Panel ends work with some successes
WASHINGTON — A commission created by Congress to develop a more strategic approach to defending against cyberattacks turns out the lights Tuesday, ending 2½ years of work on policy recommendations, legislative pushes and warnings about malware, ransomware and other threats.
When the Cyberspace Solarium Commission released its first recommendations in March 2020, after a year of research and writing, its members vowed that the panel would work differently from other blue ribbon Washington exercises. Sen. Angus King, I-Maine, a co-chair of the commission, said the recommendations would not end up dusty on a shelf, like those drawn up by many other well-meaning panels.
The commission’s name was based on the Eisenhower administration’s Project Solarium, which developed new policies for the Cold War. Influential members of the House and Senate Armed Services committees led the commission, allowing its recommendations to be packaged as legislation included in one of the few policy bills that pass each year: the annual National Defense Authorization Act.
“This is an example of what I think was genius — and I can say that because it wasn’t my idea: Instead of just issuing a report with recommendations, we handed the congressional committees fully drafted, finished legislation,” King said.
Congress originally set the commission’s termination for the end of 2020 but extended its work for an additional year. During that time, King said, about half of the panel’s recommendations have been implemented, most through legislation but some through executive branch actions.
The commission shuts down with notable successes, like the creation of a national cyber director in the White House and measures to strengthen the powers of the Cybersecurity and Infrastructure Security Agency, as well as provisions in this year’s defense bill, including requirements for revised response plans and more exercises and drills for government officials.