The Cyber Security Information Sharing Act (CISA), originally introduced in July 2014 and under discussion ever since, was approved last month, after some modifications. It is now made easier for companies to share personal information with the government in case of cyber security threats in USA. The information-sharing channels in the US, created for responding quickly to hacks and breaches, along with intelligence and law enforcement agencies can now enforce surveillance without a warrant. Since the cyber security threat information is shared, it is feared that the threat indicators can be used as evidences to prosecute cyber crimes. This is being condemned as an infringement on the data privacy of individuals in USA, with the privacy advocates opposing it. With the powers vested, the President can now set up 'portals' for agencies like the FBI and National Intelligences, and all such information could be used for law enforcement investigations.
In cyber security worlds, this is being considered a significant and landmark legislation in cyber crime prevention.
It is felt that an Act with similar provisions suitable to the Indian environment should be in place in India too. Alternatively, the Cyber Crime Co-ordination Centre should be operationalised at the earliest to help speedier investigation of cyber crimes and sharing of cyber crime related information among the main stake holder government agencies. More details are available in the following link.
By V Rajendran, Editorial Team, PreSense