Advertisement
Grab your lab coat. Let's get started
Welcome!
Welcome!
Create an account below to get 6 C&EN articles per month, receive newsletters and more - all free.
It seems this is your first time logging in online. Please enter the following information to continue.
As an ACS member you automatically get access to this site. All we need is few more details to create your reading experience.
Not you? Sign in with a different account.
Not you? Sign in with a different account.
ERROR 1
ERROR 1
ERROR 2
ERROR 2
ERROR 2
ERROR 2
ERROR 2
Password and Confirm password must match.
If you have an ACS member number, please enter it here so we can link this account to your membership. (optional)
ERROR 2
ACS values your privacy. By submitting your information, you are gaining access to C&EN and subscribing to our weekly newsletter. We use the information you provide to make your reading experience better, and we will never sell your data to third party members.
Policy
Boosting Cybersecurity
Internet: Chemical industry calls for legislation to combat threat from computer hackers
by Glenn Hess
March 14, 2013
| A version of this story appeared in
Volume 91, Issue 11
The nation’s largest chemical maker is urging Congress to give companies immunity from civil and criminal liability on data exchanges that prevent the federal government and the private sector from sharing information about legitimate cyber threats.
“Large companies such as Dow are seeing an increase in the risks we face” from cyber criminals, Dow Chemical’s chief information officer, David E. Kepler, told a joint meeting of two Senate committees on March 7. Chemical companies regularly have to defend against information security threats, including corporate espionage and the theft of intellectual property, he said (C&EN, March 4, page 12). Over the past five years, Congress has struggled to reach consensus on how to boost the nation’s cybersecurity. To help fill the void, President Barack Obama issued an executive order last month that aims to improve communication between the government and private companies and establish voluntary security standards.
But Administration officials acknowledge that there are limits to what they can accomplish without action by Congress. The executive order “does not grant new regulatory authority or establish additional incentives for participation in a voluntary program,” Homeland Security Secretary Janet Napolitano said at the hearing.
Napolitano called for legislation that would expand cyber-threat information-sharing capabilities and give U.S. law enforcement agencies new tools to fight crime in the digital age.
Although many companies have developed information security defense strategies as the threat has grown in recent years, Kepler agreed that legislation is necessary to strengthen collaboration between the public and private sectors.
“I think there is a cultural issue with information sharing,” he remarked. “Government doesn’t want to share it, and business doesn’t want to share it. We have to create an environment where we can share key information about these critical threats.”
Cyber information-sharing legislation must include liability protection for businesses that share “early threat or attack information” with the government, Kepler said. Data voluntarily provided by the private sector should also be “adequately protected” from public disclosure through Freedom of Information Act requests, he told the senators.
Kepler pointed out that companies are also reluctant to share information with each other, fearing they will violate antitrust laws.
Advertisement
You might also like...
The power is now in your (nitrile gloved) hands
Sign up for a free account to get more articles. Or choose the ACS option that’s right for you.
Already have an ACS ID? Log in
Join the conversation
Contact the reporter
Submit a Letter to the Editor for publication
Engage with us on X