Cyber Security Laws

Three cyber-security laws are:

• ·         The Counterfeit Access Device and Computer Fraud and Abuse Act of 1984
• ·         The Electronic Communications Privacy Act of 1986 (ECPA)
• ·         The Computer Security Act of 1987

The Counterfeit Access Device and Computer Fraud and Abuse Act of 1984 is a cyber-security law which prohibits attacks on federal computer systems and on computers used by banks and in state and foreign commerce. This law was put into place to increase the penalties on those convicted of internet crimes on computers which have a federal or international connection.

The Electronic Communications Privacy Act of 1986 (ECPA) was enacted to prohibit the unlawful eavesdropping on electronic devises. This law helps extend restrictions on the government so now they can not only tap phones but now they can look into computers of suspected terrorists. Even though this law was established to help protect civilian rights, it’s been met with a lot of criticism. People claim that it know makes it easier for the government to monitor electronic mail of all United States citizens, and not just suspected terrorists.

The Computer Security Act of 1987 gave the National Institute of Standards and Technology (NIST) responsibility for developing security standards for federal computer systems. It was passed to improve the security and privacy of secret information in computer systems used by the government and to establish a minimum acceptable security system for each computer. It requires the creation of computer security systems and the appropriate training of system users where the systems house sensitive information.

Citation:

• Fischer, Eric. "Federal Laws Relating to Cybersecurity: Overview and Discussion of Proposed Revisions." CRS Report for Congress. n. page. Print. <http://www.fas.org/sgp/crs/natsec/R42114.pdf>.