Cyber Proposal

The White House today sent Congress a highly anticipated legislative proposal that addresses the federal government's cybersecurity strategy and authorities.

The proposal puts the Department of Homeland Security squarely in the lead in protecting the nation's critical infrastructure and federal computers and networks, leaving a supporting role for the Defense Department and other agencies.

A senior White House official was asked during a conference call with reporters whether the administration's proposal would change U.S. Cyber Command's lack of authority to defend private infrastructure against an attack from abroad.

“DHS has long been the primary organization working with the private sector for a long time, but drawing on the positive resource we have in the rest of government, including DOD, Department of Energy, Department of the Treasury,” the official replied. “Consequently, we think this is the best way forward and also gives us the authority to help the private sector in all various circumstances.”

The proposal had been anticipated by lawmakers as a response to Senate cybersecurity legislation, which calls for President Obama to “assess cyber risks and prevent, detect, and robustly respond to cyber attacks against the government and military”and “incentivize the private sector to quantify, assess and mitigate cyber risks to their communications and information networks.” Those responsibilities fall primarily to DHS in both the White House and Senate proposals.

The Pentagon is due to release a new cybersecurity strategy, known as Cyber 3.0, in the coming weeks. It is expected to coordinate DOD's initiatives across the defense agencies and with international partners.