Panel seeks to protect agencies from information sharing risks
The House Government Reform Committee on Thursday passed legislation to protect federal agencies from security and privacy risks posed by Internet file-sharing technology.
The bill (H.R. 3159) would require federal agencies to develop and implement a plan within six months to address threats to computer systems from downloading "peer-to-peer" file sharing programs. The panel passed the vote by voice vote.
"While most of the news coverage on file sharing focuses on the ability of users to illegally trade copyrighted music, movies, and videos, another less publicized dark side to this technology is the risk it poses to the security of computers and the privacy of electronic information," said Chairman Tom Davis, R-Va., who introduced the legislation along with ranking Democrat Henry Waxman, D-Calif.
Calling the measure "essential," Waxman argued the file-sharing technology can put at risk government records with "incredibly sensitive personal information about citizens, including tax returns, military records, and medical and psychiatric records." Waxman also mentioned the threat the software poses to national security information.
Peer-to-peer file-sharing programs have grown significantly in popularity, said Waxman, noting the most popular file-sharing technology, Kazaa, has been downloaded more than 280 million times.
Waxman also said a study underway by the General Accounting Office has even found file-sharing programs at the top-secret research laboratory at Los Alamos. A separate committee investigation found that computer users, through the use of the programs, are unknowingly sharing personal information such as tax returns, medical files and entire e-mail inboxes.
Two years ago, Congress took steps to protect its computers and networks from the privacy and security risks, he said, but federal agencies "have yet to follow suit."
While the bill would not forbid the use of file-sharing technology, the measure would require the federal agencies to create a plan that includes technology such as firewalls to address the potential privacy and security breaches. It would also require the GAO to review the plan 18 months after enactment of the bill.
"When popularly available peer-to-peer file sharing programs can threaten us with viruses and worms and put at risk the privacy of sensitive information," said Waxman, "I think that we can all agree that they have no place on government computers and networks."