Risk
12/20/2011
12:43 PM
50%
50%

Obama Appoints Privacy Board Members

Board is designed to oversee privacy and civil liberties protections built into the administration's cybersecurity legislative proposal.

NASA's Next Mission: Deep Space
NASA's Next Mission: Deep Space
(click image for larger view and for slideshow)
President Obama has made three nominations to a board that will oversee the federal government's cybersecurity and counterterrorism efforts with an eye toward protecting Americans' privacy and civil liberties.

The president has appointed David Medine as chairman of the Privacy and Civil Liberties Oversight Board, and Rachel Brand and Patricia Wald as board members, according to a White House blog post by cybersecurity coordinator Howard Schmidt.

The federal government is engaged in numerous activities to gather and share information across agencies, with state and local governments, as well as with the private sector to secure U.S. cyber infrastructure from cyberattacks--terrorist or otherwise. The administration detailed a broad legislative cybersecurity proposal to support these plans in May.

[ Collaboration and research are key to plans to secure U.S. networks. See White House Sets Cybersecurity R&D Priorities. ]

The board's job is to prevent the feds' activities from violating privacy and civil liberty rights, and report to Congress the impact the activities have on these rights, according to Schmidt.

Specifically, the board will oversee the privacy and civil liberties protections built into the administration's cybersecurity legislative proposal, he said. The board also will recommend regulatory improvements or modifications to address any concerns.

"The administration firmly believes that both Board oversight and affirmative requirements for privacy policies and procedures are essential components of any legislation," Schmidt said.

The three nominees--who must be approved by Congress before their work can begin--all have notable legal backgrounds and have previously served or currently hold other positions with the federal government.

Medine is a partner in the WilmerHale law firm, focusing on privacy and data security. He was senior adviser to the White House Economic Council from 2000 to 2001.

Brand is currently chief counsel for regulatory litigation at the U.S. Chamber of Commerce, National Chamber Litigation Center. Previously, she was a private-practice attorney and also handled policy issues--including counterterrorism--as assistant attorney general for legal policy at the Department of Justice.

From 1979 until 1999, Wald served on the U.S. Court of Appeals for the District of Columbia, including a five-year stint as chief judge. Since then she has served as judge on the International Criminal Tribunal for the former Yugoslavia and a member on the President's Commission on the Intelligence Capabilities of the U.S. Regarding Weapons of Mass Destruction.

How 10 federal agencies are tapping the power of cloud computing--without compromising security. Also in the new, all-digital InformationWeek Government supplement: To judge the success of the OMB's IT reform efforts, we need concrete numbers on cost savings and returns. Download our Cloud In Action issue of InformationWeek Government now. (Free registration required.)

Comment  | 
Print  | 
More Insights
Comments
Threaded  |  Newest First  |  Oldest First
Bprince
50%
50%
Bprince,
User Rank: Ninja
12/20/2011 | 7:26:03 PM
re: Obama Appoints Privacy Board Members
Good to know that there is a designated group of people who will be looking into this. Part of the key for this though will be the level of influence they truly have over any piece of legislation.
Brian Prince, InformationWeek/Dark Reading Comment Moderator
Register for Dark Reading Newsletters
White Papers
Cartoon
Current Issue
Flash Poll
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2014-9734
Published: 2015-06-30
Directory traversal vulnerability in the Slider Revolution (revslider) plugin before 4.2 for WordPress allows remote attackers to read arbitrary files via a .. (dot dot) in the img parameter in a revslider_show_image action to wp-admin/admin-ajax.php.

CVE-2014-9735
Published: 2015-06-30
The ThemePunch Slider Revolution (revslider) plugin before 3.0.96 for WordPress and Showbiz Pro plugin 1.7.1 and earlier for Wordpress does not properly restrict access to administrator AJAX functionality, which allows remote attackers to (1) upload and execute arbitrary files via an update_plugin a...

CVE-2015-1913
Published: 2015-06-30
Rational Test Control Panel in IBM Rational Test Workbench and Rational Test Virtualization Server 8.0.0.x before 8.0.0.5, 8.0.1.x before 8.0.1.6, 8.5.0.x before 8.5.0.4, 8.5.1.x before 8.5.1.5, 8.6.0.x before 8.6.0.4, and 8.7.0.x before 8.7.0.2 uses the MD5 algorithm for password hashing, which mak...

CVE-2015-1919
Published: 2015-06-30
Cross-site scripting (XSS) vulnerability in IBM Security QRadar Incident Forensics before 7.2.5 allows remote attackers to inject arbitrary web script or HTML via a crafted URL.

CVE-2015-1923
Published: 2015-06-30
Buffer overflow in the server in IBM Tivoli Storage Manager FastBack 6.1 before 6.1.12 allows remote attackers to cause a denial of service (daemon crash) via unspecified vectors.

Dark Reading Radio
Archived Dark Reading Radio
Marc Spitler, co-author of the Verizon DBIR will share some of the lesser-known but most intriguing tidbits from the massive report