Skip to main content

tv   Senate Intelligence on Election Security  CSPAN  March 21, 2018 8:55pm-9:16pm EDT

8:55 pm
we wanted to see congress act. -- where he wanted to see congress act. so today we are going to do that. today we are going to act. it's an important bill. i encourage my colleagues to vote in favor of it. and i will yield back the balance of my time. the speaker pro tempore: the
8:56 pm
8:57 pm
8:58 pm
8:59 pm
9:00 pm
9:01 pm
we are securing the system. anyone of those could create
9:02 pm
that doubt which in and of itself is what the adversary is trying to accomplish. we're looking carefully at how we can help entities at all of the places you described protect their databases as we saw the summer of 2016 with the structured query language, sql injections and attempts to manipulate the databases, we will be scanning for that should someone take us up on our offer. provisional ballots become important for the reasons you described. plan if a variety of voters appear it who believe they are -- who are not on the roles but believe they should be. we will be stood up 24/7 on any election day to provide immediate instant response should anything,. and then as the secretary mentioned on election night, it is important to work with ap and others before the election results are formally -- formally
9:03 pm
certified to make sure there is not information that is put up. i suggest we look at what you would call a hypothetical that is probably closer to our good possibility and water each of those and make sure we are providing the tools and resources we need to state and ,ocals so they can prevent identify, track, and respond to any such issues. we willor rubio said claim a royalty. >> i will tell you what surprises me. it is great to have you back again. enjoyed working with you. so welcome. let me ask you this first question. i do not understand, you learned about this in august. you did a number of specific
9:04 pm
things, you spoke about the date that you did these things. and yet, the american people were never told. -- told why. >> the american people were told . >> not sufficiently in any way, shape, or form to know that there was a major active measure going on perhaps by a foreign power. 2016, theber 7, director of national intelligence and i issued a blunt statement saying that the russian government was interfering in our political process. directed by the highest levels of the russian government. some people believe we should have done that sooner and i did not get the attention i got it should have received. it was below the fold news the next day because of the release of the excess hollywood video the same day and a number of
9:05 pm
other events. i was expecting follow-up from a lot of journalists and we never got that because everyone was focused on the campaign and that video and the debate that sunday. >> as i recall, i was ranking and as i also recall, senator burr and i and a couple of others, mr. -- had mr. brennan chafee, comey, and clapper who laid it out to us. this was highly secret. subsequently, it became known that there were 21 states that in fact had been pierced. that information as to what states has not been released. the highe first heard
9:06 pm
-- house was highly secret, we could say nothing about it. and even now where i see no reason that 21 states cannot be been evens having possibly pierced by an act -- active measure by a foreign country at this time. those states would know that they should take a look and do something about it. if either of you could answer that, it is not in a question form but you know where i am going. if we are told and it is classified, we can say nothing. if this is being done by the administration to prevent it from being released, but he can protect themselves. >> senator, two things. as secretary nielsen pointed out, very often the victims of the cyberattack are extremely sensitive to the fact that -- of
9:07 pm
a disclosure that they were the victims of a cyberattack. that was true in this circumstance. i also know and recall that in 2016, when we were working with the states, every state or every state owner of the system that was informedeted either by dhs or the fbi or the msi publicd never been made -- the had never been made public. america is the victim, america has to know what is wrong and if there are states that had been attacked, america should know that. this victim answer with me has
9:08 pm
no credibility at all. >> the 21 states themselves had been notified. i take your point. >> people have to know -- i had better see they do something about it. everybody thinks it is some other state. >> i understand. i look forward to reading your report and finding out what you heard from the state. what i was trying to explain earlier is unfortunately -- >> what other report? what we have seen throughout the last 15 years at dhs is when it comes to this situation, the victim stopped reporting. we are not aware of that -- the attacks. we cannot help other victims who are likely to be victimized in the near future based on the
9:09 pm
