[Dailydave] Graphing: Don't believe everything you see.

Douglas F. Calvert dfc at anize.org
Fri Feb 9 12:57:06 EST 2007 

Adam Shostack wrote:
> Avery,
> 
> I'll know it when I see it. :)
> 
> I was really excited to see "Is There a Cost to Privacy Breachs? An
> Event Study," Alessandro Acquisti, Allan Friedman, and Rahul
> Telang. WEIS 2006 and ICIS 2006.
> (http://www.heinz.cmu.edu/~acquisti/papers/acquisti-friedman-telang-privacy-breaches.pdf)
>  This study debunked the idea that breach notices hurt the company's
> shareholders in the long run.  It's an important mis-conception, and
> I'm glad to have data to show that it's wrong.
> 
> 

Why wouldn't you want the market to punish actors with security lapses? Economic incentives are
the only way security will be taken seriously.


In related news:

"Mutually Assured Protection: Toward Development of Relational
 Internet Data Security and Privacy Contracting Norms"
     SECURING PRIVACY IN THE INTERNET AGE, Radin et al., eds.,
     Stanford University Press, 2006


  Contact:  ANDREA M. MATWYSHYN
              University of Florida, University of Cambridge
    Email:  andreamm at ufl.edu
Auth-Page:  http://ssrn.com/author=627948

Full Text:  http://ssrn.com/abstract=914420

ABSTRACT: This paper empirically and normatively explores the
current data security contracting regime that exists online.
Using an analytical lens from complexity theory, this article
presents an empirical study of 75 websites of publicly traded
companies across time, tracking legal emergence of data security
contracting practices. It then argues that a new legal
construction for data security contracting is needed to replace
the current regime of terms of use and privacy policies; current
internet data security contracting structures do not facilitate
building of commercial trust.



-- 
Douglas F. Calvert              -/-                dfc at anize.org
0xC9541FB2  /  0817 30D4 82B6 BB8D 5E66 06F6 B796 073D C954 1FB2

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 825 bytes
Desc: OpenPGP digital signature
Url : http://lists.immunitysec.com/pipermail/dailydave/attachments/20070209/16686240/attachment.pgp

More information about the Dailydave mailing list