By Tim Starks, CQ Roll Call

Congressional action on new cybersecurity legislation appears to be on hold as new members bring themselves up to speed on the issues and lawmakers await an executive order from President Barack Obama that could vault over past difficulties and establish guidelines for how companies should protect their computer networks.

It is unclear when Obama will issue the executive order, but it is widely expected to address the thorny question of requiring private companies to protect their computer networks against cyber attacks. Business groups oppose any industry security standards.

In the meantime, lawmakers in the House and Senate are laying down markers for what they want to see in the legislation.

Last week, leaders of the three Senate committees most central to the cybersecurity debate — incoming Homeland Security Chairman Thomas R. Carper, D-Del.; Science, Commerce and Transportation Chairman Jay Rockefeller, D-W.Va.; and Intelligence Chairwoman Dianne Feinstein, D-Calif. — introduced legislation (S 21) that amounts to a statement of principles for what they want a future bill to include.

The measure says Congress’ goals should be to strengthen protections for both public and private sector computer networks; improve information sharing between the private sector and government; and develop a public-private partnership to defend against cyber attacks.

The measure doesn’t specify how private sector networks should be strengthened and whether those defenses should include new industry security standards. Last year’s comprehensive Senate cybersecurity bill got hung up over language that would have created security standards for the most important digital infrastructure. Lawmakers could not agree on whether the proposed standards were sufficiently voluntary or whether the incentives for complying with them were adequate.

Emily Spain, a spokeswoman for Carper, said that the senator wants those who resisted last year’s comprehensive legislation to reconsider. She said he is eager to work with them, as well as to see what kind of executive order comes out of the White House. She said he would then determine what kind of legislation might be needed to accompany it.

In the GOP-led House, the most popular approach to cybersecurity legislation echoes the concerns of most industry, emphasizing information sharing between industry and the government and industry but excluding industry security standards.

Supporters of the House approach hope that changes to Congress in 2013 will help usher their proposals through this year.

“What’s new is the new Congress, ” John Engler, president of the Business Roundtable, told reporters this month. “We have an opportunity to really get this right.”

The Business Roundtable, which like many business groups opposes any industry security standards, recently released a proposal for cybersecurity that was much like its previous position, including support for cybersecurity legislation centered on information sharing.

Maryland’s C.A. Dutch Ruppersberger, the top Democrat on the House Intelligence Committee and a co-sponsor of last year’s House-passed information sharing bill, said that the departure of retired Sen. Joseph I. Lieberman, I-Conn., and Susan Collins, R-Maine from the Homeland Security Committee “gives us a new, fresh start.”

Lieberman and Collins were two of the most vocal backers, with the White House, of industry security standards for critical infrastructure. They were co-sponsors with Carper, Rockefeller and Feinstein of last year’s comprehensive Senate cybersecurity legislation.