Bill Overview
Title: Defense of United States Infrastructure Act of 2021
Description: This bill sets out programs and requirements related to critical infrastructure and cybersecurity threats, including (1) a pilot program to enable federal and nonfederal entities to share information in order to prevent, identify, and mitigate cyber threats; (2) reporting about the federal government's efforts to support security certifications for information technology; and (3) a working group to develop a strategy for implementing security measures for foundational internet protocols.
Sponsors: Sen. King, Angus S., Jr. [I-ME]
Target Audience
Population: Individuals reliant on internet and IT infrastructure
Estimated Size: 300000000
- The bill focuses on critical infrastructure and cybersecurity, which means it is relevant to individuals and entities who rely on secure digital infrastructure.
- With the increasing dependence on IT infrastructure globally, any disruption could impact millions of individuals and organizations worldwide.
- Approximately half of the global population has internet access and could be directly or indirectly impacted by enhanced cybersecurity measures.
- Cybersecurity threats are also relevant to institutions such as governments, businesses, and services that provide healthcare and education services.
Reasoning
- Cybersecurity and critical infrastructure are essential for the everyday functioning of the economy and society, affecting a large percentage of the population.
- Those working directly in IT and cybersecurity fields or those relying heavily on digital infrastructure (such as remote workers) will likely feel a more immediate impact.
- Businesses and services that are dependent on secure IT for operation, particularly those managing sensitive personal data, will see significant benefits.
- The general population may not notice immediate direct changes, but improvements in security could prevent future disruptions that would impact their wellbeing.
- The policy budget limits imply that initial impacts may be more focused and visible within high-risk areas or sectors.
Simulated Interviews
Cybersecurity Analyst (Washington, D.C.)
Age: 42 | Gender: female
Wellbeing Before Policy: 7
Duration of Impact: 10.0 years
Commonness: 3/20
Statement of Opinion:
- The policy will bolster our current efforts and provide more tools to handle cyber threats.
- Immediate improvements are essential given the widespread and evolving nature of cyber threats.
Wellbeing Over Time (With vs Without Policy)
| Year | With Policy | Without Policy |
|---|---|---|
| Year 1 | 8 | 7 |
| Year 2 | 8 | 7 |
| Year 3 | 9 | 7 |
| Year 5 | 9 | 6 |
| Year 10 | 9 | 6 |
| Year 20 | 8 | 5 |
Software Engineer (Silicon Valley, CA)
Age: 36 | Gender: male
Wellbeing Before Policy: 6
Duration of Impact: 7.0 years
Commonness: 5/20
Statement of Opinion:
- The policy will likely lead to more security standards to adhere to, which could mean more work but stronger protections.
- Security certifications are key for developing trust in software.
Wellbeing Over Time (With vs Without Policy)
| Year | With Policy | Without Policy |
|---|---|---|
| Year 1 | 6 | 6 |
| Year 2 | 7 | 6 |
| Year 3 | 7 | 5 |
| Year 5 | 8 | 5 |
| Year 10 | 8 | 5 |
| Year 20 | 7 | 4 |
Freelance Graphic Designer (New York, NY)
Age: 29 | Gender: female
Wellbeing Before Policy: 5
Duration of Impact: 5.0 years
Commonness: 10/20
Statement of Opinion:
- I hope the policy makes online systems safer for freelancers like me.
- It would be good if these measures help prevent data breaches.
Wellbeing Over Time (With vs Without Policy)
| Year | With Policy | Without Policy |
|---|---|---|
| Year 1 | 6 | 5 |
| Year 2 | 7 | 4 |
| Year 3 | 7 | 4 |
| Year 5 | 6 | 4 |
| Year 10 | 5 | 3 |
| Year 20 | 4 | 3 |
Owner, Small Retail Business (Chicago, IL)
Age: 51 | Gender: male
Wellbeing Before Policy: 6
Duration of Impact: 10.0 years
Commonness: 8/20
Statement of Opinion:
- Enhancing cybersecurity for small businesses is crucial as we rely on online transactions.
- Even though complying with new measures can be cost demanding, it's necessary.
Wellbeing Over Time (With vs Without Policy)
| Year | With Policy | Without Policy |
|---|---|---|
| Year 1 | 6 | 6 |
| Year 2 | 7 | 5 |
| Year 3 | 8 | 5 |
| Year 5 | 8 | 4 |
| Year 10 | 7 | 4 |
| Year 20 | 6 | 3 |
College Student (Austin, TX)
Age: 23 | Gender: other
Wellbeing Before Policy: 7
Duration of Impact: 5.0 years
Commonness: 6/20
Statement of Opinion:
- Important to learn about the increased cybersecurity measures as it's a field I'm interested in.
