European Union

Episode 311: What the Cyberspace Solarium Report Means for the Private Sector

By Stewart Baker on April 14, 2020

Posted in Cybersecurity and Cyberwar, International, Security Programs & Policies

The Cyberspace Solarium Commission’s report was released into the teeth of the COVID-19 crisis and hasn’t attracted the press it probably deserved. But the commissioners included four sitting Congressmen who plan to push for adoption of its recommendations. And the Commission is going to be producing more material – and probably more press attention – over the coming weeks. In this episode, I interview Sen. Angus King, co-chair of the Commission, and Dr. Samantha Ravich, one of the commissioners.

We focus almost exclusively on what the Commission’s recommendations mean for the private sector. The Commission has proposed a remarkably broad range of cybersecurity measures for business. The Commission recommends a new products liability regime for assemblers of final goods (including software) who don’t promptly patch vulnerabilities. It proposes two new laws requiring notice not only of personal data breaches but also of other significant cyber incidents. It calls for a federal privacy and security law – without preemption. It updates Sarbanes-Oxley to include cybersecurity principles. And lest you think the Commission is in love with liability, it also proposed liability immunities for critical infrastructure owners operating under government supervision during a crisis. We cover all these proposals, plus the Commission’s recommendation of a new role for the Intelligence Community in providing support to critical US companies.…

Continue Reading Episode 311: What the Cyberspace Solarium Report Means for the Private Sector

Episode 301: Ratchet to Disaster

By Stewart Baker on February 24, 2020

Posted in Cybersecurity and Cyberwar, International

We interview Ben Buchanan about his new book, The Hacker and the State: Cyber Attacks and the New Normal of Geopolitics. This is Ben’s second book and second interview on the podcast about international conflict and cyber weapons. It’s safe to say that America’s strategic posture hasn’t improved. We face more adversaries with more tools and a considerably greater appetite for cyber adventurism. Ben recaps some of the stories that were undercovered in the US press when they occurred. The second large attack on Ukraine’s grid, for example, was little noticed during the US election of 2016, but it appears more ominous after a recent analysis of the tools used, and perhaps most importantly, those available to the GRU but not used. Meanwhile, the US is not making much progress in cyberspace on the basic requirement of a great power, which is making our enemies fear us.…

Continue Reading Episode 301: Ratchet to Disaster

Episode 299: The European Court of Justice Is About to Kick Off a Massive US-EU Trade War

By Stewart Baker on February 10, 2020

Posted in European Union, PCLOB, Privacy Regulation

The next trade war will be over transatlantic data flows, and it will make the fight with China look like a picnic. That’s the subject of this episode’s interview. The European Court of Justice is poised to go nuclear – to cut off US companies’ access to European customer data unless the US lets European courts and data protection agencies refashion its intelligence capabilities according to standards no European government has ever been required to meet. It is Europe in full neocolonial mode, but it has sailed below the radar, disguised as an abstruse European legal fight. Maury Shenk and I interview Peter Swire on the Schrems cases that look nearly certain to provoke a transatlantic trade and intelligence crisis. Actually, Maury interviews Peter, and I throw bombs into the conversation. But if ever there were a cyberlaw topic that deserves more bomb-throwing, this is it.…

Continue Reading Episode 299: The European Court of Justice Is About to Kick Off a Massive US-EU Trade War

Episode 296: Is CCPA short for “Law of Unintended Consequences”?

By Stewart Baker on January 21, 2020

Posted in European Union, International, Privacy Regulation, Russia

This week’s episode includes an interview with Bruce Schneier about his recent op-ed on privacy. Bruce and I are both dubious about the current media trope that facial recognition technology was spawned by the Antichrist. He notes that what we are really worried about is a lot bigger than facial recognition and offers ways in which the law could address our deeper worry. I’m less optimistic about our ability to write or enforce laws designed to restrict use of information that gets cheaper to collect, to correlate, and to store every year. It’s a good, civilized exchange.…

Continue Reading Episode 296: Is CCPA short for “Law of Unintended Consequences”?

