After Backlash, Commerce Says It May Revise Cybersecurity Control Rule

摘要

In the face of strong industry criticism, the Commerce Department's Bureau of Industry and Security (BIS) is signaling it will revise a proposed rule partially aimed at imposing new export controls for software, hardware and associated technology that allows users to generate, deploy and communicate with so-called intrusion software. The proposed rule would not control intrusion software itself. Intrusion software can be used to gain unauthorized access to a given network or computer to extract or modify data, but can also be used by companies to secure their networks by finding their vulnerabilities. "We are currently reviewing the public comments regarding the proposed rule," a Commerce Department spokesman said in an e-mailed statement. "In light of the high volume of comments received, it is likely we will publish a second proposed rule. We have no timetable for that action."