Three cyber-security laws are:
- · The Counterfeit Access Device and Computer Fraud and Abuse Act of 1984
- · The Electronic Communications Privacy Act of 1986 (ECPA)
- · The Computer Security Act of 1987
The Counterfeit Access Device and
Computer Fraud and Abuse Act of 1984 is a cyber-security law which prohibits
attacks on federal computer systems and on computers used by banks and in state
and foreign commerce. This law was put into place to increase the penalties on
those convicted of internet crimes on computers which have a federal or
international connection.
The Electronic Communications
Privacy Act of 1986 (ECPA) was enacted to prohibit the unlawful eavesdropping
on electronic devises. This law helps extend restrictions on the government so
now they can not only tap phones but now they can look into computers of
suspected terrorists. Even though this law was established to help protect
civilian rights, it’s been met with a lot of criticism. People claim that it
know makes it easier for the government to monitor electronic mail of all
United States citizens, and not just suspected terrorists.
The Computer Security Act of 1987
gave the National Institute of Standards and Technology (NIST) responsibility
for developing security standards for federal computer systems. It was passed
to improve the security and privacy of secret information in computer systems used
by the government and to establish a minimum acceptable security system for each
computer. It requires the creation of computer security systems and the
appropriate training of system users where the systems house sensitive
information.
Citation:
- Fischer, Eric. "Federal Laws Relating to Cybersecurity: Overview and Discussion of Proposed Revisions." CRS Report for Congress. n. page. Print. <http://www.fas.org/sgp/crs/natsec/R42114.pdf>.
