UPDATE: I checked in with Langevin's spokesman Jonathan Dworkin to get the Congressman's view on the political prospects of a recently promulgated House GOP package of cybersecurity reforms - some plucked from Langevin''s own proposals. Here's the response:
He is cautiously optimistic that we can get something done, though he does not necessarily think it will be the comprehensive legislation that he would prefer, despite that being the preference of leading Senators from both parties on the issue. Still, if we can address the priorities he spoke about today, particularly critical infrastructure protections and information sharing, that would be a big step in the right direction and Langevin will not sacrifice some progress because it’s not perfect.
Below, the video from Congressman Langevin's 12-minute-44-second cybersecurity speech, delivered this morning at the Brookings Institution. Langevin put a particular focus on hardening the private sector computer networks that run so many of our vital systems - power, water and the like. From Langevin's office:
Specifically highlighting weakness in key infrastructure like the electric grid and water systems, Langevin called for a more robust public-private partnership, with government taking the lead in issuing standards and guidance for the protection of critical utilities and infrastructure. He emphasized that the rules cannot be overly prescriptive because cybersecurity is a moving target and the companies themselves have the best knowledge of the threats they face, but stronger protections must be mandated in certain sectors.“As STUXNET has shown the world, a serious attack through cyberspace is all too real a possibility, yet many companies still have not confronted this risk, focusing on reliability over security and profit over protection,” said Langevin. “Many of my colleagues and many in industry have noted the challenges of creating a new regime for protecting critical systems in cyberspace, but the urgency of this effort demands that we take action. The status quo of security through anonymity is gone. Those who would gain political, economic, or military advantage through damage or disruption to critical systems are already well aware of the technical vulnerabilities. If we cannot convince policymakers and the private sector that security must be a priority, then we will suffer the consequences.”
Here's the video: