44 U.S. Code § 3531 - Purposes
prev | next
The purposes of this subchapter are to—
(1) provide a comprehensive framework for ensuring the effectiveness of information security controls over information resources that support Federal operations and assets;
(2) recognize the highly networked nature of the current Federal computing environment and provide effective governmentwide management and oversight of the related information security risks, including coordination of information security efforts throughout the civilian, national security, and law enforcement communities;
(3) provide for development and maintenance of minimum controls required to protect Federal information and information systems;
(5) acknowledge that commercially developed information security products offer advanced, dynamic, robust, and effective information security solutions, reflecting market solutions for the protection of critical information infrastructures important to the national defense and economic security of the nation that are designed, built, and operated by the private sector; and
Source(Added Pub. L. 107–296, title X, § 1001(b)(1),Nov. 25, 2002, 116 Stat. 2259.)
Applicability of Section
This section not to apply while subchapter III of this chapter is in effect, see section 3549 of this title.
A prior section 3531, added Pub. L. 106–398, § 1 [[div. A], title X, § 1061], Oct. 30, 2000, 114 Stat. 1654, 1654A–266, set forth purposes of this subchapter prior to the general amendment of this subchapter by Pub. L. 107–296.
Subchapter effective 60 days after Nov. 25, 2002, see section 4 ofPub. L. 107–296, set out as a note under section 101 of Title 6, Domestic Security.
Pub. L. 106–398, § 1 [[div. A], title X, § 1065], Oct. 30, 2000, 114 Stat. 1654, 1654A–275, which provided that subtitle G (§§ 1061–1065) of title X of [div. A] of H.R. 5408, as enacted by section 1 ofPub. L. 106–398, enacting this subchapter, amending sections 3501 to 3507, 3509, 3512, 3514 to 3518, and 3520 of this title, and section 2224 of Title 10, Armed Forces, and enacting provisions formerly set out as a note below , would take effect 30 days after Oct. 30, 2000, was repealed by Pub. L. 107–296, title X, § 1005(b),Nov. 25, 2002, 116 Stat. 2272.
Responsibilities of Certain Agencies
Pub. L. 106–398, § 1 [[div. A], title X, § 1062], Oct. 30, 2000, 114 Stat. 1654, 1654A–272, which set forth responsibilities of Department of Commerce, Department of Defense, Intelligence Community, Department of Justice, General Services Administration, and Office of Personnel Management relating to development, issuance, review, and updating of information security policies, principles, standards, and guidelines, including assessment of training and personnel needs, was repealed by Pub. L. 107–296, title X, § 1005(b),Nov. 25, 2002, 116 Stat. 2272, and Pub. L. 107–347, title III, § 305(b),Dec. 17, 2002, 116 Stat. 2960.