Cybersecurity legislation advances in Congress

In the midst of partisan "every thing", here is one bi-partisan bill.

http://www.washingtonpost.com/blogs/checkpoint-washington/post/cybersecurity-legislation-advances-in-congress/2011/12/02/gIQAh2nBLO_blog.html

I haven't had a chance to read the relevant content. But it does look like sharing pertinent information with in reason, voluntarily is what is addressed.

When I was talking to a few CSO's, common dilema still remains. "Relevant and pertinent information" for investigative purposes still remains seemingly a herculean task. A financial or health care institution which may produce gigabytes of "log" on a daily basis will find its rather taunting to filter out the noise.

What I have seen organizations struggling is to agree on a common strategy for collection and consumption of the information leading in to detection of incidents. And investigations there after.

"The Cyber Intelligence Sharing and Protection Act of 2011 exempts private firms from liability for sharing data with the government, as well as for any failure to use that data to improve their networks. The goal, Rogers said, is to encourage the private sector and the government to exchange information that could be useful in protecting systems that are critical to the nation’s security and economic interests."

http://www.washingtonpost.com/world/national-security/cybersecurity-bill-promotes-exchange-of-data-white-house-civil-liberty-groups-fear-measure-could-harm-privacy-rights/2011/11/30/gIQAD3EPEO_story.html