{"id":38443,"date":"2023-03-05T13:54:36","date_gmt":"2023-03-05T19:54:36","guid":{"rendered":"https:\/\/huewhite.com\/umb\/?p=38443"},"modified":"2023-03-05T13:54:36","modified_gmt":"2023-03-05T19:54:36","slug":"finally-2","status":"publish","type":"post","link":"https:\/\/huewhite.com\/umb\/2023\/03\/05\/finally-2\/","title":{"rendered":"Finally!"},"content":{"rendered":"<p>Long-time readers may recall my advocacy for this proposed change to the law insofar as software warranties, or lack thereof, go, as <a href=\"https:\/\/www.lawfareblog.com\/cybersecuritys-third-rail-software-liability\" target=\"_blank\" rel=\"noopener\">reported<\/a> by Jim Dempsey of <strong><em>UC Berkeley Law School<\/em><\/strong>:<\/p>\n<blockquote><p>Well, they\u2019ve done it. The Biden administration\u2019s new <a href=\"https:\/\/www.whitehouse.gov\/wp-content\/uploads\/2023\/03\/National-Cybersecurity-Strategy-2023.pdf\">National Cybersecurity Strategy<\/a> takes on the third rail of cybersecurity policy: software liability. For decades, <a href=\"https:\/\/digitalcommons.law.umaryland.edu\/mlr\/vol67\/iss2\/5\/\">scholars<\/a> and <a href=\"https:\/\/www.nytimes.com\/2003\/10\/06\/business\/product-liability-lawsuits-are-new-threat-to-microsoft.html\">litigators<\/a> have been talking about imposing legal liability on the makers of insecure software. But the objections of manufacturers were too strong, concerns about impeding innovation were too great, and the <a href=\"https:\/\/www.lawfareblog.com\/challenge-software-liability\">conceptual difficulties<\/a> of the issue were just too complex. So today software licenses and user agreements continue to disclaim liability, whether the end user is a consumer or an operator of critical infrastructure. With this new strategy, the administration proposes changing that.<\/p>\n<p>The strategy\u2019s discussion of the issue starts with an incontrovertible point: \u201c[M]arket forces alone have not been enough to drive broad adoption of best practices in cybersecurity and resilience.\u201d Indeed, the strategy goes on to note, market forces often reward those entities that rush to introduce vulnerable products or services into our digital ecosystem. Problems include the shipping of products with insecure default configurations or known vulnerabilities and the integration of third-party software with unvetted or unknown features. End users are left holding the bag, and the entire ecosystem suffers, with U.S. citizens ultimately bearing the cost.<em> [<strong>Lawfare<\/strong>]<\/em><\/p><\/blockquote>\n<p>The analogy drawn to the early days of the auto industry was fascinating as well, as its history of which I was unaware.<\/p>\n<p>Another reason to be happy with the Biden Administration.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Long-time readers may recall my advocacy for this proposed change to the law insofar as software warranties, or lack thereof, go, as reported by Jim Dempsey of UC Berkeley Law School: Well, they\u2019ve done it. The Biden administration\u2019s new National Cybersecurity Strategy takes on the third rail of cybersecurity policy: \u2026 <a class=\"continue-reading-link\" href=\"https:\/\/huewhite.com\/umb\/2023\/03\/05\/finally-2\/\"> Continue reading <span class=\"meta-nav\">&rarr; <\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"nf_dc_page":"","_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[1],"tags":[],"class_list":["post-38443","post","type-post","status-publish","format-standard","hentry","category-uncategorized"],"jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/huewhite.com\/umb\/wp-json\/wp\/v2\/posts\/38443","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/huewhite.com\/umb\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/huewhite.com\/umb\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/huewhite.com\/umb\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/huewhite.com\/umb\/wp-json\/wp\/v2\/comments?post=38443"}],"version-history":[{"count":1,"href":"https:\/\/huewhite.com\/umb\/wp-json\/wp\/v2\/posts\/38443\/revisions"}],"predecessor-version":[{"id":38444,"href":"https:\/\/huewhite.com\/umb\/wp-json\/wp\/v2\/posts\/38443\/revisions\/38444"}],"wp:attachment":[{"href":"https:\/\/huewhite.com\/umb\/wp-json\/wp\/v2\/media?parent=38443"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/huewhite.com\/umb\/wp-json\/wp\/v2\/categories?post=38443"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/huewhite.com\/umb\/wp-json\/wp\/v2\/tags?post=38443"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}