BreachExchange mailing list archives
Re: Revising CA breach law (SB 20)
From: "B.K. DeLong" <bkdelong () pobox com>
Date: Mon, 16 Mar 2009 18:20:32 -0400
On Mon, Mar 16, 2009 at 3:22 PM, Sasha Romanosky <sromanos () andrew cmu edu> wrote:
I hadn't seen this posted yet, so here's the proposal for updating the CA breach law. What I find most interesting are the arguments opposed (2nd to last paragraph). Not that I believe them, necessarily, but that it would be a great to actually find some evidence either in favor or against them. I've seen a little bit of work related to whether people feel more or less comfortable disclosing information to a larger/smaller database, though nothing conclusive. I suspect the idea is that people might feel more secure with larger databases because of some twisted mental model of being 'lost in a crowd' which likely doesn't hold well in the digital medium.
Since they're doing FOIAs, I'd be curious what folks from the DatalossDB/OSF think of the proposed changes. -- B.K. DeLong (K3GRN) bkdelong () pobox com +1.617.797.8471 http://www.wkdelong.org Family. http://www.ianetsec.com Work. http://bkdelong.livejournal.com Life. PGP Fingerprint: 38D4 D4D4 5819 8667 DFD5 A62D AF61 15FF 297D 67FE FOAF: http://foaf.brain-stream.org _______________________________________________ Dataloss Mailing List (dataloss () datalossdb org) CREDANT Technologies, a leader in data security, offers advanced data encryption solutions. Protect sensitive data on desktops, laptops, smartphones and USB sticks transparently across your enterprise to ensure regulatory compliance. http://www.credant.com/stopdataloss
Current thread:
- Do Breach Notification Laws Work? security curmudgeon (Mar 12)
- Re: Do Breach Notification Laws Work? Jeffrey Walton (Mar 12)
- Re: Do Breach Notification Laws Work? bethg (Mar 12)
- Re: Do Breach Notification Laws Work? Adam Shostack (Mar 16)
- Re: Do Breach Notification Laws Work? TSG (Mar 16)
- Re: Do Breach Notification Laws Work? Adam Shostack (Mar 16)
- Re: Do Breach Notification Laws Work? Chris Walsh (Mar 16)
- Revising CA breach law (SB 20) Sasha Romanosky (Mar 16)
- Re: Revising CA breach law (SB 20) B.K. DeLong (Mar 16)
- Re: Revising CA breach law (SB 20) Chris Walsh (Mar 16)
- Re: Revising CA breach law (SB 20) security curmudgeon (Mar 16)
- Re: Do Breach Notification Laws Work? Jeffrey Walton (Mar 12)