Shereen Khan,Tajneen Saleh,Magiswary Dorasamy,Nasreen Khan,Olivia Tan Swee Leng,Rossanne Gale Vergara

DOI: https://doi.org/10.12688/f1000research.123098.1

2022-08-23

Abstract:Background: Cybercrime is a fast-growing digital crime and legislation falling behind with the fast-moving advancement of technology. One important factor projected by literature in combating cybercrime is legislation. In order to combat cybercrime, the role of cybercrime legislation is a challenge that has not been clearly studied before. This paper thus aims to recapitulate the literature on cybercrime legislation in combating cybercrime. The literature in this context emphasises on existing studies relating to cybercrime legislation and addressing the importance of adequate and efficient responses in place in order to combat cybercrime efficiently. Methods: This paper finds an extensive literature review using the "Preferred Reporting Items for Systematic Review and Meta-Analysis" method based on legislation to combat cybercrime and explains a systematic analysis of the legislation in most advanced countries in both technology and legal framework. The study was done by selecting keywords, validated by the experts to discover research trends of cybercrime legislation. A search was then run across seven academic databases, including the ACM Digital Library, Emerald, Hein Online, ProQuest, ScienceDirect, Scopus, and Westlaw Asia. Initially, five hundred and forty-eight articles were retrieved and out of which seventy-two studies met the inclusion criteria and were fully reviewed. Results: The findings of the study revealed that comprehensive cybercrime legislation plays a vital role in combating cybercrime and cybercrime legislation should be strengthened, enhanced, and made up to date with the rapid advancement of technology in order to address the rising number of cybercrime. Discussion: This systematic review is timely and highlights future research directions to improve a comprehensive legal framework to combat the rising of cybercrime effectively. To fill the research gap, the findings also have fundamental practical implications for the policy makers, in enacting an up to date cybercrime legislation by highlighting the role of legislation in combating cybercrime.

S. Nakkeeran,Dr. Dharamveer Singh

DOI: https://doi.org/10.29070/vjj00g84

2024-09-03

Journal of Advances and Scholarly Researches in Allied Education

Abstract:The rise of cybercrime has been a major problem for countries, businesses, and people all around the world. The purpose of this study is to shed light on the difficulties in enforcing laws against cybercrime in India and to highlight the critical need for such a framework in order to stem the tide of this rapidly expanding threat. There has been an upsurge in cybercrime in India in recent years. The fact that it has such a detrimental effect on people's social and economic life makes it a very worrying issue. Data from cybercrime cases prosecuted in India's most susceptible states and cities under the IT Act and the Indian Penal Code formed the basis of our study. In addition, we have examined the data of cybercrime instances perpetrated by individuals of varying ages. In addition to outlining the many reasons for cybercrime and the crimes themselves, this article also provides crucial recommendations on how to reduce cybercrime. Both the investigation and punishment of cybercriminals and the general deterrent against cybercrimes are weakened by these obstacles. To tackle the unique problems posed by cybercrime in India, this study acknowledges the need of a thorough legislative framework and suggests important components that should be included in the laws.

Ejiofor Oluomachi,Akinsola Ahmed,Wahab Ahmed,Edozie Samson

DOI: https://doi.org/10.29322/IJSRP.14.02.2023.p14610

2024-04-17

Abstract:This article assesses the effectiveness of current cybersecurity regulations and policies in the United States amidst the escalating frequency and sophistication of cyber threats. The focus is on the comprehensive framework established by the U.S. government, with a spotlight on the National Institute of Standards and Technology (NIST) Cybersecurity Framework and key regulations such as HIPAA, GLBA, FISMA, CISA, CCPA, and the DOD Cybersecurity Maturity Model Certification. The study evaluates the impact of these regulations on different sectors and analyzes trends in cybercrime data from 2000 to 2022. The findings highlight the challenges, successes, and the need for continuous adaptation in the face of evolving cyber threats

