Accurate, Focused Research on Law, Technology and Knowledge Discovery With Daily Postings Since 2002
Army Contracting: Training and Guidance Needed to Ensure Appropriate Use of the Option to Extend Services Clause, GAO-16-262R: Published: Jan 28, 2016. Publicly Released: Jan 28, 2016. Information Security: DHS Needs to Enhance Capabilities, Improve Planning, and Support Greater Adoption of Its National Cybersecurity Protection System, GAO-16-294: Published: Jan 28, 2016. Publicly Released: Jan 28, …
Via the White House Blog, January 22, 2016 – “The Government has a responsibility to determine the fitness of Federal employees, members of the Armed Forces, and contractors for the jobs they are hired into and for the sensitive work they do on behalf of the American people each and every day. At the same …
Via EFF – “In fact, in response to EFF’s FOIA suit to get access to the official U.S. policy on zero days, the government redacted every single reference to “offensive” use of vulnerabilities. …In response to EFF’s motion for summary judgment, the government has disclosed a new version of the Vulnerabilities Equities Process, minus many …
Shackelford, Scott and Russell, Scott, Operationalizing Cybersecurity Due Diligence: A Transatlantic Comparative Case Study (January 12, 2016). South Carolina Law Review, 2016. Available for download at SSRN: http://ssrn.com/abstract=2714529 “Although much work has been done on applying the law of warfare to cyber attacks, far less attention has been paid to defining a law of cyber …
The Federal Cybersecurity Workforce: Background and Congressional Oversight Issues for the Departments of Defense and Homeland Security. Kathryn A. Francis, Analyst in Government Organization and Management; Wendy Ginsberg Analyst in American National Government. January 8, 2016. “The federal cybersecurity workforce is responsible for protecting U.S. government systems and networks against cyber threats and attacks. Federal …
“This document identifies selected 2016 examination priorities of the Office of Compliance Inspections and Examinations (“OCIE,” “we,” or “our”) of the Securities and Exchange Commission (“SEC” or “Commission”). In general, th priorities reflect certain practices and products that OCIE perceives to present potentially heightened risk to investors and/or the integrity of the U.S. capital markets. …
CRS – Data Security and Breach Notification Legislation: Selected Legal Issues, Alissa M. Dolan, Legislative Attorney. December 28, 2015. “Recent data breaches at major U.S. retailers have placed a spotlight on concerns about the security of personal information stored in electronic form by corporations and other private entities. A data breach occurs when data containing …
Audit – DoD Needs an Effective Process to Identify Cloud Computing Service Contracts, DODIG-2016-038, December 28, 2015. “Objective – Our objective was to determine whether selected DoD Components performed a cost-benefit analysis before acquiring cloud computing services. In addition, we were to identify whether those DoD Components achieved actual savings as a result of adopting …
Via Wired – “In October 2013, a young entrepreneur named Ross Ulbricht was arrested at the Glen Park branch of the San Francisco Public library. It was the culmination of a two-year investigation into a vast online drug market called Silk Road. The authorities charged that Ulbricht, an idealistic 29-year-old Eagle Scout from Austin, Texas, …
“The Dissent project is a research collaboration between Yale University and UT Austin to create a powerful, practical anonymous group communication system offering strong, provable security guarantees with reasonable efficiency. Dissent’s technical approach differs in two fundamental ways from the traditional relay-based approaches used by systems such as Tor: Dissent builds on dining cryptographers and …
White House: “U.S. companies are most effective when they can rely on the same cybersecurity standards overseas as they do in the United States. Not only do common standards make it easier for product development and sales, companies can more easily maintain and enhance network defense and resilience, which are vital in today’s world of …
“90% of industries have experienced a PHI breach…Welcome to the first Verizon Protected Health Information Data Breach Report (PHIDBR)…The purpose of this study is to shed light on the problem of medical data loss—how it is disclosed, who is causing it and what can be done to combat it. This is a far-reaching problem that …
