Congress

Panel votes to tighten federal website security

US Capitol

A bill to tighten controls on the way federal websites capture user information won approval from the House Oversight and Government Reform Committee on March 13.

The measure would require any federal website that collects personally identifiable information from users -- including name, date of birth, Social Security number, or financial information -- must be certified as safe and secure by the agency CIO before going live.

Agency and contractor personnel with access to personal information would have to sign a non-disclosure agreement specifically covering personal data. Additionally, government agencies would be required to take "reasonable efforts" to secure multiple domain registrations to avoid confusing site visitors. For example, the bill envisions a site such as HealthCare.gov also being available at HealthCare.com and HealthCare.org.

"When entering their personal information on a federal website, Americans should have the peace of mind that it will remain private, safe, and secure from hackers," said the bill's sponsor, Michigan Republican Rep. Kerry Bentivolio.

The bill also includes an amendment from Rep. Gerry Connolly (D-Va.) that would require agencies to notify individuals whose information may have been disclosed in a security breach within 72 hours of the incident, and to report breaches to a federal cybersecurity center.

The committee also approved a bill to end the requirement that the Government Printing Office physically print the Federal Register, while easing constraints on how agencies submit notices to the GPO for inclusion in the Federal Register.

About the Author

Adam Mazmanian is executive editor of FCW.

Before joining the editing team, Mazmanian was an FCW staff writer covering Congress, government-wide technology policy and the Department of Veterans Affairs. Prior to joining FCW, Mazmanian was technology correspondent for National Journal and served in a variety of editorial roles at B2B news service SmartBrief. Mazmanian has contributed reviews and articles to the Washington Post, the Washington City Paper, Newsday, New York Press, Architect Magazine and other publications.

Click here for previous articles by Mazmanian. Connect with him on Twitter at @thisismaz.


Featured

  • Cybersecurity

    DHS floats 'collective defense' model for cybersecurity

    Homeland Security Secretary Kirstjen Nielsen wants her department to have a more direct role in defending the private sector and critical infrastructure entities from cyberthreats.

  • Defense
    Defense Secretary James Mattis testifies at an April 12 hearing of the House Armed Services Committee.

    Mattis: Cloud deal not tailored for Amazon

    On Capitol Hill, Defense Secretary Jim Mattis sought to quell "rumors" that the Pentagon's planned single-award cloud acquisition was designed with Amazon Web Services in mind.

  • Census
    shutterstock image

    2020 Census to include citizenship question

    The Department of Commerce is breaking with recent practice and restoring a question about respondent citizenship last used in 1950, despite being urged not to by former Census directors and outside experts.

Stay Connected

FCW Update

Sign up for our newsletter.

I agree to this site's Privacy Policy.