Abstract:
Reviews the public-private partnership required for sophisticated cyber security. Argues there is no simple gold standard or mandatory minimum standard. Analyzes the tension between government’s role in providing for the common defense and industry’s role in maximizing shareholder value. Concludes that ultimately, government should compensate private entities for investing in government’s priorities such as the social contract rather than mandating shareholder subsidization of government’s provision for the common defense. Reviews the 2002 National Strategy that envisioned an equal partnership between industry and government. Claims more government regulation is not the answer and that perspective taking and flexibility are necessary.
Institution:
Internet Security Alliance
Industry Focus:
Information & Telecommunication
Internet & Cyberspace