Accurate, Focused Research on Law, Technology and Knowledge Discovery With Daily Postings Since 2002
Sliter, John R., ‘Techno-Risk – the Perils of Learning and Sharing Everything’ from a Criminal Information Sharing Perspective (September 9, 2012). 30th Symposium on Economic Crime in Cambridge, England on September 5th, 2012. Available at SSRN. “The author has extensive law enforcement experience and the paper is intended to provoke thought on the use of …
Measuring the Cost of Cybercrime. Ross Anderson, Chris Barton, Rainer Bohme, Richard Clayton, Michel J.G. van Eeten Michael Levi, Tyler Moore, Stefan Savage “In this paper we present what we believe to be the first systematic study of the costs of cybercrime. It was prepared in response to a request from the UK Ministry of …
News release: “EFF’s Keeping Your Site Alive guide includes tips on choosing an appropriate webhost to provide the security and technical assistance needed to weather an attack. The guide also gives advice on how to back up and mirror content so it can be made available elsewhere in case the site is compromised, and includes …
Pipeline Cybersecurity: Federal Policy, by Paul W. Parfomak, Specialist in Energy and Infrastructure Policy, August 16, 2012 “The vast U.S. network of natural gas and hazardous liquid pipelines is integral to U.S. energy supply and has vital links to other critical infrastructure. While an efficient and fundamentally safe means of transport, this network is vulnerable …
Cyber Security Task Force: Public-Private Information Sharing. This report is the product of the Bipartisan Policy Centers Homeland Security Project, July 2012 “The attacks on information technology systems from a wide range of adversaries including hacktivists, criminals, and nation-states continue to grow.1 From October 2011 through February 2012, over 50,000 cyber attacks on …
Broadband Internet Technical Advisory Group, Technical work Group Report, August 2012 “A BITAG member and Internet Service Provider (ISP), Comcast, has observed large-scale Simple Network Management Protocol (SNMP) Reflected Amplification Distributed Denial of Service (DDoS) attacks. These attacks are significant and have been observed to result in tens of gigabits to over one hundred gigabits …
Via CDT: “The chart below compares on civil liberties grounds three bills that seek to promote cybersecurity and it updates a similar chart we issued on April 4, 2012 based on prior versions of all three bills. The Senate is set to consider the Cybersecurity Act, S. 3414 (Lieberman-Collins bill), introduced on July 19. The …
WSJ: “How big is the iCrime wave? National data aren’t available, but in New York, there were more than 26,000 incidents of electronics theft in the first 10 months of 201181% involving mobile phonesaccording to an internal police-department document. In Washington, D.C., cellphone-related robberies jumped 54% from 2007 to 2011, according to the Metropolitan Police …
Federal Laws Relating to Cybersecurity: Discussion of Proposed Revisions. Eric A. Fischer, Senior Specialist in Science and Technology, June 29, 2012 “For more than a decade, various experts have expressed increasing concerns about cybersecurity, in light of the growing frequency, impact, and sophistication of attacks on information systems in the United States and abroad. Consensus …
Via the 11th Annual Workshop on the Economics of Information Security – Measuring the Cost of Cybercrime – Ross Anderson, Chris Barton, Rainer Rainer Bohme, Richard Clayton, Michel J.G. van Eeten, Michael Levi, Tyler Moore, Stefan Savage “In this paper we present what we believe to be the rst systematic study of the costs of …
Via public intelligence: “The following design document was produced by Allure Security and sponsored by the Defense Advanced Research Projects Agency (DARPA). It describes a system for preventing leaks by seeding believable disinformation in military information systems to help identify individuals attempting to access and disseminate classified information. For more information on the document, see …
“The Department of Homeland Security (DHS) Control Systems Security Program manages and operates the Industrial Control Systems Cyber Emergency Response Team (ICS-CERT) to provide focused operational capabilities for defense of control system environments against emerging cyber threats…This report provides a summary of cyber incidents, onsite deployments, and associated findings from the time ICS-CERT was established …