- Ensuring data privacy is within policy focus is crucial.
Wellbeing Over Time (With vs Without Policy)
| Year | With Policy | Without Policy |
|---|---|---|
| Year 1 | 7 | 7 |
| Year 2 | 8 | 6 |
| Year 3 | 8 | 6 |
| Year 5 | 8 | 5 |
| Year 10 | 9 | 5 |
| Year 20 | 8 | 5 |
Public School Teacher (Rural Kentucky)
Age: 45 | Gender: female
Wellbeing Before Policy: 6
Duration of Impact: 8.0 years
Commonness: 7/20
Statement of Opinion:
- Cybersecurity for schools is becoming more crucial as more educational activities move online.
- The policy might help secure these resources against threats.
Wellbeing Over Time (With vs Without Policy)
| Year | With Policy | Without Policy |
|---|---|---|
| Year 1 | 7 | 6 |
| Year 2 | 7 | 6 |
| Year 3 | 7 | 5 |
| Year 5 | 7 | 5 |
| Year 10 | 6 | 4 |
| Year 20 | 5 | 3 |
Retired IT Manager (Miami, FL)
Age: 60 | Gender: male
Wellbeing Before Policy: 5
Duration of Impact: 4.0 years
Commonness: 9/20
Statement of Opinion:
- In retirement, I still care a lot about cybersecurity trends.
- I hope this brings better safety for the personal data of everyday citizens.
Wellbeing Over Time (With vs Without Policy)
| Year | With Policy | Without Policy |
|---|---|---|
| Year 1 | 6 | 5 |
| Year 2 | 6 | 5 |
| Year 3 | 6 | 4 |
| Year 5 | 5 | 4 |
| Year 10 | 4 | 3 |
| Year 20 | 4 | 3 |
Actress (Los Angeles, CA)
Age: 38 | Gender: female
Wellbeing Before Policy: 8
Duration of Impact: 0.0 years
Commonness: 15/20
Statement of Opinion:
- While I use the internet for promotions, I don't expect the policy to change my online activities drastically.
- Preventing online theft of personal content is important though.
Wellbeing Over Time (With vs Without Policy)
| Year | With Policy | Without Policy |
|---|---|---|
| Year 1 | 8 | 8 |
| Year 2 | 8 | 8 |
| Year 3 | 8 | 8 |
| Year 5 | 8 | 8 |
| Year 10 | 8 | 8 |
| Year 20 | 8 | 8 |
Hospital Administrator (Denver, CO)
Age: 47 | Gender: male
Wellbeing Before Policy: 6
Duration of Impact: 10.0 years
Commonness: 4/20
Statement of Opinion:
- Cybersecurity in healthcare is critical for patient data protection.
- Implementing these measures is urgent.
Wellbeing Over Time (With vs Without Policy)
| Year | With Policy | Without Policy |
|---|---|---|
| Year 1 | 7 | 6 |
| Year 2 | 8 | 5 |
| Year 3 | 9 | 5 |
| Year 5 | 8 | 4 |
| Year 10 | 9 | 3 |
| Year 20 | 8 | 3 |
Financial Analyst (Boston, MA)
Age: 33 | Gender: female
Wellbeing Before Policy: 7
Duration of Impact: 6.0 years
Commonness: 5/20
Statement of Opinion:
- Policy will likely improve the security of financial transactions.
- Important for the stability of financial services.
Wellbeing Over Time (With vs Without Policy)
| Year | With Policy | Without Policy |
|---|---|---|
| Year 1 | 8 | 7 |
| Year 2 | 8 | 6 |
| Year 3 | 8 | 6 |
| Year 5 | 7 | 5 |
| Year 10 | 6 | 4 |
| Year 20 | 5 | 4 |
Cost Estimates
Year 1: $500000000 (Low: $400000000, High: $600000000)
Year 2: $510000000 (Low: $405000000, High: $615000000)
Year 3: $520000000 (Low: $410000000, High: $620000000)
Year 5: $540000000 (Low: $420000000, High: $630000000)
Year 10: $0 (Low: $0, High: $0)
Year 100: $0 (Low: $0, High: $0)
Key Considerations
- The program's success hinges on robust interagency and public-private partnerships for effective information sharing and cybersecurity strategy implementation.
- Ongoing assessment and adaptation of cybersecurity technologies to counter evolving threats are essential.
- Effective communication strategies must be developed to facilitate reporting and cooperation among federal agencies and between public and private sectors.