Incentives Better for Internet Security Than Regulations, ISA Says
The ISA- which is mainly made up of IT vendors and their customers- says it backs such programs as cybersecurity insurance, caps on legal liability for companies that adopt cybersecurity best practices, and awards programs for some of those same companies.
Yesterday the ISA released a white paper, maintaining that info-security legislation such as the Improving America's Security Act passed by the U.S. Senate last month, is the wrong way. . The Improving America's Security Act would direct the Department of Homeland Security to develop standardization and certification programs for critical U.S. infrastructure, including the Internet.
"That approach will not work ... due to factors within the Internet itself," said Larry Clinton, president of the ISA. "The Internet is inherently international, it changes much too quickly, and it's under constant attack."
Instead, the paper outlined proposed incentives, which include:
• Companies following best practices should be able to buy additional insurance for cybersecurity-related events. Some companies have deferred investments in cybersecurity because they are concerned that they aren't protected from liability, the white paper says.
• The U.S. government should limit legal liability for companies following best practices.
• U.S. government agencies should set cybersecurity standards in its procurement practices, creating new business opportunities for companies that follow best practices.
• The U.S. government should establish an awards program recognizing companies with strong cybersecurity programs.
Related Tags: security, Security, Internet, internet, cybersecurity, programs
- Related Entries
Listed below are links to sites that reference Incentives Better for Internet Security Than Regulations, ISA Says:
Trackback Pings
TrackBack URL for Incentives Better for Internet Security Than Regulations, ISA Says:
http://blog.tmcnet.com/mt3/t.fcgi/32255