Cryptography and Security,Computers and Society

Kaspar Rosager Ludvigsen,Shishir Nagaraja

DOI: https://doi.org/10.48550/arXiv.2205.13196

2022-05-26

Abstract:Safety is becoming cybersecurity under most circumstances. This should be reflected in the Cybersecurity Resilience Act when it is proposed and agreed upon in the European Union. In this paper, we define a range of principles which this future Act should build upon, a structure and argue why it should be as broad as possible. It is based on what the cybersecurity research community for long have asked for, and on what constitutes clear hard legal rules instead of soft. Important areas such as cybersecurity should be taken seriously, by regulating it in the same way we see other types of critical infrastructure and physical structures, and be uncompromising and logical, to encompass the risks and potential for chaos which its ubiquitous nature entails. We find that principles which regulate cybersecurity systems' life-cycles in detail are needed, as is clearly stating what technology is being used, due to Kirkhoffs principle, and dismissing the idea of technosolutionism. Furthermore, carefully analysing risks is always necessary, but so is understanding when and how the systems manufacturers may fail or almost fail. We do this through the following principles: Ex ante and Ex post assessment, Safety and Security by Design, Denial of Obscurity, Dismissal of Infallibility, Systems Acknowledgement, Full Transparency, Movement towards a Zero-trust Security Model, Cybersecurity Resilience, Enforced Circular Risk Management, Dependability, Hazard Analysis and mitigation or limitation, liability, A Clear Reporting Regime, Enforcement of Certification and Standards, Mandated Verification of Security and Continuous Servicing. To this, we suggest that the Act employs similar authorities and mechanisms as the GDPR and create strong national authorities to coordinate inspection and enforcement in each Member State, with ENISA being the top and coordinating organ.

Computers and Society,Cryptography and Security

YAN Yi-zhou

DOI: https://doi.org/10.3969/j.issn.1008-7729.2007.03.016

2007-01-01

Abstract:With the popularization of computers and networks,it has become more and more convenient and rapid for people to exchange information.At the same time,cybercrime has become more and more complicated and harmful.What worries people is that because the establishment of legal system lags behind,there is a short- age in legislation to convict a few late-model criminal acts in returns the phenomenon unable but leaning on back to existence networks.The author tries to analyses several kinds of main cybercriminal acts and makes an approach to a few the matter of legislation for cybercrime.

Clara Pettoello-Mantovani

DOI: https://doi.org/10.32996/ijlps.2024.6.2.2

2024-03-03

International Journal of Law and Politics Studies

Abstract:In our interconnected society, crime persists, demanding joint efforts by national and international authorities to detect, prevent, and prosecute criminal activities. Jurisprudential evolution mandates lawmakers to possess a comprehensive legal vision, adapting laws to changing social contexts and emerging criminal methods, especially in technology, including computer technology and Artificial Intelligence (AI). This article comments on the escalating vulnerability of sovereign states and their economies to cyber-attacks. The radical evolution of computer systems has led to new modes of aggression, targeting not only traditional legal assets but also individuals familiar with advanced technology. The emergence of "cyberwarfare" prompts inquiries into potential categorizations within international legal frameworks. Recent global conflicts highlight the potential classification of cyber-attacks on critical infrastructure as war crimes or acts of aggression, urging the International Criminal Court (ICC) to consider incorporating cybercrimes into its core interests. While normative references may lack in existing conventions, the Martens Clause emphasizes treating attacks using technology as equivalent to conventional means. Article 51 of the United Nations Charter implies that cyber weapons could be deemed equivalent to conventional weapons under international law. The article stresses the importance of education and advanced training for legal personnel skilled in identifying cybercrime perpetrators, challenging the ICC to recruit or train individuals with the necessary legal and technical expertise for effective cybersecurity responses. The article briefly explores challenges in conceptualizing and categorizing cybercrimes within existing legal frameworks. The intersection of law and technology necessitates harmonious collaboration between legal and technical experts, acknowledging the intricate web of cyberspace and the implications of cyber threats on global stability and security. In conclusion, the article advocates a fundamental shift in the approach to justice, recognizing the ICC's imperative evolution in addressing cybercrimes. Integrating cybercrimes into the ICC's purview aligns with international law principles, emphasizing the equivalence of cyber weapons to conventional arms. Collaboration between legal and technical experts is essential in navigating the complexities of cybercrimes, ensuring accountability, and upholding justice in the digital age. The article concludes by highlighting the proactive role of the ICC in shaping the future of global justice amid emerging cyber threats.

