{"id":1775,"date":"2020-07-09T08:03:56","date_gmt":"2020-07-09T16:03:56","guid":{"rendered":"https:\/\/blog.mozilla.org\/netpolicy\/?p=1775"},"modified":"2020-07-09T08:03:56","modified_gmt":"2020-07-09T16:03:56","slug":"laws-designed-to-protect-online-security-should-not-undermine-it","status":"publish","type":"post","link":"https:\/\/blog.mozilla.org\/netpolicy\/2020\/07\/09\/laws-designed-to-protect-online-security-should-not-undermine-it\/","title":{"rendered":"Laws designed to protect online security should not undermine it"},"content":{"rendered":"

Mozilla, Atlassian, and Shopify yesterday filed a friend-of-the-court brief<\/a> in Van Buren v. U.S. asking the U.S. Supreme Court to consider implications of the Computer Fraud and Abuse Act for online security and privacy. <\/p>\n

Mozilla\u2019s involvement in this case comes from our interest in making sure that the law doesn\u2019t stand in the way of effective online security. The Computer Fraud and Abuse Act (CFAA) was passed as a tool to combat online hacking through civil and criminal liability. However, over the years various federal circuit courts have interpreted the law so broadly as to threaten important practices for managing computer security used by Mozilla and many others. Contrary to the purpose of the statute, the lower court’s decision in this case would take a law meant to increase security and interpret it in a way that undermines that goal.<\/p>\n

System vulnerabilities are common among even the most security conscious platforms. Finding and addressing as many of these vulnerabilities as possible relies on reporting from independent security researchers who probe and test our network. In fact, Mozilla was one of the first to offer a bug bounty program with financial rewards specifically for the purpose of encouraging external researchers to report vulnerabilities to us so we can fix them before they become widely known. By sweeping in pro-security research activities, overbroad readings of the CFAA discourage independent investigation and reporting of security flaws. The possibility of criminal liability as well as civil intensifies that chilling effect.<\/p>\n

We encourage the Supreme Court to protect strong cybersecurity by striking the lower court’s overbroad statutory interpretation.<\/p>\n","protected":false},"excerpt":{"rendered":"

