https://www.nextgov.com/cybersecurity/2018/12/senators-introduce-bill-let-hackers-reports-bugs-dhs/153337/
By Heather Kuldell
Managing Editor
Nextgov
12/06/2018
A bipartisan pair of senators introduced a bill that would require the
Homeland Security Department to create an ongoing program to allow
security experts to report bugs on agency websites.
The Public-Private Cybersecurity Cooperation Act, introduced Thursday by
Sen. Rob Portman, R-Ohio, and Maggie Hassan, D-N.H., requires Homeland
Security to create a vulnerability disclosure program so hackers can
report problems they find to the proper authorities without being
prosecuted for breaking laws like the 1986 Computer Fraud and Abuse Act.
"This bill encourages ethical hackers to come forward with information
they find about vulnerabilities in our government networks by assuring
them that if they do, they’ll have protection under the law," Hassan said
in a statement.
If enacted, Homeland Security would have to develop a remediation process
to address any reported bugs and present annual reports tracking how many
are reported, how many are fixed and how long it's taking between a flaw
being reported and being fixed. Congress also wants to know how many
people or organizations participate.
[...]
--
Subscribe to InfoSec News
https://www.infosecnews.org/subscribe-to-infosec-news/
https://twitter.com/infosecnews_
