[Congressional Record Volume 143, Number 84 (Tuesday, June 17, 1997)]
[Extensions of Remarks]
[Page E1232]
From the Congressional Record Online through the Government Publishing Office [www.gpo.gov]




  INTRODUCTION OF THE COMPUTER SECURITY ENHANCEMENT ACT OF 1997, H.R. 
                                  1903

                                 ______
                                 

                            HON. BART GORDON

                              of tennessee

                    in the house of representatives

                         Tuesday, June 17, 1997

  Mr. GORDON. Mr. Speaker, I am pleased to join Chairman Sensenbrenner, 
Ranking Member Brown, Chairwoman Morella and other members of the 
Committee on Science in introducing the Computer Security Act of 1997.
  Not a day that goes by that we don't see some reference to the 
Internet and the explosive growth of electronic commerce. What was 
originally envisioned as a network for defense communications and 
university researchers is now an international communications network 
of which we are just beginning to realize its potential.
  Both Office of Technology Assessment and National Research Council 
reports have identified a major obstacle to the growth of electronic 
commerce--the lack of the widespread use of encryption products. The 
bill we are introducing today is the first step to encourage the use of 
encryption products, both by Federal agencies and the private sector. 
This in turn will support the growth of electronic commerce.
  The Computer Security Enhancement Act of 1997, which amends the 
Computer Security Act of 1987 (P.L. 100-235) builds on the close 
collaboration and cooperation between the National Institute of 
Standards and Technology [NIST] and industry to develop standard 
reference materials and the standards that are key to the seamless 
commerce we take for granted today. This legislation highlights the 
need for NIST to expand its activities in the area of electronic 
commerce.
  Our legislation also strengthens the NIST's role in coordinating 
Federal agencies' effort to utilize encryption and digital 
identification products. It encourages Federal agencies to adopt and 
use commercially available encryption technologies whenever possible. 
This legislation allows NIST to evaluate the technical merit of 
industry claims of the strength of generally available foreign 
encryption products. Hopefully, this will defuse some of the tension 
surrounding the issue of export of domestic encryption products.
  Not only is this legislation consistent with the recommendations of 
the Office of Technology Assessment and the National Research Council, 
it is also in-line with a set of resolutions adopted by NIST's Computer 
System Security and Privacy Advisory Board on June 6, 1997. Finally, I 
believe this bill is consistent with the goals President's Clinton's 
upcoming policy announcement on electronic commerce.
  It has been a pleasure working with Chairwoman Morella on crafting 
this piece of legislation and I look forward to continuing to work with 
her to move this bill through the legislative process.

                          ____________________