Skip to main content
S 1281 115th Congress Senate Government Operations and Politics Computer security and identity theft Criminal investigation, prosecution, interrogation Department of Homeland Security Government information and archives Public contracts and procurement

Hack DHS Act

Introduced: May 25, 2017 Introduced by: Hassan, Margaret Wood Democratic · New Hampshire See on congress.gov
Sign in to write a letter Sign in to watch
 Everywhere this bill has been 16 steps
Introduced
In committee
Reported out
Passed House
Passed Senate
To President
Became law
Sep 25, 2018
Placed on the Union Calendar, Calendar No. 752.
Sep 25, 2018
Reported (Amended) by the Committee on Homeland Security. H. Rept. 115-964.
Sep 13, 2018
Ordered to be Reported (Amended) by Unanimous Consent.
Sep 13, 2018
Committee Consideration and Mark-up Session Held.
Apr 18, 2018
Referred to the House Committee on Homeland Security.
Apr 18, 2018
Received in the House.
Apr 18, 2018
Message on Senate action sent to the House.
Apr 17, 2018
Passed Senate with an amendment by Voice Vote. (text as passed Senate: CR S2224)
Apr 17, 2018
Passed/agreed to in Senate: Passed Senate with an amendment by Voice Vote.(text as passed Senate: CR S2224)
Apr 17, 2018
The committee substitute as amended agreed to by Unanimous Consent. (text: CR S2224)
Apr 17, 2018
Measure laid before Senate by unanimous consent. (consideration: CR S2223-2225)
Feb 26, 2018
Placed on Senate Legislative Calendar under General Orders. Calendar No. 335.
Feb 26, 2018
Committee on Homeland Security and Governmental Affairs. Reported by Senator Johnson with an amendment in the nature of a substitute. With written report No. 115-209.
Oct 4, 2017
Committee on Homeland Security and Governmental Affairs. Ordered to be reported with an amendment in the nature of a substitute favorably.
May 25, 2017
Read twice and referred to the Committee on Homeland Security and Governmental Affairs.
May 25, 2017
Introduced in Senate
 Plain-English summary Congressional Research Service

Hack the Department of Homeland Security Act of 2017 or the Hack DHS Act

(Sec. 2) This bill directs the Department of Homeland Security (DHS) to establish, within the Office of the Chief Information Officer, a bug bounty pilot program to minimize vulnerabilities to DHS Internet-facing information technology.

A "bug bounty program" is a program under which an approved individual, organization, or company is temporarily authorized to identify and report vulnerabilities of Internet-facing information technology of DHS in exchange for compensation.

Under such program, DHS shall:

  • provide compensation for reports of previously unidentified security vulnerabilities within the websites, applications, and other DHS Internet-facing information technology that are accessible to the public;
  • award a competitive contract tomanage the pilot program and for executing the remediation of vulnerabilities identified bythe program;
  • designate mission-critical operations within DHS that should be excluded from the pilot program;
  • consult with the Department of Justice on how to protect from prosecution approved individuals or entities who comply with the requirements of the program;
  • develop an expeditious process for registration, background checks, and eligibility determinations for participation in the pilot program; and
  • engage interested persons about the structure of the program.

DHS must report to Congress on the program within 180 days of its completion.

What's happening now September 25, 2018

Placed on the Union Calendar, Calendar No. 752.

 Committees of jurisdiction 2