[Congressional Record Volume 149, Number 132 (Wednesday, September 24, 2003)]
[Extensions of Remarks]
[Page E1884]
From the Congressional Record Online through the Government Publishing Office [www.gpo.gov]




    INTRODUCTION OF THE ``GOVERNMENT NETWORK SECURITY ACT OF 2003''

                                 ______
                                 

                             HON. TOM DAVIS

                              of virginia

                    in the house of representatives

                     Wednesday, September 24, 2003

  Mr. TOM DAVIS of Virginia. Mr. Speaker, today Congressman Henry 
Waxman and I are introducing the ``Government Network Security Act of 
2003.'' This bill closes a loophole in the Federal Government's efforts 
to protect the security and privacy of its computers. It requires 
Federal departments and agencies to take steps to protect government 
computers and information from the risks posed by the use of peer-to-
peer file sharing programs. Peer-to-peer file sharing programs are 
Internet applications that allow users to download and directly share 
electronic files from other users on the same network. These programs 
are surging in popularity with millions of people trading music, images 
and documents over these networks at any given time.
  While most of the news coverage on file sharing focuses on the 
ability of users to illegally trade copyrighted music, movies, and 
videos, another less publicized dark side to this technology is the 
risk it poses to the security of computers and the privacy of 
electronic information. Few people recognize these risks. At a hearing 
held by the Committee on Government Reform in May, Members learned 
about the privacy and security risks created by these programs. Through 
a couple of simple searches on one file sharing program, Committee 
staff easily obtained tax returns, medical records, and confidential 
legal documents, and business files. Using these programs is similar to 
giving a complete stranger access to your personal file cabinet.
  Needless to say, file sharing programs creates a number of risks for 
Federal departments and agencies if they are installed on government 
computers. The Federal Government uses and stores a wide variety of 
classified and sensitive information, including information vital to 
national security, defense, law enforcement, economic markets, public 
health, and the environment. Government computers also contain personal 
and financial information of U.S. citizens and businesses. Installing 
these programs on government computers can expose this sensitive 
information to the public. It also creates the potential for the spread 
of viruses, worms, and other malicious computer files. The files 
downloaded using file sharing programs can also consume valuable 
network resources, which could result in a degradation of network 
performance.
  Both the House of Representatives and Senate have successfully 
addressed these risks through both technical and non-technical means 
including firewalls and employee training. This legislation would 
require the Executive Branch to take similar steps to protect its 
computers.
  File sharing technology is not inherently bad, and it may turn out to 
have a variety of beneficial applications. However, as our committee 
has learned, this technology can create serious risks for users. This 
bill takes a common sense approach to protect the computers and 
networks of the Federal Government and the valuable information they 
contain.

                          ____________________