Why Don't We Defend Better?
Data Breaches, Risk Management, and Public Policy
Seiten
2019
Crc Press Inc (Verlag)
978-0-8153-5662-2 (ISBN)
Crc Press Inc (Verlag)
978-0-8153-5662-2 (ISBN)
The wave of data breaches raises two pressing questions: Why don’t we defend our networks better? And, what practical incentives can we create to improve our defenses? This book answers those questions.
The wave of data breaches raises two pressing questions: Why don’t we defend our networks better? And, what practical incentives can we create to improve our defenses? Why Don't We Defend Better?: Data Breaches, Risk Management, and Public Policy answers those questions. It distinguishes three technical sources of data breaches corresponding to three types of vulnerabilities: software, human, and network. It discusses two risk management goals: business and consumer. The authors propose mandatory anonymous reporting of information as an essential step toward better defense, as well as a general reporting requirement. They also provide a systematic overview of data breach defense, combining technological and public policy considerations.
Features
Explains why data breach defense is currently often ineffective
Shows how to respond to the increasing frequency of data breaches
Combines the issues of technology, business and risk management, and legal liability
Discusses the different issues faced by large versus small and medium-sized businesses (SMBs)
Provides a practical framework in which public policy issues about data breaches can be effectively addressed
The wave of data breaches raises two pressing questions: Why don’t we defend our networks better? And, what practical incentives can we create to improve our defenses? Why Don't We Defend Better?: Data Breaches, Risk Management, and Public Policy answers those questions. It distinguishes three technical sources of data breaches corresponding to three types of vulnerabilities: software, human, and network. It discusses two risk management goals: business and consumer. The authors propose mandatory anonymous reporting of information as an essential step toward better defense, as well as a general reporting requirement. They also provide a systematic overview of data breach defense, combining technological and public policy considerations.
Features
Explains why data breach defense is currently often ineffective
Shows how to respond to the increasing frequency of data breaches
Combines the issues of technology, business and risk management, and legal liability
Discusses the different issues faced by large versus small and medium-sized businesses (SMBs)
Provides a practical framework in which public policy issues about data breaches can be effectively addressed
Robert H. Sloan, PhD, is a Professor and Head of the Department of Computer Science at the University of Illinois, Chicago. Richard Warner, PhD, is a Professor Norman and Edna Freehling Scholar at Chicago-Kent College of Law in Illinois.
1 Introduction
2 Software Vulnerabilities
3 (Mis)management: Failing to Defend against Technical Attacks
4 A Mandatory Reporting Proposal
5 Outsourcing Security
6 The Internet of Things
7 Human Vulnerabilities
8 Seeing the Forest: An Overview of Policy Proposals
| Erscheinungsdatum | 18.07.2019 |
|---|---|
| Zusatzinfo | 1 Tables, black and white |
| Verlagsort | Bosa Roca |
| Sprache | englisch |
| Maße | 138 x 216 mm |
| Gewicht | 550 g |
| Themenwelt | Informatik ► Netzwerke ► Sicherheit / Firewall |
| ISBN-10 | 0-8153-5662-5 / 0815356625 |
| ISBN-13 | 978-0-8153-5662-2 / 9780815356622 |
| Zustand | Neuware |
| Haben Sie eine Frage zum Produkt? |
Mehr entdecken
aus dem Bereich
aus dem Bereich
Das Lehrbuch für Konzepte, Prinzipien, Mechanismen, Architekturen und …
Buch | Softcover (2022)
Springer Vieweg (Verlag)
34,99 €
Management der Informationssicherheit und Vorbereitung auf die …
Buch (2024)
Carl Hanser (Verlag)
69,99 €
