Browse Definitions :
Definition

Cyber Intelligence Sharing and Protection Act of 2011 (CISPA)

Contributor(s): Stan Gibilisco

The Cyber Intelligence Sharing and Protection Act (CISPA) of 2011 is a proposed United States federal law that would allow for the sharing of Web data between the government and technology companies. Authors of the bill state that it will help the government to contend with cyberterrorism and cyberwarfare.

CISPA has garnered favor from large corporations including Symantec, Microsoft and Facebook, as well as from various government agencies, all of whom share concerns about international cybersecurity. Some people (proponents and critics alike) interpret CISPA as a second attempt at strengthening digital piracy laws after the failure of SOPA and PIPA (the Stop Online Piracy Act and the Protect IP Act). 

CISPA has been criticized by the Electronic Frontier Foundation and the American Civil Liberties Union as a threat to personal and business communications privacy. Some critics argue that a lack of clarity in the bill could lead to unjustified shutting-down of Web sites or massive eavesdropping on private communications.

CISPA was introduced on November 30, 2011 by U.S. Representative Michael Rogers (R-MI) as H.R. 3523 and was passed in the House of Representatives on April 26, 2012. The bill is in effect an amendment to the National Security Act of 1947, which contains no provisions pertaining to cybercrime.

This was last updated in June 2012

Continue Reading About Cyber Intelligence Sharing and Protection Act of 2011 (CISPA)

Start the conversation

Send me notifications when other members comment.

Please create a username to comment.

SearchCompliance

  • risk assessment

    Risk assessment is the identification of hazards that could negatively impact an organization's ability to conduct business.

  • PCI DSS (Payment Card Industry Data Security Standard)

    The Payment Card Industry Data Security Standard (PCI DSS) is a widely accepted set of policies and procedures intended to ...

  • risk management

    Risk management is the process of identifying, assessing and controlling threats to an organization's capital and earnings.

SearchSecurity

  • tokenization

    Tokenization is the process of replacing sensitive data with unique identification symbols that retain all the essential ...

  • incident response

    Incident response is an organized approach to addressing and managing the aftermath of a security breach or cyberattack, also ...

  • Federal Information Security Management Act (FISMA)

    The Federal Information Security Management Act (FISMA) is United States legislation that defines a framework of guidelines and ...

SearchHealthIT

SearchDisasterRecovery

  • call tree

    A call tree is a layered hierarchical communication model that is used to notify specific individuals of an event and coordinate ...

  • Disaster Recovery as a Service (DRaaS)

    Disaster recovery as a service (DRaaS) is the replication and hosting of physical or virtual servers by a third party to provide ...

  • cloud disaster recovery (cloud DR)

    Cloud disaster recovery (cloud DR) is a combination of strategies and services intended to back up data, applications and other ...

SearchStorage

Close