Guanglong Wang,

DOI: https://doi.org/10.21638/spbu14.2022.305

2022-01-01

Abstract:In modern China, cybercrime is becoming more widespread, which has given rise to the need to rethink criminal law at the basic theoretical level. It seems that when countering crimes in cyberspace, it is necessary to shift the focus of cyber-criminal law from the traditional “network-centric” to “data-oriented” and to build a system for the protecting legal benefits of “data centralism”. In addition, the expansion of the objective components of cybercrime should be moderate: certain cyber-violations cannot be qualified as “illegal entrepreneurship”, as this contradicts the principle of legality of criminal law. The content of “knowingness” as a sign of the subjective side of the crime should be rethought: it should include such different forms as: a) the presence of collusion with other persons to assist in the commission of criminal acts; b) lack of collusion between the person providing assistance and the perpetrator, but the previous one, knowing that a particular perpetrator he is going to commit a certain criminal act, provides online support and assistance to the latter; c) online help providers who only have a probable idea of the existence of criminal acts, but do not have a clear idea of the culprit and the type of behavior of criminal acts, and as such there can be no collusion with the perpetrator of criminal acts, only objectively assists the culprit’s act. The theoretical basis for identifying complicity in cybercrime should be adjusted by approving “one-sided” subjective connection. Ultimately, through systematic adjustment and rethinking of the basic theory of criminal law in this area, the gradual improvement of criminal law norms to regulate the fight against cybercrime in the era of information networks is being carried out.

Seth Azubuike

DOI: https://doi.org/10.2139/ssrn.3878326

2021-01-01

SSRN Electronic Journal

Abstract:Increased cyber-attacks on the United States of America cyberspace has raised a lot of concerns on the integrity of the US cyberspace. The US government recently declared a state of emergency on cyber-attacks after its largest pipeline and meat supply companies were hit by a ransomware attack. These recent attacks show that, in addition to targeting government infrastructures, hackers now target key private companies and demand huge ransomware payments as consideration for not disclosing sensitive information and trade secrets accessed from the attack. This was the case with the attack on Colonial pipeline, who reportedly paid the hackers who shut down their systems the sum of $5million in ransom . The safety of the US cyberspace is a pre-requisite for a sustainable economic development in the US. Acknowledging this fact, the US Homeland security, in its publication, noted that “our daily life, economic vitality, and national security depend on a stable, safe, and resilient cyberspace” . It is important to note that the efforts of the US Homeland Security towards preventing cybersecurity attacks relates mainly to attacks targeted at federal government networks and critical infrastructure . The effect of this is that private companies are generally responsible to develop the capacity to protect their networks against cyber-attacks. Addressing the recent attacks on private companies, the US Senate Armed Services Committee during a hearing held on June 23, 2021, noted the lack of capacity on the part of private companies to withstand cyber-attacks . This acknowledgement came after President Biden had cautioned private companies to develop necessary infrastructure required to prevent future attacks. The Senate Committee also reinforced the need for the federal government to extend its cybersecurity prevention infrastructure to protect the entire country, including the private sector. To achieve a unified approach towards fighting cyber-attacks in the US, there is need for some level of dialogue and collaboration between the federal government and the private sector. The federal government must consider introducing laws and policies that will set the relevant standards required by companies to prevent cyber-attacks.

