This is just one more thing like Steve was talking about his morning. This man is unbelevable. I have news for Obama an executive order can’t gag the press like this. An Executive order IS NOT law and can not override the 1st amendment. Obama is not a King or dictator, at least not yet he isn’t.  But despite his attempt to keep it quite, not all journalist did, thank goodness. But once again Obama has it backwards. He can’t make law in the cyberworld by E.O. , Congress must pass the bill, then he signs it into law. He’s attempting to bypass Congress again, since he can’t get them to do it fast enough or as he wants. What he did is unConstitutional.

President drilled reporters not to cover secret order.

Buzz Feed reported today that Obama secretly signed a long awaited executive order on Cyber Security, then issued an embargo to all news organisations NOT to cover the developments.

The report states:

Shortly before 4:20 p.m. Tuesday, the White House emailed reporters that President Obama had signed a highly anticipated Executive Order aimed at protecting cyber security.

The order — setting up new programs aimed at stopping online espionage and terrorism — was already the law of the land, signed by the president. But it was also secret.

The document was “embargoed until delivery of the President’s in the State of the Union address” — despite the fact it had already been signed.

The report states that  there was a “background briefing on the move”, involving members of the press.

Explaining that the embargo was not legally binding ,(See they know it’s not legal or law at all with an E.O. This is probably a backdoor attempt to give Obama the internet Kill switch, which he’d love, because it would cut off truth, dissent and opposition online. Then you’d only have government control media to watch.) Buzz Feed says it chose to break it and report the story because they “thought it appropriate to report on the unusual delay”.

Buzz Feed also revealed that in an email sent out regarding the development, White House spokesman Tommy Vietor attempted to explain the secrecy behind the executive order.

“We wanted to release the EO early on an embargoed basis because the subject matter is complicated and we knew you guys would have questions. It seemed more helpful for the press corps than sending it concurrent with the speech.” the email said.

Vietor added “this isn’t unprecedented. Take for example sanctions Executive Orders. They are signed one day, go into effect at midnight but are not released until the next day.”

The secrecy over the executive order sets a precedent, given that it is usually only employed where classified information is concerned.

The White House synopsis on the Executive order reads:

According to a White House synopsis the Executive Order includes:

New information sharing programs to provide both classified and unclassified threat and attack information to U.S. companies. The Executive Order requires Federal agencies to produce unclassified reports of threats to U.S. companies and requires the reports to be shared in a timely manner. The Order also expands the Enhanced Cybersecurity Services program, enabling near real time sharing of cyber threat information to assist participating critical infrastructure companies in their cyber protection efforts.

The development of a Cybersecurity Framework. The Executive Order directs the National Institute of Standards and Technology (NIST) to lead the development of a framework of cybersecurity practices to reduce cyber risks to critical infrastructure. NIST will work collaboratively with industry to develop the framework, relying on existing international standards, practices, and procedures that have proven to be effective. To enable technical innovation, the Cybersecurity Framework will provide guidance that is technology neutral and that enables critical infrastructure sectors to benefit from a competitive market for products and service

Includes strong privacy and civil liberties protections based on the Fair Information Practice Principles. Agencies are required to incorporate privacy and civil liberties safeguards in their activities under this order. Those safeguards will be based upon the Fair Information Practice Principles (FIPPS) and other applicable privacy and civil liberties policies, principles, and frameworks. Agencies will conduct regular assessments of privacy and civil liberties impacts of their activities and such assessments will be made public.

Establishes a voluntary program to promote the adoption of the Cybersecurity Framework. The Department of Homeland Security will work with Sector-Specific Agencies like the Department of Energy and the Sector Coordinating Councils that represent industry to develop a program to assist companies with implementing the Cybersecurity Framework and to identify incentives for adoption.

Calls for a review of existing cybersecurity regulation. Regulatory agencies will use the Cybersecurity Framework to assess their cybersecurity regulations, determine if existing requirements are sufficient, and whether any existing regulations can be eliminated as no longer effective. If the existing regulations are ineffective or insufficient, agencies will propose new, cost-effective regulations based upon the Cybersecurity Framework and in consultation with their regulated companies. Independent regulatory agencies are encouraged to leverage the Cybersecurity Framework to consider prioritized actions to mitigate cyber risks for critical infrastructure consistent with their authorities.

Original article @ Buzzfeed

One of many commentors said:

Jason Thacker · Top Commenter · University of PhoenixAs someone with years of experience in IT, I can safely tell you:

You DO NOT prevent Cyber Security attacks with legislation. You prevent them with:

-Education. Talk to your people about Social Engineering. And hold them accountable.
-Firewalls.
-Secure passwords.
-filtering/preventing internet access for employees who do not absolutely need it.
-Industry Best Practices, including forced secure passwords and mandatory password resets.
-Real consequences for policy violations.

Legislation will not stop hackers. It will not convince them to quit. And it will not suddenly give the Cyber Security industry the upper hand. Hackers invent the attacks; Security firms can only ever REACT to the latest trends. Legislation will not change this.

So why legislate at all?

Control.

Obama needs to control the message. He wants us to be more like China, with a government that gets to determine what we can see, hear and read. That is the ONLY reason for legislation regarding the internet. There is no other logical reason for government legislation involving the internet at all.