybersecurity efforts in response to emerging technology, such as artificial intelligence, quantum science, and next generation communications technologies.
Reimagining digital identity
Maintaining a high sense of usability while improving the security and safety of online activity of individuals in the United States.
Federal agency resilience
Reducing cybersecurity risks to Federal networks and systems, and improving the response of Federal agencies to cybersecurity incidents on such networks and systems.
Such other challenges as the Secretary of Commerce considers appropriate to achieve high-priority breakthroughs in cybersecurity.
In carrying out paragraph (1), the Secretary shall consider the recommendations set forth in the report of the National Security Telecommunications Advisory Committee entitled
NSTAC Report to the President on a Cybersecurity Moonshot and dated November 14, 2018.
Pursuit of national cybersecurity grand challenges
Not later than 180 days after the date of the enactment of the Cybersecurity Competitions to Yield Better Efforts to Research the Latest Exceptionally Advanced Problems Act of 2020, the Secretary, acting through the Under Secretary of Commerce for Standards and Technology, shall commence efforts to pursue the national cybersecurity grand challenges established under subsection (a).
The efforts required by paragraph (1) shall include carrying out programs to award prizes, including cash and noncash prizes, competitively pursuant to the authorities and processes established under section 24 of the Stevenson-Wydler Technology Innovation Act of 1980 (15 U.S.C. 3719) or any other applicable provision of law.
In carrying out paragraph (1), the Secretary may enter into and perform such other transactions as the Secretary considers necessary and on such terms as the Secretary considers appropriate.
In pursuing national cybersecurity grand challenges under paragraph (1), the Secretary shall coordinate with the following:
The Director of the National Science Foundation.
The Director of the Cybersecurity and Infrastructure Security Agency.
The Director of the Defense Advanced Research Projects Agency.
The Director of the Office of Science and Technology Policy.
The Director of the Office of Management and Budget.
The Administrator of the General Services Administration.
The Federal Trade Commission.
The heads of such other Federal agencies as the Secretary of Commerce considers appropriate for purposes of this section.
Solicitation of acceptance of funds
Pursuant to section 24 of the Stevenson-Wydler Technology Innovation Act of 1980 (15 U.S.C. 3719), the Secretary shall request and accept funds from other Federal agencies, State, United States territory, local, or tribal government agencies, private sector for-profit entities, and nonprofit entities to support efforts to pursue a national cybersecurity grand challenge under this section.
In carrying out this section, the Secretary of Commerce shall designate an advisory council to seek recommendations.
The recommendations required by paragraph (1) shall include the following:
A scope for efforts carried out under subsection (b).
Metrics to assess submissions for prizes under competitions carried out under subsection (b) as the submissions pertain to the national cybersecurity grand challenges established under subsection (a).
Section 201(a)(1) of such Act is amended—
in subparagraph (J), by striking
; and and inserting a semicolon;
by redesignating subparagraph (K) as subparagraph (L); and
by inserting after subparagraph (J) the following:
implementation of section 205 through research and development on the topics identified under subsection (a) of such section; and
The table of contents in section 1(b) of such Act is amended by inserting after the item relating to section 204 the following:
Sec. 205. National Cybersecurity Grand Challenges.