Maine 2023-2024 Regular Session

Maine Senate Bill LD877

Introduced
2/28/23  
Refer
2/28/23  
Engrossed
4/9/24  
Enrolled
4/10/24  

Caption

An Act to Increase Cybersecurity in Maine

Impact

With LD877's implementation, state agencies and local governmental entities will be prohibited from contracting with entities included on the established lists of prohibited companies or services. This represents a significant shift in how state contracting will be conducted, emphasizing security over convenience. The bill aims to prevent local governments from inadvertently contracting with foreign adversaries, thereby protecting state resources and the safety of its citizens from vulnerabilities inherent in potentially harmful technologies.

Summary

LD877, titled 'An Act to Increase Cybersecurity in Maine', aims to enhance the state's cybersecurity protocols and protect critical infrastructure against potential threats, particularly those posed by foreign adversaries. The bill mandates the establishment of a comprehensive list of prohibited companies and types of information and communication technology that are deemed a national security risk. This list will be maintained by the Chief Information Officer and updated annually, ensuring that the state remains proactive in addressing cybersecurity threats.

Sentiment

The sentiment surrounding LD877 appears to be largely supportive, primarily focused on the pressing need for enhanced cybersecurity in light of increasing digital threats. Legislators and experts who advocate for the bill emphasize the necessity of such measures to safeguard not only state infrastructure but also personal data. However, there are concerns regarding the implications for local governmental entities, particularly around the potential limitations in their ability to procure technology that may not pose a significant risk but is critical to their operations.

Contention

Notable points of contention include the implications for local governments and the flexibility of state agencies in managing their contracts. While the intent is to secure the state's interests, critics argue that the bill could hinder effective governance at the local level. Additionally, provisions allowing for waivers and exceptions are designed to address urgent needs, particularly in law enforcement, raising questions about the criteria for granting such waivers and whether they will adequately protect against risks while ensuring that critical services remain operational.

Companion Bills

No companion bills found.

Previously Filed As

ME S2539

Relative to cybersecurity and artificial intelligence

ME H1511

Cybersecurity

ME SB1425

Satellite Cybersecurity Act

ME HB1123

Understanding Cybersecurity of Mobile Networks Act

ME S49

Relative to cybersecurity and artificial intelligence

ME HB1709

Understanding Cybersecurity of Mobile Networks Act

ME H1555

Cybersecurity

ME HB8

Relating to cybersecurity for state agency information resources.

ME H1293

Cybersecurity

ME HB127

Relating to measures to protect institutions of higher education from foreign adversaries and to the prosecution of the criminal offense of theft of trade secrets; increasing a criminal penalty.

Similar Bills

AZ HB2696

Critical Infrastructure; foreign adversary; prohibition

TN SB0378

AN ACT to amend Tennessee Code Annotated, Title 4, relative to critical infrastructure.

TN HB0549

AN ACT to amend Tennessee Code Annotated, Title 4, relative to critical infrastructure.

LA SB226

Prohibits foreign adversaries and prohibited foreign actors from participating in certain property transactions. (gov sig)

FL H0925

Threats from Foreign Nations

VA HB2591

Information and communications technology and services; transactions with foreign adversaries.

MO SB923

Creates new provisions relating to protecting public assets from adversarial foreign assets

AR HB1561

To Establish The Research And Education Protection Act Of 2025.