An anonymous reader writes: Last night before the State of the Union speech, President Obama signed an executive order for 'improving cybersecurity of critical infrastructure (PDF). The highlights of the order are: so-called 'information sharing programs' for the government to provide threat reports to industry; an overarching cybersecurity framework developed by NIST to figure out best practices for securing critical infrastructure; and called for reviews of existing regulations to make sure they're effective. The ACLU supports the Order, as does the EFF. '“A lot of what this shows is that the president can do a lot without cybersecurity legislation,” said Mark Jaycox, policy analyst and legislative assistant for the Electronic Frontier Foundation, who points out that the executive order satisfies the need for information sharing without the privacy problems that existed under legislative proposals where loopholes would have allowed companies to dump large amounts of data on the government in an effort to obtain legal immunities. Without those immunities, companies will by nature be more circumspect about what they provide the government, thus limiting what they hand over, Jaycox said.'