S.1281 - Hack the Department of Homeland Security Act of 2017115th Congress (2017-2018) |
|Sponsor:||Sen. Hassan, Margaret Wood [D-NH] (Introduced 05/25/2017)|
|Committees:||Senate - Homeland Security and Governmental Affairs | House - Homeland Security|
|Committee Reports:||S. Rept. 115-209|
|Latest Action:||House - 04/18/2018 Referred to the House Committee on Homeland Security. (All Actions)|
This bill has the status Passed Senate
Here are the steps for Status of Legislation:
- Passed Senate
- Passed House
- To President
- Became Law
Summary: S.1281 — 115th Congress (2017-2018)All Information (Except Text)
Introduced in Senate (05/25/2017)
Hack the Department of Homeland Security Act of 2017 or the Hack DHS Act
This bill directs the Department of Homeland Security (DHS) to establish a bug bounty pilot program to minimize vulnerabilities to DHS information systems.
"Bug bounty program" is a program under which an approved computer security specialist or security researcher is temporarily authorized to identify and report vulnerabilities within DHS information systems in exchange for cash payment.
Under such program, DHS shall:
- provide monetary compensation for reports of previously unidentified security vulnerabilities within the websites, applications, and other DHS information systems that are accessible to the public;
- develop an expeditious process by which computer security researchers can register with DHS, submit to a background check, and receive a determination as to approval for program participation;
- designate mission-critical operations within DHS that should be excluded;
- consult with the Department of Justice on how to ensure that program participants are protected from prosecution for activities authorized under the program;
- award competitive contracts to manage the program and for executing the remediation of identified vulnerabilities; and
- engage interested persons, including commercial sector representatives, about the structure of the program.