In a recent panel discussion at the RSA Conference in San Francisco, security experts looked at cyber security laws currently under consideration, and discussed the challenges in drafting such legislation.

"From a commercial perspective, Michael Barrett, CISO of PayPal, said we simply do not 'have a framework to really think about what the right set of legislative measures should be. It seems to me that the law of unintended consequences has not been repealed,'" according to Infosecurity.

"When referring to the broad umbrella of 'critical infrastructure' protection, Barrett claimed 'we are still using terms that frame the debate in very specific ways. We are viewing the problem of internet security as a technical one. I think we need to hit the reset button metaphorically and think about this as a regulatory problem,' he added. 'It means we need to have very clear terms,'" the article states.

Click here to read the Infosecurity article.