Tilbake til søkeresultatene

IKTSIKKER-IKT sikkerhet og sårbarhet

Legal Information Security Regulations - an Instrumental Perspective

Tildelt: kr 1,3 mill.

Section for Information Technology and Administrative Systems (SITAS) is currently working on the one year project “Mapping statutory regulations of information security”. Although not completed, some tentative conclusions regarding major tren ds in contemporary security lawmaking are identified: 1) the legal information security regulation is expanding in number and volume, 2) the lawmaking process is internationalized, 3) the legal responsibility is fragmented, 4) the selected regulatory stra tegy is extensive and diverse, 5) the regulations are poorly coordinated and 6) we lack empirical based research. The preliminary research has required attention to four important areas: First, we need to continue mapping legal aspects of Information Sec urity. Second, we need to study empirically to what extent information security is realized in practice. Moreover to conduct analyses describing various independent variables, not merely existing “legal variables”, that possible explains the a ctual realized information security level. Third, we need to investigate possible correlations (if any) between statutory information security regulations and realized security level in society. Finally, we have to analyse potential steering variables inc luded or excluded in modern information security regulations. The recommended study aims at contributing to the ongoing legal policy debates concerning the overall regulatory process, e.g. coordination demands, financial and administrative consequences, legal simplification, etc. Each of these subjects areas are given top priority in the current National Strategy on Information Security (e-Norge 2003).

Budsjettformål:

IKTSIKKER-IKT sikkerhet og sårbarhet