Defense authorization bill would require contractors to report cyber breaches
- By Defense Systems Staff
- Jan 02, 2013
The 2013 defense authorization bill would require contractors to inform the Defense Department about breaches of their networks that contain military data, reports NextGov.
If the legislation is signed into law by President Obama, it would make permanent a portion of the DOD test program begun in 2011 through which participating contractors report penetrations of their networks in exchange for access to select classified cyber threat intelligence provided by the National Security Agency, the story said.
However, the legislation does not stipulate that the NSA would have to share classified warnings of imminent threats with the contractors, the story said.
Congress’s measure only states that contractors are mandated “to rapidly report” to the Defense Department each “successful penetration of the network or information systems” carrying military data, the story said.
Twelve companies currently participate in the Defense Industrial Base Enhanced Cybersecurity Services program, DOD officials said in the story.