Senator Johnson has an op-ed in today's Hill on the pending Senate cybersecurity legislation. Here is a small taste of what he says:
"[P]roposals in Congress, advocated by the White House, would give the federal government, namely the Department of Homeland Security (DHS), power to dictate cyber-regulations to the private sector. Such regulations would create a maze of assessments, audits and standards that must be obeyed by companies deemed by DHS to be “covered critical infrastructure.”
I do not believe this is the right strategy because I have little faith in the ability of the federal government to be the leader on cybersecurity."
I'm happy to post links to opposing viewpoints if anyone wants to share the pointers.