Trump admin will push for 'long-term' reauthorization of key cyber data-sharing law

Trump admin will push for 'long-term' reauthorization of key cyber data-sharing law

Briefly

"The Cybersecurity Information Sharing Act of 2015 temporarily expired during the 43-day government shutdown that occurred late last year, but lawmakers ultimately extended it as part of the stopgap funding bill that ended that lapse. The government funding package signed into law in early February included a provision that prolonged the statute through September 2026."

"The measure allows private sector firms to freely transmit threat intelligence to federal partners with key legal exemptions in place. Legal carve-outs were made a core feature of the original 2015 law because cyber threat information often contains sensitive data on victims and companies. To help the U.S. trace nation-state cyber intruders and criminal hackers, those datasets often need to be shared with government cybersecurity and intelligence analysts."

"Speaking at the Special Competitive Studies Project's AI+ Expo event in Washington, D.C., National Cyber Director Sean Cairncross said the Trump administration is "pushing for a long-term reauthorization" of the law. "I expect that, on the Hill, the right thing will be done over the course of time, and we will get there," Cairncross said."

"The White House's national cybersecurity strategy, which was released in March, called for enhancing communication between the public and private sectors to deter cyber threats. The same document also said the Trump administration was pursuing more offensive cyber operations against bad actors, including moving to "unleash the private sector by creating incentives to identify and disrupt adversary networks and scale our national capabilities." Cairncross said part of that overall effort includes "working on new ways to share information between the private sector and the [U.S. government] that's actionable, that's fast"