same vulnerability. i look forward to working with you on this, i take your point. we have to find a way to encourage reporting and encourage cooperation while also making it transparent. states have to know it it will be known by the public if they do not and if it is never made public, i will bet you you have a bunch of states while we have invested in this and we will not do anything about it now and we will see what happens in the future. all that that happens in some places. and you are enabling it. >> what we are doing at dhs is we will come out with this before. but we the guidelines are look -- working on a baseline that is much more comprehensive. not only will he tell states that is our best recommendation but we will be transparent as to the states that do not meet it. we will do that from a preparedness side and a prevention standpoint. we will make clear what states need to do more. we need to work on this issue of
9:10 pm
notification. feinstein and i were faced with a similar task as it related to cyber security legislation. do you make it mandatory reporting, do you make it voluntary? if you make it voluntary what latitude do you have to make public disclosures of who has turned in information and we legislation that that voluntary was the best approach for cyber reporting. it was up to the companies whether they wanted to make public acknowledgments. all of us know the banking system israel to with intrusions but no financial institution wants to go out and for that to be public. we do have a predicament. to >> that may change. to committee is committed work with it to continue to make our system better. senator blunt. senator blunt: thank you.
9:11 pm
we do know that the fabric of democracy is people's belief that what happened on election day was what actually happened. securing those systems important, security -- and securing the systems of registration, you mentioned rubio's greattor hypothetical of what clearly could happen. you said it is not hypothetical. you did not mean that this is what happened. did you? >> i thought the first half of senator rubio's hypothetical as i heard it was real. the misinformation campaign he describes. >> i thought what you are talking about was the infiltration of the registration. itthat is hypothetical but was my biggest concern in 2016. >> it is a concern. no doubt about that. we have never had an election
9:12 pm
where a number of voters did not appear who were not on the voting rolls but thought they were. a state election official, i was a local election official. there is never an election where lots of people do not show up and they are sure they should be on the roles but often their reasons that they are not on the roles, most states that did not have the provisional opportunity to cast a ballot before 2000 added one after 2000. almost always is allowed to cast their ballot. if this needs to be judged in some way it is done after the election. sometimes it is easily figured out, sometimes it turned out the somewhere else or lives in another county or in another state. they get a chance in most states to cast that ballot. is aif they have, there
9:13 pm
question about whether they are on the voter rolls. i am much more -- i am concerned about the voter rolls, concerned infiltration of voter rolls. i am concerned we secure the counting systems that we will have another panel to talk about that. the accounting systems the secure. it is critical infrastructure and secretary johnson, your august outreach to election officials, did you provide much information as to what it meant to become critical infrastructure or did they have any reason to understand why you are making this suggestion of a great change of responsibility 90 days before the election? >> i went through with in august in detail what the critical infrastructure designation would mean. i explained three things, that it prioritizes the assistance we
9:14 pm
provide if they ask. it means for certain greater levels of confidential medications between dhs and the states, and it means they would have the protection of the international cyber security norm and i stressed at the time this is voluntary and it prioritizes assistance if they seek it. are going to have a secretary of state on the next panel who i think was on that call. i do not believe that is their view about how that conversation went. we will see what their view is. when you brought this up before, the protection of the international norm the? somebody has those, we have all kinds of financial information that has been out there. what is the international norm supposed to provide here that it does not prepare -- appear to provide anywhere else in terms of real protection? >> the international norm is that nationstates will not
9:15 pm
attack critical infrastructure. it is incumbent upon the victim state to do something about it. they're critical infrastructure is attacked. the designation makes clear we consider election infrastructure to be critical like government, defense industry, like our financial services industry. >> i do not disagree there is critical infrastructure. i am not sure i agree that calling it critical -- the clerk: its house of representatives, sir, pursuant to the permission granted in 2-h of rule 2, the clerk received the following message of the secretary of the senate on march 21 at 5:15 that the senate passed without amendment h.r. 1665, signed sincerely karen


info Stream Only

Uploaded by TV Archive on