Access "Another call for federal data privacy laws"
This article is part of the May 2014 Vol. 16 / No. 4 issue of Figuring out FIDO as the first products emerge
The fallout from major data breaches has pushed various members of Congress to propose yet another batch of data breach notification bills. Many of these proposed pieces of legislation simply recycle iterations of the bills introduced in earlier congressional sessions. Others contain a few new twists, but it comes down to a question of whether or not Congress can rally around at least one bill and pass federal data breach notification. Recent events may provide the impetus needed to get such a bill over the finish line. The Target breach has led to a number of different stakeholders calling for change in the form of federal legislation. Why now, you might ask? Many people agree that PCI DSS arose as a result of the credit card industry wanting to avoid federal regulation. For starters, the Target breach exposed over 70 million credit cards. While not the largest data breach in history (the NASDAQ breach discovered in 2007 exposed over 160 million credit and debit cards), many consumers shop at Target and place trust in the retailer when they hand over their ... Access >>>
Premium Content for Free.
Beyond the Page: Is Fast Identity Online in your future?
by David Strom, Contributor
This Beyond the Page explores the evolution of two-factor authentication and a range of emerging FIDO-ready technologies.
Another call for federal data privacy laws
by Randy Sabett
The patchwork of state laws has not slowed epic data breaches. Will we see federal data breach notification laws in 2015?
- Beyond the Page: Is Fast Identity Online in your future? by David Strom, Contributor
Password-free authentication: Figuring out FIDO
by David Strom, Contributor
Will open FIDO standards for better interoperability of next-generation authentication technologies actually work?
Filling the CISO role: Is there any reason enterprises shouldn't?
by Brandan Blevins, News Writer
In the wake of the Target breach, many companies still don't have a dedicated CISO.
- Password-free authentication: Figuring out FIDO by David Strom, Contributor
Main Street forces new avenues to security and data privacy laws
by Kathleen Richards, features editor
Can the technology industry solve cybersecurity and data protection issues without federal legislation?
Marcus Ranum and Georgia Weidman hack into cyberdefense
by Marcus J. Ranum, Contributor
Are critics of the penetration test wrong? Find out what breaking and entering your enterprise network can reveal about the state of your security.
Advanced persistent threats: Has the industry moved on?
by Robert Richardson, Editorial Director
APT gives new meaning to targeted attacks that often rely on low-tech tactics and flawed network security.
- Main Street forces new avenues to security and data privacy laws by Kathleen Richards, features editor
More Premium Content Accessible For Free
Does Windows 8.1 meet the demands of the BYOD age?
The variety and sheer number of network endpoints, users and devices in the enterprise today is driving IT's demands for enhanced security features ...
Application security policy after Heartbleed
Enterprises leverage open source software for the perceived quality of the code, but the Heartbleed flaw has made many question their use of ...
Devising a security strategy for the modern network
The network of today's enterprise is larger and more diverse than ever, which means there's more for hackers to attack. So as enterprises update ...