S2201-118

Reported

To increase knowledge and awareness of best practices to reduce cybersecurity risks in the United States.

118th Congress Introduced Jun 22, 2023

Analysis under review: This bill has generated analysis that may be too generic or incomplete. Clause-level evidence remains available below.

Summary

What This Bill Does

This bill requires the National Institute of Standards and Technology (NIST), working with the Cybersecurity and Infrastructure Security Agency (CISA), to create and run a public education campaign teaching Americans how to protect themselves online. The campaign must be available in multiple languages and formats.

Who Benefits and How

General Public/Consumers benefit from free access to cybersecurity education resources covering topics like identifying phishing, using strong passwords, enabling multi-factor authentication, and securing smart home devices. Cybersecurity education providers may see increased demand as public awareness grows.

Who Bears the Burden and How

NIST and CISA must develop, produce, and conduct the campaign using existing resources - the bill explicitly states no additional funds are authorized. Federal agencies bear the administrative burden of creating multilingual educational materials.

Key Provisions

  • NIST must develop a cybersecurity literacy campaign in consultation with CISA
  • Campaign must educate citizens on phishing, password security, multi-factor authentication, VPNs, and device security
  • Materials must be available in multiple languages and formats if practicable
  • No additional funding is authorized - must use existing appropriations

Evidence Chain:

This summary is generated from the full bill text using AI analysis. Expand "Detailed Analysis" below for identified beneficiaries/burden bearers with clause-level evidence links.

At a Glance

What This Bill Does

Directs NIST to develop and conduct a nationwide cybersecurity literacy campaign to educate U.S. citizens on best practices for reducing cybersecurity risks.

Key Policy Areas

Cybersecurity, Consumer Protection, Public Education

Primary Purpose

Directs NIST to develop and conduct a nationwide cybersecurity literacy campaign to educate U.S. citizens on best practices for reducing cybersecurity risks.

Policy Domains

Cybersecurity Consumer Protection Public Education

American Cybersecurity Literacy Act

Identified Gains
  • General public/consumers
  • Cybersecurity industry
Model: N/A | Version: bill_summary_v2 | Source: rs
Cybersecurity industry:
General public/consumers:
Identified Costs
  • NIST
  • CISA
Model: N/A | Version: bill_summary_v2 | Source: rs
CISA:
NIST:

Legislative Progress

Reported
Introduced Committee Passed
Dec 13, 2023

Reported by Ms. Cantwell, with an amendment

Jun 22, 2023

Ms. Klobuchar (for herself and Mr. Thune) introduced the following …

Stakeholder Effects

cui bono?

How this legislation distributes effects. Mention counts reflect frequency, not effect magnitude.

Government
2 mentions across 1 clause
-2 negative

Cybersecurity and Infrastructure Security Agency, National Institute of Standards and Technology

Consumers
1 mention across 1 clause
+1 positive

General public / Individual consumers

2/4
sections analyzed
Full impact breakdown

Bill Structure & Actor Mappings

Who is "The Secretary" in each section?

Domains
Cybersecurity Consumer Protection Public Education
Actor Mappings
"the_director"
→ Director of the National Institute of Standards and Technology
"cisa_director"
→ Director of the Cybersecurity and Infrastructure Security Agency

We use a combination of our own taxonomy and classification in addition to large language models to assess meaning and potential beneficiaries. High confidence means strong textual evidence. Always verify with the original bill text.

Learn more about our methodology