Congress Debating If Putting A Fake Name On Facebook Should Be A Felonyfrom the how-to-turn-the-whole-world-into-felons dept
by Brady Kriss
Sep. 19, 2011
Report: Israel Behind StingRay Spying Devices Planted Near White House, Sensitive Locations Around DC
NRO's David French: Drag Queen Story Hour is 'One of the Blessings of Liberty'
Swedish Rapper Calls For White People to Be Shot
PewDiePie Cancels $50,000 Donation to ADL, Media Immediately Smears Him As A Nazi
ADL, Dems Push 'Disarm Hate Act' to Seize Guns of Those Convicted of a 'Misdemeanor Hate Crime'
On Wednesday, George Washington Law professor and former federal prosecutor Orin Kerr authored an op-ed in The Wall Street Journal, posing the question "Should faking a name on Facebook be a felony?" He was, of course, talking about the infamous Computer Fraud and Abuse Act (CFAA), which Congress is preparing to update. The CFAA, as has been noted here many times, is a federal law passed in the '80s and initially designed to combat malicious computer hacking, but which has become bloated, stretched and over-applied in the years since.
At the root of many of the arguably overreaching applications of the CFAA is the prohibition on conduct which "exceeds authorized access" to a computer system. According to Kerr:
Would you believe that some politicians are even thinking of making the bill even worse?
Professor Kerr's primary concern expressed in the op-ed was that the CFAA was going to be amended to make any violation of the CFAA a felony. Hopefully, this won't pan out. The original Administration proposal (pdf) did increase the baseline punishment for any violation of the CFAA (including exceeding authorized access) from a misdemeanor level offense (less than one year) to a felony. But, thankfully, the Judiciary Committee didn't take the Administration's suggestion. Lets hope it stays that way as this bill makes its epic journey through the Washington legislative sausage maker.
There is yet a glimmer of rational-thought hope. Senators Grassley and Franken have introduced an amendment (pdf) which would modify the definition of "exceeds authorized access" to exclude violations of a TOS, if that's the only basis for the charge of violating the CFAA, effectively improving the CFAA instead of making it worse. Fingers crossed that the amendment makes it in.