论文信息 - Would Increased Regulation Reduce the Number of Information Breaches?

Would Increased Regulation Reduce the Number of Information Breaches?

Private Personally Identifiable Information (PII) is increasingly stored and lost by a variety of organizations. The retail, healthcare, technology, banking, and gaming industries as well as many government agencies have been particularly hard hit by high visibility security breaches that compromised millions of individual's records. Decisions to protect information are not always based on good risk management practices and can often be affected by the need to comply with an industry or government regulation. We examine the effectiveness of regulation within several industries to determine whether increased regulation would result in a reduction in information compromises.

Barbara Hewitt | Mark L. Huson

[1] Nathan Alexander Sales,et al. Regulating Cyber-Security , 2012 .

[2] Daniel J. Solove. HIPAA Turns 10: Analyzing the Past, Present, and Future Impact , 2013 .

[3] Christopher J. Novak,et al. 2009 Data Breach Investigations Report , 2009 .

[4] Jeffery E. Payne. Regulation and information security: can Y2K lessons help us? , 2004, IEEE Security & Privacy Magazine.

[5] Anindya Ghose,et al. The Economic Incentives for Sharing Security Information , 2004, Inf. Syst. Res..

[6] O. Hart. Regulation and Sarbanes-Oxley , 2009 .

[7] Alessandro Acquisti,et al. Do Data Breaches Disclosure Laws Reduce Identity Theft? , 2010, WEIS.