§ 3531. — Purposes.
[Laws in effect as of January 24, 2002]
[Document not affected by Public Laws enacted between
January 24, 2002 and December 19, 2002]
[CITE: 44USC3531]
TITLE 44--PUBLIC PRINTING AND DOCUMENTS
CHAPTER 35--COORDINATION OF FEDERAL INFORMATION POLICY
SUBCHAPTER II--INFORMATION SECURITY
Sec. 3531. Purposes
The purposes of this subchapter are to--
(1) provide a comprehensive framework for ensuring the
effectiveness of information security controls over information
resources that support Federal operations and assets;
(2) recognize the highly networked nature of the current Federal
computing environment and provide effective governmentwide
management and oversight of the related information security risks,
including coordination of information security efforts throughout
the civilian, national security, and law enforcement communities;
(3) provide for development and maintenance of minimum controls
required to protect Federal information and information systems;
(4) provide a mechanism for improved oversight of Federal agency
information security programs;
(5) acknowledge that commercially developed information security
products offer advanced, dynamic, robust, and effective information
security solutions, reflecting market solutions for the protection
of critical information infrastructures important to the national
defense and economic security of the nation that are designed,
built, and operated by the private sector; and
(6) recognize that the selection of specific technical hardware
and software information security solutions should be left to
individual agencies from among commercially developed products.
(Added Pub. L. 107-296, title X, Sec. 1001(b)(1), Nov. 25, 2002, 116
Stat. 2259.)
Applicability of Section
This section not to apply while subchapter III of this chapter
is in effect, see section 3549 of this title.
Prior Provisions
A prior section 3531, added Pub. L. 106-398, Sec. 1 [[div. A], title
X, Sec. 1061], Oct. 30, 2000, 114 Stat. 1654, 1654A-266, set forth
purposes of this subchapter prior to the general amendment of this
subchapter by Pub. L. 107-296.
Effective Date
Subchapter effective 60 days after Nov. 25, 2002, see section 4 of
Pub. L. 107-296, set out as a note under section 101 of Title 6,
Domestic Security.
Pub. L. 106-398, Sec. 1 [[div. A], title X, Sec. 1065], Oct. 30,
2000, 114 Stat. 1654, 1654A-275, which provided that subtitle G
(Secs. 1061-1065) of title X of [div. A] of H.R. 5408, as enacted by
section 1 of Pub. L. 106-398, enacting this subchapter, amending
sections 3501 to 3507, 3509, 3512, 3514 to 3518, and 3520 of this title,
and section 2224 of Title 10, Armed Forces, and enacting provisions
formerly set out as a note below , would take effect 30 days after Oct.
30, 2000, was repealed by Pub. L. 107-296, title X, Sec. 1005(b), Nov.
25, 2002, 116 Stat. 2272.
Responsibilities of Certain Agencies
Pub. L. 106-398, Sec. 1 [[div. A], title X, Sec. 1062], Oct. 30,
2000, 114 Stat. 1654, 1654A-272, which set forth responsibilities of
Department of Commerce, Department of Defense, Intelligence Community,
Department of Justice, General Services Administration, and Office of
Personnel Management relating to development, issuance, review, and
updating of information security policies, principles, standards, and
guidelines, including assessment of training and personnel needs, was
repealed by Pub. L. 107-296, title X, Sec. 1005(b), Nov. 25, 2002, 116
Stat. 2272, and Pub. L. 107-347, title III, Sec. 305(b), Dec. 17, 2002,
116 Stat. 2960.
