"For Jennifer Granick, director of civil liberties at the Stanford Center for Internet and Society and a specialist in cyber law, the problem is broader. She questions the government’s whole approach to the cyber security problem.
“The diagnosis is wrong and the remedy doesn’t fit the diagnosis,” she says. “Sony Pictures gets hacked [allegedly] by North Korea, so we increase the penalties in the Computer Fraud and Abuse Act. North Korea couldn’t care less what the penalties are. It is not getting prosecuted.”
Ms Granick worries that information sharing will damage individuals’ privacy as data on internet activity could potentially be used by other areas of government. On the data breach notification, she sees the proposed Federal statute as “less protective” than existing state laws, as most US companies have to comply with the strictest state law, that in California."