To embed, copy and paste the code into your website or blog:
[author: Brad Walz]
On September 19, 2012, Senator Klobachur introduced a bill titled “Cloud Computing Act of 2012” (the “Act”) that would amend the Computer Fraud and Abuse Act (“CFAA”). Essentially, the intent of the Act is to make it a criminal offense to access a server without authorization that is owned by a cloud provider. The Act defines a “cloud computing service” as “a service that enables convenient, on-demand network access to a shared pool of configurable computing resources (including networks, servers, storage, applications, and services) that can be rapidly provisioned and released with minimal management effort or interaction by the provider of the service.” While others have criticized the Act for this definition alone, Senator Klobachur used the definition of “cloud computing” that was developed by the National Institute of Standards and Technology, which is the generally accepted definition of “cloud computing.”
The problem with Senator Klobachur’s bill is that it adds to the already confusing CFAA without adding any meaningful protection. The Act applies to a “protected computer” that is part of a “cloud computing service.” The term “protected computer” under the CFAA already has the broadest definition possible; namely, “a computer *** which is used in or affecting interstate . . . commerce or communication.” There is no distinction made as to the location of the computer or its connectivity to other computers. By this definition, every computer connected to the Internet is a “protected computer” because as it interacts with various websites, it is being used in interstate commerce.
Cloud computing is a delivery method for software. It is not, as the Act seems to suggest, a new type of computer that the CFAA failed to account for. It is back to the drawing board for Senator Klobachur.
Topics: CFAA, Cloud Computing, Cloud Computing Act of 2012
Published In: Criminal Law Updates, Elections & Politics Updates, Science, Computers & Technology Updates
DISCLAIMER: Because of the generality of this update, the information provided herein may not be applicable in all situations and should not be acted upon without specific legal advice based on particular situations.
© Winthrop & Weinstine, P.A.
Read fresh new writing on compliance, cybersecurity, Dodd-Frank, whistleblowers, social media, hiring & firing, patent reform, the NLRB, Obamacare, the SEC…
…or whatever matters the most to you. Follow authors, firms, and topics on JD Supra.
Create your news brief now - it's free and easy »
Winthrop & Weinstine is an exciting, dynamic corporate business and commercial litigation law firm...
View Profile »
Back to Top