Mozilla, Atlassian, and Shopify yesterday filed a friend-of-the-court brief in Van Buren v. U.S. asking the U.S. Supreme Court to consider implications of the Computer Fraud and Abuse Act for … Read more<\/a><\/p>\n","protected":false},"author":1654,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[],"coauthors":[327261],"yoast_head":"\nLaws designed to protect online security should not undermine it - Open Policy & Advocacy<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/blog.mozilla.org\/netpolicy\/2020\/07\/09\/laws-designed-to-protect-online-security-should-not-undermine-it\/\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Abigail Phillips\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"1 minute\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/blog.mozilla.org\/netpolicy\/2020\/07\/09\/laws-designed-to-protect-online-security-should-not-undermine-it\/\",\"url\":\"https:\/\/blog.mozilla.org\/netpolicy\/2020\/07\/09\/laws-designed-to-protect-online-security-should-not-undermine-it\/\",\"name\":\"Laws designed to protect online security should not undermine it - Open Policy & Advocacy\",\"isPartOf\":{\"@id\":\"https:\/\/blog.mozilla.org\/netpolicy\/#website\"},\"datePublished\":\"2020-07-09T16:03:56+00:00\",\"dateModified\":\"2020-07-09T16:03:56+00:00\",\"author\":{\"@id\":\"https:\/\/blog.mozilla.org\/netpolicy\/#\/schema\/person\/efb7bfac574531357682e85b8184c3d7\"},\"breadcrumb\":{\"@id\":\"https:\/\/blog.mozilla.org\/netpolicy\/2020\/07\/09\/laws-designed-to-protect-online-security-should-not-undermine-it\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/blog.mozilla.org\/netpolicy\/2020\/07\/09\/laws-designed-to-protect-online-security-should-not-undermine-it\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/blog.mozilla.org\/netpolicy\/2020\/07\/09\/laws-designed-to-protect-online-security-should-not-undermine-it\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/blog.mozilla.org\/netpolicy\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Laws designed to protect online security should not undermine it\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/blog.mozilla.org\/netpolicy\/#website\",\"url\":\"https:\/\/blog.mozilla.org\/netpolicy\/\",\"name\":\"Open Policy & Advocacy\",\"description\":\"Mozilla's official blog on open Internet policy initiatives and developments\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/blog.mozilla.org\/netpolicy\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/blog.mozilla.org\/netpolicy\/#\/schema\/person\/efb7bfac574531357682e85b8184c3d7\",\"name\":\"Abigail Phillips\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/blog.mozilla.org\/netpolicy\/#\/schema\/person\/image\/ae3d0de1a08650d723697e8a63065303\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/2d8998d891f12350bf52e8b0653e5ecc?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/2d8998d891f12350bf52e8b0653e5ecc?s=96&d=mm&r=g\",\"caption\":\"Abigail Phillips\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Laws designed to protect online security should not undermine it - Open Policy & Advocacy","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/blog.mozilla.org\/netpolicy\/2020\/07\/09\/laws-designed-to-protect-online-security-should-not-undermine-it\/","twitter_misc":{"Written by":"Abigail Phillips","Est. reading time":"1 minute"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/blog.mozilla.org\/netpolicy\/2020\/07\/09\/laws-designed-to-protect-online-security-should-not-undermine-it\/","url":"https:\/\/blog.mozilla.org\/netpolicy\/2020\/07\/09\/laws-designed-to-protect-online-security-should-not-undermine-it\/","name":"Laws designed to protect online security should not undermine it - Open Policy & Advocacy","isPartOf":{"@id":"https:\/\/blog.mozilla.org\/netpolicy\/#website"},"datePublished":"2020-07-09T16:03:56+00:00","dateModified":"2020-07-09T16:03:56+00:00","author":{"@id":"https:\/\/blog.mozilla.org\/netpolicy\/#\/schema\/person\/efb7bfac574531357682e85b8184c3d7"},"breadcrumb":{"@id":"https:\/\/blog.mozilla.org\/netpolicy\/2020\/07\/09\/laws-designed-to-protect-online-security-should-not-undermine-it\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/blog.mozilla.org\/netpolicy\/2020\/07\/09\/laws-designed-to-protect-online-security-should-not-undermine-it\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/blog.mozilla.org\/netpolicy\/2020\/07\/09\/laws-designed-to-protect-online-security-should-not-undermine-it\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/blog.mozilla.org\/netpolicy\/"},{"@type":"ListItem","position":2,"name":"Laws designed to protect online security should not undermine it"}]},{"@type":"WebSite","@id":"https:\/\/blog.mozilla.org\/netpolicy\/#website","url":"https:\/\/blog.mozilla.org\/netpolicy\/","name":"Open Policy & Advocacy","description":"Mozilla's official blog on open Internet policy initiatives and developments","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/blog.mozilla.org\/netpolicy\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/blog.mozilla.org\/netpolicy\/#\/schema\/person\/efb7bfac574531357682e85b8184c3d7","name":"Abigail Phillips","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/blog.mozilla.org\/netpolicy\/#\/schema\/person\/image\/ae3d0de1a08650d723697e8a63065303","url":"https:\/\/secure.gravatar.com\/avatar\/2d8998d891f12350bf52e8b0653e5ecc?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/2d8998d891f12350bf52e8b0653e5ecc?s=96&d=mm&r=g","caption":"Abigail Phillips"}}]}},"_links":{"self":[{"href":"https:\/\/blog.mozilla.org\/netpolicy\/wp-json\/wp\/v2\/posts\/1775"}],"collection":[{"href":"https:\/\/blog.mozilla.org\/netpolicy\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/blog.mozilla.org\/netpolicy\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/blog.mozilla.org\/netpolicy\/wp-json\/wp\/v2\/users\/1654"}],"replies":[{"embeddable":true,"href":"https:\/\/blog.mozilla.org\/netpolicy\/wp-json\/wp\/v2\/comments?post=1775"}],"version-history":[{"count":0,"href":"https:\/\/blog.mozilla.org\/netpolicy\/wp-json\/wp\/v2\/posts\/1775\/revisions"}],"wp:attachment":[{"href":"https:\/\/blog.mozilla.org\/netpolicy\/wp-json\/wp\/v2\/media?parent=1775"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blog.mozilla.org\/netpolicy\/wp-json\/wp\/v2\/categories?post=1775"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blog.mozilla.org\/netpolicy\/wp-json\/wp\/v2\/tags?post=1775"},{"taxonomy":"author","embeddable":true,"href":"https:\/\/blog.mozilla.org\/netpolicy\/wp-json\/wp\/v2\/coauthors?post=1775"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}