George S. Oreku,Fredrick J. Mtenzi

DOI: https://doi.org/10.1007/978-3-319-44257-0_6

2017-01-01

Abstract:It is widely accepted that technology is an agent of change in the society. If used properly, it can increase productivity and improve our quality of life. However, the current rate of change in technology leaves room for it to be exploited and be used for things it was not meant to do. This includes criminal activities which are carried using technology on the cyberspace that can be classified as cybercrime. Cybercrime or computer crime can be defined as a criminal activity in which computers or computer networks are a tool, a target or a place of criminal activity. Cybercrime can also be defined as the leveraging of information systems and technology to commit larceny, extortion, identity theft, fraud and, in some cases, corporate espionage. In this chapter, we explore the challenges of combating cybercrime given its dynamic, pervasive and international nature. We examine in detail the technical, social and legal factors that are continually shaping the landscape of cybercrime. Further, the chapter consolidates research and practical work in the area of cybercrime, emerging perspectives, paradigms and trends. A deliberate effort is made in making sure that the role of underground economy is clearly spelled out and its contribution to cybercrime is analysed. The impact of new laws which are being quickly enacted without much thought, discussion on the regulatory framework for combating cybercrime and ethical dimension of cybercrime given its global nature are examined. This chapter is expected to stimulate constructive discussions on novel ways of mitigating and promoting research in cybercrime.

Victor Adewopo,Sylvia Worlali Azumah,Mustapha Awinsongya Yakubu,Emmanuel Kojo Gyamfi,Murat Ozer,Nelly Elsayed

2024-01-08

Abstract:Cybercrime is a growing concern in West Africa due to the increasing use of technology and internet penetration in the region. Legal frameworks are essential for guiding the control of cybercrime. However, the implementation proves challenging for law enforcement agencies due to the absence of a dedicated and effective regional institutional follow-up mechanism. This study conducted a systematic literature review focusing on West Africa's prevalence of cybercrime, governing policies, regulations, and methodologies for combating cybercrime. West-Africa countries face significant cybercrime challenges, exacerbated by inadequate resources and a dearth of security experts. This study pinpoints potential cybercrime prevention strategies, such as leveraging the Triage framework and broadening research to cover pivotal areas like cyber aggression and cyberbullying. Our research findings highlight the urgency for policymakers and law enforcement agencies to devise more efficient prevention strategies and policies. Overall, this study provides invaluable insights into the state of cybercrime in West Africa to guide the formulation of potent prevention and intervention strategies.

Computers and Society,Cryptography and Security

孙雯

DOI: https://doi.org/10.3969/j.issn.1671-6604.2002.02.007

2002-01-01

Abstract:In recent years, the increasing number of cases of cyberspace crime have alerted lawmakers, legal experts and scholars all over the world. Legal sanctions against cases of cyberspace crime have become one of the important issues in legislation. In China, it is also of primary importance to have a complete cyberspace legislation including both civil and criminal laws. With numerous empirical case studies at hand, the paper is to start with the account of the unique features characteristic of the cases of cyberspace crime and then move on to compare and analyze how other countries make and enforce the law, thereby maintaining the status of information safety. The current laws and regulations related to the cases of cyberspace crime are primarily administrative and procedural ones in China. The brief description of related laws and statutes under the rubric of Chinese Criminal Law is far from complete in dealing with the largescale cases of cyberspace crime. It is crucial to cooperate with law enforcement officials in developed and developing countries, while coordinating effectively with local enterprises, government and social agencies, with a view to establishing a wideranging legal framework to protect cyberspace information safety.

Feras A. Batarseh

DOI: https://doi.org/10.48550/arXiv.2206.09465

2022-07-21

Abstract:Cybersecurity threats affect all aspects of society; critical infrastructures (such as networks, corporate systems, water supply systems, and intelligent transportation systems) are especially prone to attacks and can have tangible negative consequences on society. However, these critical cyber systems are generally governed by multiple jurisdictions, for instance the Metro in the Washington, D.C. area is managed by the states of Virginia and Maryland, as well as the District of Columbia (DC) through Washington Metropolitan Area Transit Authority (WMATA). Additionally, the water treatment infrastructure managed by DC Water consists of waste water input from Fairfax and Arlington counties, and the district (i.e. DC). Additionally, cyber attacks usually launch from unknown sources, through unknown switches and servers, and end up at the destination without much knowledge on their source or path. Certain infrastructures are shared amongst multiple countries, another idiosyncrasy that exacerbates the issue of governance. This law paper however, is not concerned with the general governance of these infrastructures, rather with the ambiguity in the relevant laws or doctrines about which authority would prevail in the context of a cyber threat or a cyber-attack, with a focus on federal vs. state issues, international law involvement, federal preemption, technical aspects that could affect lawmaking, and conflicting responsibilities in cases of cyber crime. A legal analysis of previous cases is presented, as well as an extended discussion addressing different sides of the argument.

