In June, Rep Nunn (R,IA) introduced H 4387, the Cybersecurity in Agriculture Act of 2023. The bill would require the National Institute of Food and Agriculture (NIFA) to establish five Regional Agriculture Cybersecurity Centers (RACC) to carry out research, development, and education on agriculture cybersecurity. The bill would authorize $25 million in annual spending to support the Centers through 2028.
Moving Forward
Both Dunn and his sole cosponsor {Rep Davis (D,NC)} are members of the House Agriculture Committee to which this bill was assigned for consideration. This means that their may be sufficient influence to see the bill considered in Committee. I suspect that there would be some level of bipartisan support for the bill in Committee, but the new spending will run afoul of efforts of the Republican 11 to radically reduce spending. The bill might be able to clear the Committee, but I doubt that there would be enough influence to see the bill overcome that objection and move to the floor of the House. I suspect that the bill could pass with bipartisan support if it were considered by the full House.
Commentary
There is one major deficiency in this bill, it lacks any
mention of cybersecurity vulnerabilities in agricultural systems. The RACCs
should be conducting vulnerability research, act as vulnerability disclosure
coordinators for agricultural systems, and coordinate with CISA’s NCCIC in
publishing advisories about reported vulnerabilities.
For more details about the provisions of the bill, including
proposed additional vulnerability language, see my article at CFSN Detailed
Analysis - https://patrickcoyle.substack.com/p/hr-4387-introduced
- subscription required.
Posts
No comments:
Post a Comment