100  PRIVACY IN A CYBER AGE

           cybersecurity in the private realm. The security chain is only as strong as its
           weakest link—and the private sector’s link is simultaneously poorly forged
           and critically important to U.S. defense and security.
              What can be done? The private sector, especially those firms that manu-
           facture defense items such as submarines and aircraft carriers, as well as
           those that provide hardware and software to the government, would be
           much more attentive to cybersecurity needs if the federal government were
           to disqualify from receiving government contracts any corporations that
           are not in full compliance with government cybersecurity standards. Presi-
           dent Obama’s 2013 Cybersecurity Executive Order has called for this step,
           and the White House has directed a joint working group to “develop an
                                                    46
           implementation plan for these recommendations.”  However, this strong
           corrective assumes a different political climate, in which Congress, which
           is rather responsive to corporate lobbying, would allow the administration
           to set standards and develop blacklists. At the moment, such blacklists are
           not even drafted for corporations that are found to engage in corruption.
           One government agency might cease to grant a corporation contracts, but
           there is no list of corrupt corporations that other agencies can consult. The
           publication of articles like this one and increased public outcry on the
           subject might help change the political climate and advance cybersecurity.