Social and Information Networks,Cryptography and Security

Mykhailo Dumchykov,Maryna Utkina,Olha Bondarenko

DOI: https://doi.org/10.18280/ijsse.120409

2022-08-31

International Journal of Safety and Security Engineering

Abstract:The article is devoted to comparative legal research of cybercrime as a threat to the national security of the Baltic States and Ukraine. The purpose of the scientific article is to study the systems of criminal legislation in the part of cybercrime in the Baltic States and Ukraine, to determine the public danger of cybercrime, as well as to study ways of countering this criminal category. The object of research is cybercrime as a criminal and legal category. The subject of the study is the peculiarities of combating cybercrimes in the Baltic States and Ukraine, and carrying out a comparative analysis of their criminal legislation. The authors analyze the essence of the concept of cybercrime and identify the main types of cybercrime that are committed most often. Thus, in this article, "cybercrime" means any crime committed with the help of information technologies or in the information space. Special attention is focused on cybercrime in the Baltic States, in particular Latvia, Lithuania, and Estonia. The main types of cybercrimes, the responsibility for the commission of which is provided for by Chapter XVII of the Criminal Code of Ukraine, are described. The Convention on Cybercrime was considered, and it was determined which norms should be implemented in the legislation of the Baltic countries and Ukraine. It was determined that the issue of countering cybercrime in the Baltic States. The main threats, prevention, and countermeasures against cybercrimes in the Baltic States and Ukraine and the main features of international and legal cooperation with cybercrimes within the framework of the European Union are outlined. It was concluded that in order to combat crimes committed with the use of modern information technologies in Ukraine, it is necessary to constantly increase the security of information systems, develop modern information technologies, improve legislation in the field of information crimes, develop competitive means of informatization, expand international cooperation in the field of safe use of information resources.

В. В. Аніщук,С. Г. Зицик,V. V. Anishchuk,S. H. Zytsyk

DOI: https://doi.org/10.24144/2307-3322.2024.83.3.2

2024-09-01

Abstract:In the modern world, the development of information technologies opens up new opportunities for communication, business and science. The use and improvement of information technology has led to the emergence of cybercrime. The use and improvement of the field of information technology has led to the emergence of cybercrime. Cybercrime covers a wide range of criminal offenses from identity theft and financial fraud to attacks on critical infrastructure. Cybercrime has become a threat not only to individuals, but also to the state, which involves the destruction of the economic and information spheres, endangering the entire sphere of public life. The problem of countering cybercrime at both the national and international levels is an important issue. Despite the efforts of governments and international organizations to create effective countermeasures against cybercrime, the number and complexity of such criminal offenses continues to grow. This requires constant improvement of legal, technological and organizational protection mechanisms. Unfortunately, the fight against cybercrime in Ukraine is at an initial stage and is not as developed as in other countries of the world. The topic of combating cybercrime is very relevant in the conditions of martial law. Nowadays, a war in the information space can cause no less damage than a war on the battlefield, so cybercrime actors must take all necessary measures to reduce the number of cybercrimes committed by the enemy. One of the priority directions for improving the domestic legal system is the introduction of international concepts, principles and ideas, the use of positive experience of foreign countries in the issue of countering cybercrime.This article examines the main challenges faced by modern cyber security systems, analyzes existing methods of countermeasures in Ukraine and foreign countries, and suggests ways to improve them.

Viacheslav Blikhar,Mikhailo Tsymbaliuk,Halyna Hreshchuk,Ruslana Dostdar,Tetiana Kokhaniuk,Iryna Krykavska

