The University of Southampton
×
Filter your search:
University of Southampton Institutional Repository

The case for regulating computer security applications

The case for regulating computer security applications
The case for regulating computer security applications
Computer security applications (CSAs) are essential for ensuring information security across insecure mediums such as the Internet, however despite the widespread reliance placed upon them they appear to receive no greater focus on quality than that of the broader software industry. In identifying information asymmetry as a leading factor behind substandard software quality, and by highlighting how private law and compensation are unable to otherwise remedy the situation, this paper puts forward a case for the regulation of CSA quality. Justified through legal and economic analysis it proposes a regulatory model that draws upon industry expertise to mandate the use of standardised software engineering methods to achieve quality assurance and build trust within CSA quality, as well as leveraging the proposed European Network and Information Security Directive to mandate the disclosure of defects and vulnerabilities within CSAs sold on the European Single Market and thereby dissolving information asymmetry accordingly.
2212-4748
Moore, Roksana
4768add9-37aa-4898-9d67-681b1c39e7fd
Moore, Roksana
4768add9-37aa-4898-9d67-681b1c39e7fd

Moore, Roksana (2013) The case for regulating computer security applications. Computer Law & Security Review. (In Press)

Record type: Article

Abstract

Computer security applications (CSAs) are essential for ensuring information security across insecure mediums such as the Internet, however despite the widespread reliance placed upon them they appear to receive no greater focus on quality than that of the broader software industry. In identifying information asymmetry as a leading factor behind substandard software quality, and by highlighting how private law and compensation are unable to otherwise remedy the situation, this paper puts forward a case for the regulation of CSA quality. Justified through legal and economic analysis it proposes a regulatory model that draws upon industry expertise to mandate the use of standardised software engineering methods to achieve quality assurance and build trust within CSA quality, as well as leveraging the proposed European Network and Information Security Directive to mandate the disclosure of defects and vulnerabilities within CSAs sold on the European Single Market and thereby dissolving information asymmetry accordingly.

This record has no associated files available for download.

More information

Accepted/In Press date: 2013
Related URLs:
Organisations: Southampton Law School
Learn more about Southampton Law School research

Identifiers

Local EPrints ID: 354297
URI: http://eprints.soton.ac.uk/id/eprint/354297
ISSN: 2212-4748
PURE UUID: 775c3409-8fa5-4059-bc9b-c13b06251ba8

Catalogue record

Date deposited: 05 Jul 2013 12:56
Last modified: 11 Dec 2021 02:25

Export record

Contributors

Author: Roksana Moore

Download statistics

Downloads from ePrints over the past year. Other digital versions may also be available to download e.g. from the publisher's website.

View more statistics

Library staff additional information
Atom RSS 1.0 RSS 2.0

Contact ePrints Soton: eprints@soton.ac.uk

ePrints Soton supports OAI 2.0 with a base URL of http://eprints.soton.ac.uk/cgi/oai2

This repository has been built using EPrints software, developed at the University of Southampton, but available to everyone to use.

We use cookies to ensure that we give you the best experience on our website. If you continue without changing your settings, we will assume that you are happy to receive cookies on the University of Southampton website.

×