LegisTrack
Back to all bills
S 1337119th CongressIn Committee

Cybersecurity Information Sharing Extension Act

Introduced: Apr 8, 2025
View on Congress.gov
Standard Summary
Comprehensive overview in 1-2 paragraphs

This bill, the Cybersecurity Information Sharing Extension Act, is a narrow, time-limited change to extend an existing authority. It would replace the sunset year in the Cybersecurity Act of 2015 from 2025 to 2035 for Section 111(a) (6 U.S.C. 1510(a)). In practical terms, this preserves the current framework that governs the availability and sharing of information relating to cybersecurity threats between government agencies and the private sector, ensuring continued access to threat information for defending against cyber threats. No new programs, authorities, or funding are described in the text; it simply extends the period during which the existing information-sharing framework remains in effect. The bill was introduced in the Senate by Senators Peters and Rounds and referred to the Senate Committee on Homeland Security and Governmental Affairs.

Key Points

  • 1Short title: The bill is named the Cybersecurity Information Sharing Extension Act.
  • 2Extension of the effective period: Amends Section 111(a) of the Cybersecurity Act of 2015 to change the sunset from 2025 to 2035.
  • 3Purpose: To improve availability of information relating to cybersecurity threats by preserving the existing information-sharing framework.
  • 4Nature of the change: It is a sunset extension; it does not add new authorities, programs, or funding beyond extending the expiration date.
  • 5Legislative status: Introduced in the Senate by Mr. Peters (joined by Mr. Rounds) and referred to the Committee on Homeland Security and Governmental Affairs.

Impact Areas

Primary group/area affected: Federal agencies involved in cybersecurity (e.g., DHS components and cyber threat information-sharing entities) and private sector organizations, especially critical infrastructure operators that rely on threat information to protect networks and systems.Secondary group/area affected: Cybersecurity professionals, information technology vendors, and researchers who use or respond to threat intelligence; policymakers and regulators overseeing cyber information-sharing practices.Additional impacts: Maintains continuity of threat-information sharing without expanding authorities or funding, which can help national and sector resilience against cyber threats; potential privacy and civil liberties considerations remain a consideration in information-sharing practices, though the bill itself does not introduce new privacy provisions.
Generated by gpt-5-nano on Nov 18, 2025