[Dailydave] IoT bill in US congress

Charisse Castagnoli charisse at charissec.com
Fri Nov 3 17:16:19 UTC 2017 

The IoT protection part of this bill is not interesting, but the amendments to the Computer Fraud and Abuse Act and the DMCA are useful for researchers of IoT vulnerabilities

Feel free to write or call in support.

https://www.congress.gov/bill/115th-congress/senate-bill/1691/text <https://www.congress.gov/bill/115th-congress/senate-bill/1691/text>

Relevant sections:
(2) COMPUTER FRAUD AND ABUSE ACT.—Section 1030 of title 18, United States Code, is amended— <>
(A) in subsection (j)(2), by adding a period at the end; and

 <>(B) by adding at the end the following new subsection:

 <>
“(k) This section shall not apply to a person who— <>
“(1) in good faith, engaged in researching the cybersecurity of an Internet-connected device of the class, model, or type provided by a contractor to a department or agency of the United States; and

 <>“(2) acted in compliance with the guidelines required to be issued by the National Protection and Programs Directorate, and adopted by the contractor described in paragraph (1), under section 3(b) of the Internet of Things (IoT) Cybersecurity Improvement Act of 2017.”.

 <>(3) DIGITAL MILLENNIUM COPYRIGHT ACT.—Chapter 12 <http://uscode.house.gov/view.xhtml?req=granuleid:USC-prelim-title17-chapter12-front&num=0&edition=prelim> of title 17, United States Code, is amended— <>
(A) in section 1203, by adding at the end the following new subsection:

 <>
“(d) Limitation Of Liability.—A person shall not be held liable under this section if the individual— <>
“(1) in good faith, engaged in researching the cybersecurity of an Internet-connected device of the class, model, or type provided by a contractor to a department or agency of the United States; and

 <>“(2) acted in compliance with the guidelines required to be issued by the National Protection and Programs Directorate, and adopted by the contractor described in paragraph (1), under section 3(b) of the Internet of Things (IoT) Cybersecurity Improvement Act of 2017.”; and


 <>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.immunityinc.com/pipermail/dailydave/attachments/20171103/850ee6d7/attachment.html>

More information about the Dailydave mailing list