Aaron's Law would revamp computer fraud penalties
Two U.S. lawmakers have introduced a bill that would prevent the Department of Justice from prosecuting people for violating terms of service for Web-based products, website notices or employment agreements under the Computer Fraud and Abuse Act (CFAA).
On Thursday, Representative Zoe Lofgren, a California Democrat, and Senator Ron Wyden, an Oregon Democrat, introduced Aarons Law, a bill aimed at removing some types of prosecutions under the CFAA.
The bill is named after Internet activist Aaron Swartz, who committed suicide in January while facing federal prosecution for allegedly hacking into a Massachusetts Institute of Technology network and downloading millions of scholarly articles from the JSTOR subscription service.
The bill would remove the charge of exceeds authorized access from the CFAA, instead creating a definition for access without authorization. Access without authorization would include bypassing technology and physical measures through deception or through gaining access to an authorized persons credentials.
Aarons Law is not just about Aaron Swartz, but rather about refocusing the law away from common computer and Internet activity and toward damaging hacks, Lofgren and Wyden wrote in a joint statement. It establishes a clear line thats needed for the law to distinguish the difference between common online activities and harmful attacks.
http://www.pcworld.com/article/2042577/aarons-law-would-revamp-computer-fraud-penalties.html