Note from the Editor: The Federalist Society takes no positions on particular legal and public policy matters. Any expressions of opinion are those of the author. We welcome responses to the views presented here. To join the debate, please email us at [email protected].
American businesses and consumers now face unprecedented threats to computer security. Those threats range from the annoying (online pranksters) to the potentially lethal (hostile nation-states). To aid in the fight against these threats, Congress is currently considering amendments to the Computer Fraud and Abuse Act (CFAA), the principal federal law that criminalizes and punishes computer intrusions. In this paper, Jonathan Keim describes contemporary threats to computing security, explains the structure of the CFAA, and discusses several ways that Congress could improve the CFAA while retaining its usefulness for deterring and punishing computer intrusions.