Top-Rated Orange County Patent Lawyer | Helping Inventors in Orange County, Los Angeles County & Beyond | OC Patent Lawyer, Irvine CA

Orange County Patent Attorney

(949) 433-0900
You are here: Home / Trade secret / CFAA applicable to hackers and not employees with authorized access

CFAA applicable to hackers and not employees with authorized access

by

Scope of CFAA

In U.S. v. Nosal, the scope of liability under the Computer Fraud and Abuse Act (CFAA) was at issue. The CFAA was primarily enacted to combat the problem of computer hacking. However, employers have been applying the CFAA to instances where employees have authorized access to company information but have misused the information. In Nosal, an ex-employee set up a competing business with his former employer. In doing so, the ex-employee recruited current employees and persuaded them to access company information and transmit confidential company information to him. The employer authorized the employees to have access to the information but prohibited them from using the information for improper purposes.

Criminal proceedings were instituted under the CFAA based on a contention that the current employees exceeded authorized access. Hence the issue is whether the CFAA should be limited to targeting hackers or whether the CFAA should also be applied to those who access a company computer with authorization but then misuse the information.

Disagreement between the circuit courts

The 11th Circuit, 5th Circuit and the 7th Circuit have broadly construed the CFAA to find criminal violations based on corporate computer use restrictions or violation of the duty of loyalty. However, the Ninth Circuit, in Nosal, has departed from the holding of its sister courts.

Ninth Circuit narrows applicability of CFAA

The Ninth Circuit held that the phrase exceeds authorized access in the CFAA does not extend to violations of use restrictions if the access was authorized. The Ninth Circuit reasoned that Congress did not appear to have enacted the CFAA so as to have such broad scope of applicability to anyone other than computer hackers. The Ninth Circuit indicated that such broad construction of the operative language exceeds authorized access would produce unintended results.  In particular, underaged minors that access Google.com could be subject to criminal liability under the CFAA for the following reasoning: Google’s terms of use forbid minors from using its service.  Hence, if a minor conducts a search on google.com, they have exceeded authorized access and would be subject to criminal liability under the CFAA.  The Ninth Circuit reasoned that Congress could not have meant to subject minors to criminal liability under the CFAA.  The majority thought that this would be an unjust result or interpretation of the CFAA.

The Nosal case was decided en banc by all judges of the Ninth Circuit, rather than the normal panel of 3 judges.  Only two of the 11 judges dissented from the majority opinion.

I invite you to contact me with your patent questions at (949) 433-0900 or [email protected]. Please feel free to forward this article to your friends. As an Orange County Patent Attorney, I serve Orange County, Irvine, Los Angeles, San Diego and surrounding cities.

Popular Posts

Patent process overview
Patent process explained
How much does a patent cost?
Trademark process and costs
Patent process and costs

 

Services

Patent Consultations
Patent Searches
Patent Applications
Utility Patents
Design Patents
Patent Prosecution Services
Patent Defense Services
Patent-Law Counsel for In-House Attorneys
Trademark Overview
Trademark Search Services
Trademark Application Services
Trademark Prosecution Services
Trademark Enforcement Services
Trademark Defense Services
See All Services

Industries

Automotive Patents
Consumer Products Patents
Culinary Patents
Manufacturing Patents
Medical Patents
Optics Patents
Software & App Patents
See All Industries

Contact

James Yang
OC Patent Lawyer
2372 Morse Ave., Suite #178
Irvine, CA 92614
Tel: (949) 433-0900

Connect

Sitemaps

Sitemap: Pages | Sitemap: Posts

Terms of Use and Privacy Policy

By accessing this blog, you agree that no attorney-client relationship is formed except by a subsequent written retainer agreement. Also, you agree to not send confidential information unless directed by me to do so. The information posted on this blog is legal information and not legal advice.

ADA Compliance

OC Patent Lawyer aims to ensure that its services are accessible to people with disabilities.

Service Area

From our office in Irvine, California, we serve clients throughout Orange County, Los Angeles, Long Beach, the Inland Empire (e.g. Corona and Temecula), and throughout SoCal.