Episode 277: Bankrupting National Security?

By Stewart Baker on September 9, 2019

Posted in China, European Union, International

Camille Stewart talks about a little-known national security risk: China’s propensity to acquire US technology through the bankruptcy courts and the many ways in which the bankruptcy system isn’t set up to combat improper tech transfers. Published by the Journal of National Security Law & Policy, Camille’s paper is available here. Camille has enjoyed great success in her young career working with the Transformative Cyber Innovation Lab at the Foundation for Defense of Democracies, as a Cybersecurity Policy Fellow at New America, and as a 2019 Cyber Security Woman of the Year, among other achievements. We talk at the end of the session about life and advancement as an African American woman in cybersecurity.

Want to hear more from Camille on this topic? She’ll be speaking Friday, September 13, at a lunch event hosted by the Foundation for Defense of Democracies. She’ll be joined by fellow panelists Giovanna Cinelli, Jamil Jaffer, and Harvey Rishikof, along with moderator Dr. Samantha Ravich. The event will be livestreamed at www.fdd.org/events. If you would like to learn more about the event, please contact Abigail Barnes at FDD. If you are a member of the press, please direct your inquiries to press@fdd.org.

…
Continue Reading Episode 277: Bankrupting National Security?

Episode 273: What it’s like to live through a big data breach

By Stewart Baker on July 22, 2019

Posted in China, Data Breach, European Union, International

Today, I interview Frank Blake, who as CEO brought Home Depot through a massive data breach. Frank’s a former co-clerk of mine, a former Deputy Secretary of Energy, and the current host of Crazy Good Turns, a podcast about people who have found remarkable, even crazy, ways to help others. In…

The Cyberlaw Podcast – News Roundup

By Brian Egan on February 20, 2018

Posted in Cybersecurity and Cyberwar, European Union, International

Episode 204: News Roundup

In our 204th episode of The Cyberlaw Podcast, the team bumbles forward without Stewart Baker, who is spending the week racing his offspring down mountain slopes somewhere in Utah. Brian Egan and Jamil Jaffer begin by covering a few implications of Special Counsel Mueller’s indictment from Friday – the legal theories…

The Global Reach of GDPR

By Maury Shenk & Stewart Baker on November 30, 2017

Posted in European Union, Privacy Regulation

The Global Reach of GDPR – Steptoe Webinar Series

As the deadline approaches for the EU General Data Protection Regulation to take effect, please join us for Part I of a Steptoe webinar series titled “The Long Arm of the New EU Data Protection Jurisdiction” on Wednesday, December 6 from 5:00 – 6:00 pm CET. …

GDPR – Are You Ready?

By Maury Shenk on September 12, 2017

Posted in European Union, International

As the deadline approaches for the EU General Data Protection Regulation to take effect, companies are asking what they need to do to ensure their HR practices are in compliance. Our London-based Employment practice offers some advice in this alert.

Steptoe Cyberlaw Podcast – Interview with Nicholas Weaver

By Stewart Baker on April 11, 2017

Posted in Data Breach, International, Privacy Regulation

Episode 159: Interview with Nicholas Weaver

Our guest interview is with Nick Weaver, of Berkeley’s International Computer Science Institute. It covers the latest dumps of hacker tools, the vulnerability equities process, the so-bad-you-want-to-cover-your-eyes story of Juniper and the Dual_EC hacks, and ends with a tour of recent computer security disasters, from the capture of…

Stewart BakerPartner

Stewart Baker’s career has spanned national security and law. He served as General Counsel of the National Security Agency, Assistant Secretary for Policy at the…

Stewart Baker’s career has spanned national security and law. He served as General Counsel of the National Security Agency, Assistant Secretary for Policy at the Department of Homeland Security, and drafter of a report reforming the intelligence community after the Iraq War. His legal practice focuses on cyber security, CFIUS, export controls, government procurement, and immigration and regulation of international travel.

Menu

Cyberblog