The head of U.S. Cyber Command on Wednesday argued cyberattacks on U.S. networks will increase if Congress does not pass cybersecurity legislation that would compel critical-infrastructure providers -- including nuclear-power plants -- to share more information with the government when they are hacked, the Washington Post reported.
Gen. Keith Alexander, who also directs the National Security Agency, implored attendees at a Washington conference to think of potential cyber attacks on Wall Street computing networks.
“What we can tell you is how they went down and how bad they were, but if we can’t work with industry, if we can’t share information with them, we can’t stop it,” the Post quoted him as saying at the Billington Cybersecurity Summit.
“Over 950 people were killed in Kenya, Syria, Iraq, Yemen and Afghanistan,” Alexander said, referring to violence in those countries, “and we’re discussing more esoteric things here. Why? Because we’ve stopped the terrorist attacks here.”
His comments came a day after a senior Senate Democrat said she has drafted legislation in her chamber that would be akin to the Cyber Intelligence Sharing and Protection Act, which the Republican-led House passed in April.
Senate Intelligence Committee Chairwoman Dianne Feinstein (D-Calif.) said she plans to try to advance her draft bill, according to the Hill newspaper’s technology blog.
The House-passed CISPA is intended make it easier for critical-infrastructure providers to legally share more cyber-threat data with each other and with the government, and also to encourage them to collaborate as such. The bill has been viewed by industry as a less-onerous alternative to thwarted Senate cybersecurity legislation crafted last year by former Senator Joseph Lieberman (I-Conn.) and current Senator Susan Collins (R-Maine), which the U.S. Chamber of Commerce charged would lead to excessive regulation.
How Feinstein’s potential CISPA-like bill would fare in the Senate and with President Obama remains to be seen. The White House said Obama could veto the House version of the bill, which it argued it would not significantly protect citizens’ data privacy.
Alexander made his Wednesday appeal for passing a cybersecurity measure while such legislation does not appear to be advancing in Congress. Lawmakers and cybersecurity advocates said the chance of movement has decreased even more since former NSA contractor Edward Snowden leaked intelligence documents to the media detailing the agency’s widespread surveillance activities. Some in Congress are more focused now on limiting NSA’s surveillance powers.
Alexander appealed at the Washington confab for industry to “work with us on cyber legislation.”