In an era of sophisticated cyberattacks, we should not enact laws that will weaken the cybersecurity of our electronic devices. Consumers, businesses of all sizes, public schools, hospitals, banks, and industrial manufacturers need reasonable assurance that those they trust to repair their devices will do so safely, securely, and correctly.
If we require manufacturers to disclose sensitive diagnostic tools, schematics, source code, and software to unaffiliated, unvetted third parties who have no accountability, it could place sensitive information in the hands of malicious hackers, creating a new set of cybersecurity vulnerabilities. One compromised product not only affects the owner of the product, but anyone whose information may be on it. And as we connect more “things,” those risks increase exponentially.
