Skip to Main Content
ASME Press Select Proceedings

International Conference on Electronics, Information and Communication Engineering (EICE 2012)

Garry Lee
Garry Lee
Information Engineering Research Institute
Search for other works by this author on:
No. of Pages:
ASME Press
Publication date:

Information security is a risk function. Paying for too much security can be more damaging in economic terms than not buying enough. This leads to the optimal expenditure on damage prevention and the question as to where this should lie. Who should be responsible for the security failures that are affecting the economy and society and how is this maximized in order to minimize negative externalities? Next, how do we best enforce liability in a global economy? In this paper, we address some of the economic issues that are arising due to an inability to assign risk correctly. We look at the externalities that restrict the development of secure software and how the failure of the end user to apply controls makes it less probable that a software vendor will enforce stricter programming controls.

This content is only available via PDF.
Close Modal
This Feature Is Available To Subscribers Only

Sign In or Create an Account

Close Modal
Close Modal