Rethinking Safety and Security in a Networked World: Reducing Harm by Increasing Cooperation

Nash, Victoria; Peltu, Malcolm

doi:10.2139/ssrn.1325232

Cited by 4 publications

(2 citation statements)

References 9 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…To this end it needs to notify stakeholders, dealers, network and service suppliers, and postal operators administrative act rulings (resolutions, contracts and orders) issued by the Ministry of ICT." As part of a class exercise on Internal Audit of Information Security, officials from the Office of IT, Ministry of Information Technologies and Communications of Colombia, showed clear flaws in the security system and in the process of notifications issued by that entity, since as shown in Table 3, the availability, confidentiality and integrity of information assets, ranked people, technologies and processes, demonstrating a high risk that the data used in the notification process are vulnerable to failures in safety systems of information, taking into account that the probability of potential threats and vulnerabilities are divided into the following variables ,where one (1), means that vulnerabilities or threats to information are likely to occur and five (5) indicates that it is likely that threats or vulnerabilities will arise and threaten the confidentiality, integrity and availability of assets. The average of the criticality index is 3.96.…”

Section: The Colombian Case: Data Protection and Information Securitymentioning

confidence: 99%

Analyzing the best practices of information security and protection of sensitive data in the context of e-government in Colombia and Chile

Concha

Suárez

2013

Proceedings of the 7th International Conference on Theory and Practice of Electronic Governance

View full text Add to dashboard Cite

This article is the result of a research project on information security and protection of sensitive data in Colombia and Chile, since information security is a fundamental issue for the protection of individuals' and companies' data, especially when said information is contained in an unregulated environment such as the Internet, and when countries under development such as Colombia and Chile are close to implementing electronic government. The regulations and the current state of the protection of sensitive data in both countries will be analyzed in this paper, using as a reference the good data protection practices defined by the European Union and the United States. Additionally, the paper reviews information security and data protection within the Ministry of Information Technology and Communication analyzing the likelihood of threats to the integrity, confidentiality and availability of information in the notification process to determine whether Colombia is prepared to guarantee flexible on-line procedures online as well as secure information and legal certainty to citizens.

show abstract

Section: The Colombian Case: Data Protection and Information Securitymentioning

confidence: 99%

Analyzing the best practices of information security and protection of sensitive data in the context of e-government in Colombia and Chile

Concha

Suárez

2013

Proceedings of the 7th International Conference on Theory and Practice of Electronic Governance

View full text Add to dashboard Cite

show abstract

“…Unfortunately, the difference between expert and non-expert users is poorly addressed. 241 This places ISPs in a better position to do so; 242 ISPs are actually using filtering techniques for traffic management purposes.…”

Section: G8 Government and Industrymentioning

confidence: 99%

Data Protection and the Prevention of Cybercrime - The EU as an Area of Security?

Porcedda

2012

SSRN Journal

View full text Add to dashboard Cite

Cybercrime and cyber-security are attracting increasing attention, both for the relevance of Critical Information Infrastructure to the national economy and security, and the interplay of the policies tackling them with 'ICT sensitive' liberties, such as privacy and data protection. This study addresses the subject in two ways. On the one hand, it aims to cast light on the (legal substantive) nature of, and relationship between, cybercrime and cyber security, which are currently 'terms of hype' (and therefore it is descriptive). On the other, it explores the possibility of reconciling data protection and privacy with the prevention of cybercrime and the pursuit of a cyber-security policy (and therefore it explores causation). As such, the subject falls in the 'security vs. privacy' debate, and wishes in particular to investigate whether it is possible to build 'human rights by design' security policies, i.e. a security policy that reconciles both security and human rights. My argument hinges on a clarification of the term 'cybercrime' (and cyber-security), both by building on the literature-which recognises the mix of traditional crimes committed by electronic means (broad cybercrime or off-line crimes), and novel crimes possible only in the online environment (narrow cybercrime or online crimes)-and on original interpretations as far as the relationship between cybercrime and cyber-security is concerned. I argue that narrow (or online) crimes and broad (or off-line) crimes are profoundly different in terms of underlying logics while facing the same procedural challenges, and that only narrow cybercrime pertains to cyber-security, understood as a policy. Yet, the current policy debate is focussing too much on broad cybercrimes, thus biasing the debate over the best means to tackle ICT-based crimes and challenging the liberties involved. I then claim that the implementation of data protection principles in a cyber-security policy can act as a proxy to reduce cyber threats, and in particular (narrow) cybercrime, provided that the following caveats are respected: i) we privilege a technical computer security notion; ii) we update the data protection legislation (in particular the understanding of personal data); and iii) we adopt a coreperiphery approach to human rights. The study focuses on the European Union. The interaction between privacy and data protection and other liberties involved, as well as purely procedural issues, are outside of the scope of this research.

show abstract

Principles of Cybercrime

Clough

2015

View full text Add to dashboard Cite

Cambridge University Press has no responsibility for the persistence or accuracy of URLs for external or third-party internet websites referred to in this publication, and does not guarantee that any content on such websites is, or will remain, accurate or appropriate. Information regarding prices, travel timetables, and other factual information given in this work is correct at the time of first printing but Cambridge University Press does not guarantee the accuracy of such information thereafter.

show abstract

Rethinking Safety and Security in a Networked World: Reducing Harm by Increasing Cooperation

Cited by 4 publications

References 9 publications

Analyzing the best practices of information security and protection of sensitive data in the context of e-government in Colombia and Chile

Analyzing the best practices of information security and protection of sensitive data in the context of e-government in Colombia and Chile

Data Protection and the Prevention of Cybercrime - The EU as an Area of Security?

Principles of Cybercrime

Contact Info

Product

Resources

About