Defense authorization bill would require contractors to report cyber breaches

The 2013 defense authorization bill would require contractors to inform the Defense Department about breaches of their networks that contain military data, reports NextGov.

If the legislation is signed into law by President Obama, it would make permanent a portion of the DOD test program begun in 2011 through which participating contractors report penetrations of their networks in exchange for access to select classified cyber threat intelligence provided by the National Security Agency, the story said.

However, the legislation does not stipulate that the NSA would have to share classified warnings of imminent threats with the contractors, the story said. 
 
Congress’s measure only states that contractors are mandated “to rapidly report” to the Defense Department each “successful penetration of the network or information systems” carrying military data, the story said. 
 
Twelve companies currently participate in the Defense Industrial Base Enhanced Cybersecurity Services program, DOD officials said in the story.


 

Reader Comments

Please post your comments here. Comments are moderated, so they may not appear immediately after submitting. We will not post comments that we consider abusive or off-topic.

Your Name:(optional)
Your Email:(optional)
Your Location:(optional)
Comment:
Please type the letters/numbers you see above