DOI: https://doi.org/10.55643/fcaptp.6.47.2022.3936

2022-12-30

Financial and credit activity problems of theory and practice

Abstract:The purpose of the article is to study the theoretical foundations and applied recommendations for the development of international law in the context of economic and legal analysis of financial measures to combat cybercrime in the global environment. Based on the results of the research, it was found that the development of international law is under the influence of significant destabilizing factors of a legal, political, economic and social nature and has a significant impact on the financial and economic system of the country because a specific share of cybercrimes is related to the commission of offences in the financial and economic system. The low level of effectiveness of international law in regulating legal relations financial and economic nature in cyberspace was revealed. The intensification of economic crime has been proven in the virtual environment has been proven. As a result of research carried out by the countries of the European Union and Ukraine regarding the identification of trends in the international legal regulation of the system of financial measures against cyber risks and modern cyber threats, as well as the formation of methods and measures for combating economic cybercrime, it was established that among the countries selected for analysis, three groups are distinguished, characterized by common signs: highly developed countries (Austria, Belgium, Denmark, Ireland, Luxembourg, the Netherlands, Germany, Portugal, Finland, Sweden), where the high indicators of ensuring the protection of cyberspace against criminal encroachments of a financial and economic nature are positioned, however, there are certain problems that need to be solved; developing countries (Slovenia, Estonia, Spain, Latvia, Lithuania, Malta, Poland, France, Slovakia, the Czech Republic), where high indicators of cyberspace protection are positioned, however, there are certain problems that need to be solved; developing countries (Bulgaria, Greece, Italy, Cyprus, Romania, Hungary, Croatia, Ukraine), in which there are significant problems of ensuring cyber security and economic and legal regulation of systemic counteraction to cyber risks and cyber threats, arising in the financial and economic sphere. Ways to strengthen the influence of international law on the system of financial countermeasures against cybercrime are proposed, namely: improvement of international law norms on increasing the level of cyber security of the financial and economic sphere of the state based on the innovative development of information technologies and the convergence of artificial intelligence technologies; strengthening of international legal regulation of economic aspects of activity and protection of producers of information and communication technologies; strengthening the protection of information flows containing information on the implementation of financial and economic transactions in cyberspace.

Li Adik Aleksandrovich

DOI: https://doi.org/10.59022/ujldp.92

2023-06-30

Abstract:This article explores the legal and regulatory aspects of cyber law in the digital age. It examines the challenges and issues related to data privacy and security and analyzes the existing legal frameworks for addressing cyber law issues. The article also proposes strategies for enhancing cyber law and legal protections in the digital sphere. Through critical analysis, it discusses the practical and legal implications of cyber law and explores policy considerations for the future. The study emphasizes the importance of robust cyber law regulations to ensure a secure and trustworthy digital environment.

Dr. Jyoti Singh

DOI: https://doi.org/10.22214/ijraset.2023.53624

2023-06-30

International Journal for Research in Applied Science and Engineering Technology

Abstract:Abstract: Cybercrime refers to criminal activities that either target computers or networks such as hacking, phishing, and spamming, or involve the use of computer to commit offensive and illegal activities, such as hate crimes and child pornography. The research aims to explore the evolving landscape of cybercrime in India along with Indian cybercrime statistics, motives behind cybercrimes like fraud, extortion, sexual exploitation, terrorist activities, Inciting Hate against Country, Sale Purchase illegal drugs, etc. In addition, the paper will delve into specific types of cybercrime, unique challenges, and strategies for prevention of same. The paper investigates cybercrimes reported in India from 2016 to 2020 under the IT Act 2000 and Indian Penal Code (IPC), identifying both persistent and emerging types of cybercrimes, Police, and court Disposal of Cyber Crime Cases. The research design for this study will be a review type and will use both qualitative and quantitative data analysis techniques to present a bibliographic overview of the evolving landscape of cybercrime in India. The data analysis process will involve using statistical techniques to summarize the data and present it in a meaningful way. The findings of this research will be useful for policymakers, law enforcement agencies, and other stakeholders in the fight against cybercrime in India. This article will serve as the data set for various studies associated with the digital forensic investigations

Oluwatosin Reis,Nkechi Emmanuella Eneh,Benedicta Ehimuan,Anthony Anyanwu,Temidayo Olorunsogo,Temitayo Oluwaseun Abrahams

