Policy Homepage

USACM Policy Brief

Computer Security

To achieve its full potential, the Internet and information infrastructure must be secure. Legislative initiatives intended to enhance information assurance should include a sustained commitment to the conduct of basic and applied research and to the development of new experts. Legal and regulatory impediments, such as the DMCA and UCITA, should not inhibit the ability of individuals to engage in critical research in computer security and advance the open interchange of information concerning computing and related disciplines. To address current shortcomings, our nation should develop a long-term view of cyber security.

USACM Activities

USACM Chair Testifies on Electronic Employment Verification Systems
USACM Chair Eugene Spafford testified on the technical challenges of expanding electronic employment verification systems before the Social Security Subcommittee of the House Ways and Means Committee. (May 6, 2008)

USACM-EC Member Testifies on privacy and security of Social Security numbers
USACM-EC member Annie Antón testified on the security and privacy of Social Security numbers before the Social Security Subcommittee of the House Ways and Means Committee. (June 21, 2007)

USACM Member Testifies on Employment Eligibility Verification System
USACM member Peter Neumann testified on a proposed electronic Employment Eligibility Verfification system before the Social Security Subcommittee of the House Ways and Means Committee. (June 7, 2007)

USACM Submits Comments on REAL ID
USACM submitted comments responding to the Department of Homeland Security's request for comment on the REAL ID Act, which imposes new guidelines for drivers license and identification cards issued by the states. (May 8, 2007)

USACM Responds to Federal Identity Theft Task Force
USACM sent a letter to the Federal Identity Theft Task Force responding to their request for comment on a variety of proposals to reduce the risk of identity theft and to better assist victims of identity theft. (January 19, 2007)

USACM Co-Chair Testifies on Cyber Security before Congress
In testimony before the House Government Reform Committee Subcommittee on Technology, Information Policy, Intergovernmental Relations and the Census, USACM Co-Chair Gene Spafford made recommendations regarding the certification of software and the role it should play in governmental acquisitions. (September 17, 2003)

USACM Co-Chair Dr. Spafford Offers Cyber Security Testimony
USACM Co-Chair Dr. Eugene Spafford offered testimony before a House Armed Services Committee Subcommittee that focused on the Department of Defense's information assurance policy, assessing potential cyber threats and defense mechanisms currently in place to counter cyber threats, and private industry efforts to address cyber security. (July 24, 2003)

ACM Fellow Lance Hoffman's testimony before the Senate Commerce Committee's Subcommittee on Science, Technology and Space on legislative efforts to enhance information security. April 24, 2002

USACM letter sent to Congressional leaders regarding concerns with the US Patriot Act. October 2001.

USACM Co-chair Eugene Spafford's testimony to the House Committee on Science regarding the role of university research in enhancing the security of our Nation's information infrastructure. October 2001

USACM memo of October 2001 to the Congressional Internet Caucus and the House and Senate Judiciary Committees making recommendations to:

Recommendations on securing the US Computing Infrastructure
Government controls on encryption
IEEE USA and USACM letter to Senator McCain on S. 909, the Secure Public Networks Act, July 3, 1997.

Other Resources

Understanding Identity and Identification
USACM Encryption Web Page
ACM Turing Awards Lecture on cryptography history by Dr. Adleman, Dr. Rivest, and Dr. Shamir
Security And Freedom through Encryption (SAFE) Act (Introduced in House)
Common Criteria for IT Security Evaluation
Generally Accepted System Security Principle

Questions? Comments? Suggestions? Email usacm_dc@acm.org.