As the Federal Government Hardens Its Cybersecurity, It Shouldn’t Weaken the Cybersecurity of Americans
On Monday, the House of Representatives passed the “Federal Contractor Cybersecurity Vulnerability Reduction Act.” This bill will harden the government’s digital defenses. Sponsored by Reps. Nancy Mace (R-S.C.), and Shontel Brown (D-Ohio), it would require covered federal contractors to follow standards set by the National Institute for Standards and Technology for vulnerability disclosure policies.
The federal government is rightfully bolstering its cybersecurity as the world is becoming more digital. Crime, geopolitical tensions, and warfare is also becoming more digital. The essentials of staying safe go beyond locks on doors. It now requires the myriad cyber tools that keep nefarious actors out of devices. The new realities of cybersecurity apply to everyone — from government agencies, to businesses, to individual users.
As the government is improving its own cybersecurity hygiene, it should not take steps to harm that of American device users. Recent congressional sessions have seen the introduction of bills that would create security vulnerabilities. The 119th Congress should leave these failed and rejected ideas in the past.
Legislators have advanced these anti-cybersecurity policies under the guise of making the market more “fair” or promoting user choice. Setting aside the fact that they would do neither, these proposals should be rejected for their unintended effect, which is tearing down the cybersecurity protections that tech companies have built into their platforms and robbing users of the option of choosing more closed but safer systems.
Published on March 7, 2025