Last month, two U.S. senators introduced laws designed to make clear cybersecurity guidelines for presidency use of civilian drones. The Drone Evaluation to Eliminate Cyber Threats Act of 2024 (DETECT Act) directs the National Institute of Standards and Technology (NIST) to develop a framework of cybersecurity principles.
In an announcement on Senator Mark Warner’s (D-VA) webpage, Sens. Mark R. Warner and John Thune (R-SD) explained the aim of the laws:
Drones have the flexibility to gather sensitive information, and as they turn into more common, the safety of this technology is of accelerating importance. The DETECT Act would address cybersecurity concerns by directing the National Institute of Standards and Technology (NIST) to develop a set of guidelines. Following an implementation period, these guidelines can be binding on the federal government’s use of civilian drones, the private sector may voluntarily use these guidelines in their very own operations.
“Drones and unmanned systems have the aptitude to rework the best way we do business, manage our infrastructure, and deliver life-saving medicine, and as drones turn into a bigger a part of our society, it’s crucial that we ensure their safety and security,” said Sen. Warner. “This laws will establish sensible cybersecurity guidelines for drones utilized by the federal government to be certain that sensitive information is protected while we proceed to speculate on this recent technology.”
“Because the capabilities of drones proceed to evolve and be utilized by each the federal government and the private sector, it’s critically vital that they operate securely,” said Sen. Thune. “This common sense laws would require the federal government to follow stringent cybersecurity guidelines and protocols for drones and unmanned systems.”
Along with directing NIST to develop cybersecurity guidelines for civilian drones, the laws would direct the Office of Management and Budget, accountable for purchases for federal agencies, to require all agencies using civilian drones to implement “politics and principles” based on the rules. Moreover, the proposed laws “Forbids agencies from acquiring drones that don’t meet the rules referenced above, subject to a waiver process under certain circumstances.”
Would the DETECT Act Make clear or Muddy the Waters for Drone Manufacturers?
Clarification of cybersecurity standards is clearly needed to permit drone manufacturers to develop products for the federal government market and enable business users to make appropriate purchase decisions based upon their risk tolerance.
If passed and designed to supercede previous orders, the laws could make it easier for drone manufacturers not focused on defense and never included within the Blue sUAS list, even in the event that they meet NDAA compliance standards, to receive government contracts. Currently, government agencies must to undergo a waiver process to buy even US manufactured drones not on the Blue sUAS list.
If the laws is passed and layered on top of existing executive orders and drone security laws, the acquisition process could turn into tougher for governement agencies who may benefit from many civilian drone technologies – and make it harder for small manufacturers to discover all of the necessities and develop drones that meet them.
Read more: