US S1808

Bill

US S1808

Hack Your State Department Act

Introduced
06/12/2019

In Committee
06/12/2019

Crossed Over

Passed

Dead
12/31/2020

Introduced Session

116th Congress

Bill Summary

A bill to require the Secretary of State to design and establish a Vulnerability Disclosure Process to improve the Department of State cybersecurity and a bug bounty program to identify and report vulnerabilities of Internet-facing information technology of the Department of State, and for other purposes. This bill requires the Department of State to design, establish, and make publicly known a Vulnerability Disclosure Process to improve cybersecurity. In establishing the process, the State Department must identify which information technology should be included, determine whether the process should differentiate among and specify the types of security vulnerabilities that may be targeted, and provide a readily available form and means of reporting, amongst other requirements. The bill requires the State Department to establish a bug bounty pilot program, where an approved individual, organization, or company is temporarily authorized to identify and report vulnerabilities of internet-facing information technology of the State Department in exchange for compensation.

AI Summary

This bill, the "Hack Your State Department Act," requires the Department of State to design and establish a Vulnerability Disclosure Process (VDP) to improve the department's cybersecurity. The VDP will provide guidelines for security researchers to conduct vulnerability discovery activities and submit discovered vulnerabilities to the department. The bill also requires the Department of State to establish a bug bounty pilot program, which temporarily authorizes approved individuals, organizations, or companies to identify and report vulnerabilities of the department's internet-facing information technology in exchange for compensation. The bill outlines various requirements for the VDP and bug bounty program, such as identifying the relevant information technology, determining the types of vulnerabilities, and ensuring legal protections for participants.

Committee Categories

Government Affairs

Sponsors (2)

Cory Gardner (R)*, Ed Markey (D),

Last Action

Read twice and referred to the Committee on Foreign Relations. (on 06/12/2019)

Official Document

https://www.congress.gov/bill/116th-congress/senate-bill/1808/all-info

(1 Companion Bills)

Version:

Document Type	Source Location
State Bill Page	https://www.congress.gov/bill/116th-congress/senate-bill/1808/all-info
BillText	https://www.congress.gov/116/bills/s1808/BILLS-116s1808is.pdf
Bill	https://www.congress.gov/116/bills/s1808/BILLS-116s1808is.pdf.pdf

Bill > S1808

summary

Introduced Session

Bill Summary

AI Summary

Committee Categories

Sponsors (2)

Last Action

Official Document

bill text

bill summary

bill summary

bill summary