CISA releases supply chain task force report addressing liability concerns for information sharing

A new report from the private sector members of CISA’s supply chain task force details “preliminary considerations” for increasing industry information sharing on supply chain risks with government entities, and proposes legislative language to address liability concerns.

The task force proposes amending the 2015 Cybersecurity Information Sharing Act “to specifically add supply chain risk as a form of information that constitutes a Cyber Threat Indicator,” in their report released Tuesday. The task force is composed of industry leaders from...