The two sponsors engaged in "lengthy negotiations" on privacy concerns, Ruppersberger said. The new bill has narrowed the definition of information that can be shared and sets strict restrictions on the government's use and searching of the data, the sponsors said.
The two lawmakers introduced CISPA a day after President Barack Obama signed an executive order focused on allowing federal agencies to share cyberthreat information with U.S. businesses and on creating voluntary cybersecurity standards for operators of critical infrastructure.
The bill is needed in addition to the executive order to enable wider sharing of cyberthreat information than the order allows, Rogers said. While Obama's order allows federal agencies to share cyberthreat information with companies, the bill would allow agencies to share classified information and would allow U.S. businesses to share cyberthreat information with each other and with government agencies.
CISPA also protects businesses that share cyberthreat information from lawsuits.
Some tech companies and trade groups, including Verizon Communications and the National Cable and Telecommunications Association, praised the bill. The sharing of cyberthreat information is a "critical missing link in our efforts to detect and deter cyberattacks," Michael Powell, NCTA's president and CEO, wrote in a letter to the sponsors.
But the American Civil Liberties Union and Demand Progress, a digital rights group, both repeated their opposition to CISPA.
"CISPA does not require companies to make reasonable efforts to protect their customers' privacy and then allows the government to use that data for undefined national-security purposes and without any minimization procedures, which have been in effect in other security statutes for decades," the ACLU said in a statement.
Grant Gross covers technology and telecom policy in the U.S. government for The IDG News Service. Follow Grant on Twitter at GrantGross. Grant's e-mail address is email@example.com.