skip to main content

H.R. 4055: American Cybersecurity Literacy Act

The text of the bill below is as of Jun 22, 2021 (Introduced).



1st Session

H. R. 4055


June 22, 2021

(for himself, Mr. Bilirakis, Ms. Eshoo, Mr. Veasey, and Ms. Houlahan) introduced the following bill; which was referred to the Committee on Energy and Commerce


To establish a cybersecurity literacy campaign, and for other purposes.


Short title

This Act may be cited as the American Cybersecurity Literacy Act.


Sense of Congress

It is the sense of the Congress that the United States has a national security and economic interest in promoting cybersecurity literacy amongst the general public.


Establishment of cybersecurity literacy campaign


In general

The Assistant Secretary for Communications and Information shall develop and conduct a cybersecurity literacy campaign to increase the knowledge and awareness of the American people of best practices to reduce cybersecurity risks.



To reduce cybersecurity risks, the Assistant Secretary shall—


identify the critical areas of an IT system that present cybersecurity risks and educate American people on how to prevent and mitigate such attacks by—


instructing American people on how to identify—


phishing emails; and


secure websites;


instructing American people on the need to change default passwords on hardware and software technology;


encouraging the use of cybersecurity tools, including—


multi-factor authentication;


complex passwords;


firewalls; and


anti-virus software;


identifying the devices that could pose possible cybersecurity risks, including—


personal computers;






Wi-Fi routers; and


smart home appliances;


encouraging Americans to—


regularly review mobile application permissions;


decline privilege requests from mobile applications that are unnecessary;


download applications only from trusted vendors or sources; and


connect internet of things or devices to a separate and dedicated network; and


identifying the potential cybersecurity risks of using publicly available Wi-Fi networks and the methods a user may utilize to limit such risks; and


direct American people and businesses to Federal resources to help mitigate the cybersecurity risks identified in this subsection.