Page:United States Statutes at Large Volume 113 Part 1.djvu/784

 113 STAT. 760 PUBLIC LAW 106-65 —OCT. 5, 1999 classified information, information relating to intelligence sources and methods, or sensitive law enforcement information. "(2) Nothing in this section shall be construed to modify or supersede any other requirement to report information on intelligence activities to the Congress, including the requirement under section 501 of the National Security Act of 1947 (50 U.S.C. 413).". (b) CLERICAL AMENDMENT.—The table of sections at the beginning of such chapter is amended by adding at the end the following new item: "2723. Notice to congressional committees of certain security and counterintelligence failures within defense programs.". SEC. 1043. INFORMATION ASSURANCE INITIATIVE. (a) IN GENERAL. —Chapter 131 of title 10, United States Code, is amended by adding at the end the following new section: ''§ 2224. Defense Information Assurance Program "(a) DEFENSE INFORMATION ASSURANCE PROGRAM.— The Secretary of Defense shall carry out a program, to be known as the 'Defense Information Assurance Program', to protect and defend Department of Defense information, information systems, and information networks that are critical to the Department and the armed forces during day-to-day operations and operations in times of crisis. "(b) OBJECTIVES OF THE PROGRAM. —The objectives of the program shall be to provide continuously for the availability, integrity, authentication, confidentiality, nonrepudiation, and rapid restitution of information and information systems that are essential elements of the Defense Information Infrastructure. "(c) PROGRAM STRATEGY.— In carrying out the program, the Secretary shall develop a program strategy that encompasses those actions necessary to assure the readiness, reliability, continuity, and integrity of Defense information systems, networks, and infi*a- structure. The program strategy shall include the following: "(1) A vulnerability and threat assessment of elements of the defense and supporting nondefense information infrastructures that are essential to the operations of the Department and the armed forces. "(2) Development of essential information assurances technologies and programs. "(3) Organization of the Department, the armed forces, and supporting activities to defend against information warfare. "(4) Joint activities of the Department with other departments and agencies of the Government, State and local agencies, and elements of the national information infrastructure. "(5) The conduct of exercises, war games, simulations, experiments, and other activities designed to prepare the Department to respond to information warfare threats. "(6) Development of proposed legislation that the Secretary considers necessary for implementing the program or for otherwise responding to the information warfare threat. "(d) COORDINATION.— In carrying out the program, the Secretary shall coordinate, as appropriate, with the head of any relevant Federal agency and with representatives of those national critical information infrastructure systems that are essential to the operations of the Department and the armed forces on information assurance measures necessary to the protection of these systems.