DOI: https://doi.org/10.51594/ijarss.v6i1.733

2024-01-25

International Journal of Applied Research in Social Sciences

Abstract:As the world becomes increasingly interconnected through digital technologies, the protection of individuals' privacy has emerged as a critical concern. This paper conducts a comprehensive global review of privacy legislation and enforcement mechanisms, shedding light on the challenges posed by the digital age. With a focus on the intricate balance between technological advancements and the fundamental right to privacy, the study explores the evolving legal landscape and its implications for individuals, businesses, and governments. The analysis encompasses diverse jurisdictions, highlighting the variations in privacy laws and enforcement approaches across regions. From the European Union's robust General Data Protection Regulation (GDPR) to the nuanced approaches in Asia and the Americas, this review synthesizes the evolving regulatory frameworks. Special attention is given to emerging issues such as the use of artificial intelligence, biometrics, and surveillance technologies, which pose unique challenges to existing privacy paradigms. Moreover, the paper investigates the effectiveness of enforcement mechanisms in ensuring compliance with privacy laws. It examines the role of governmental agencies, regulatory bodies, and international collaborations in addressing cross-border data flows and global privacy challenges. The study also evaluates the impact of recent high-profile privacy incidents on shaping legislative responses and enforcement strategies. By presenting a holistic view of privacy law challenges in the digital age, this research contributes to the ongoing discourse on safeguarding individuals' privacy rights in an era of rapid technological innovation. The findings provide valuable insights for policymakers, legal practitioners, businesses, and individuals seeking a deeper understanding of the evolving dynamics surrounding privacy legislation and enforcement on a global scale. Keywords: Law, Privacy Law, Digital Age, Review, Data Protection.

Anton Didenko

DOI: https://doi.org/10.2139/ssrn.3533664

2020-01-01

SSRN Electronic Journal

Abstract:Over the past several years, the cybersecurity regulatory landscape has undergone unprecedented change. Bespoke cybersecurity laws and regulations have replaced pre-existing general risk management and business continuity rules in a number of jurisdictions, including the European Union, Hong Kong, Russia, the USA and Singapore. Cybersecurity has also become the focus of international rules and recommendations adopted by numerous international organisations. The financial sector lies at the centre of the new regulatory initiatives – which, in the absence of an agreed international approach, vary substantially across jurisdictions. This article analyses these emerging legal frameworks by (i) conducting a comparative study of the novel cybersecurity regulations in finance, (ii) identifying the common features of such frameworks and (iii) assessing the prospect of their harmonisation at an international level. It argues that international harmonisation in this area is necessary to overcome the underlying regulatory challenges and outlines the scope of rules amenable, first, to initial (de minimis) and, second, subsequent (more expansive) harmonisation. The article concludes with a list of main upcoming challenges in designing and harmonising cybersecurity regulations in finance and practical recommendations for overcoming them.

Gregory Falco,Paul Cornish,Sadie Creese,Madeline Carr,Myriam Dunn Cavelty,Claudia Eckert,Herbert Lin,Gen Goto,Jamie Saunders,Andrew Grotto,Howard Shrobe,Sean Kanuck,Lawrence Susskind,Arvind Parthasarathi

DOI: https://doi.org/10.48550/arXiv.2107.14065

2021-07-08

Abstract:Spending on cybersecurity products and services is expected to top 123 billion U.S. dollars for 2020, more than double the 55 billion U.S. dollars spent in 2011.1 In that same period, cyber breaches quadrupled. Organizations globally face increasing liabilities, while boards of directors grapple with a seemingly Sisyphean challenge. Cyber Crossroads was born out of these alarming trends and a realization that the world cannot go on funneling finite resources into an indefinite, intractable problem. Cyber Crossroads brings together expertise from across the world, spanning aspects of the cyber problem (including technology, legal, risk, and economic) with the goal of creating a Cyber Standard of Care built through a global, not-for-profit research collaborative with no commercial interests. A Cyber Standard of Care should be applicable across industries and regardless of the organization size. It should be practical and implementable, with no requirement to purchase any product/service. Cyber Standard of Care should be woven into the existing governance fabric of the organization and it should not be yet another technical checklist, but a process/governance framework that can stand over time. To achieve this, we engaged with cyber risk experts and practitioners with a variety of relevant expertise, secured the advice/guidance of regulators and legal experts across jurisdictions, and interviewed leaders from 56 organizations globally to understand their challenges and identify best practices.

Computers and Society,Cryptography and Security