Saving the World with User-centric Identity.

Security on the web a topic at Davos

This was from Ashok Vemuri - SVP and Head of the Banking and Capital Markets Business, Infosys Technologies on the Forum Blog.

Often, the informal conversations you have over coffee are far more valuable than the public forums and one of the more interesting themes that came up amongst those I spoke to today was security. I’ve attended several meetings since my arrival and been involved in a number of discussions with banking institutions and business executives about the threats they’re currently facing.

Phishing, phreaking and pharming are now everyday terms and the kind of attacks that are having a massive impact on customer confidence driving the demand for some kind of security governing body. There is a definite feeling amongst delegates that trust is slowly dissolving amongst customers who are getting increasingly disillusioned about the safety of their information with their bank.

I had several fascinating statistics thrown at me in conversation. Whilst three years ago 90 percent of hacker attacks were benign with little dollar impact, 90 percent of hacking nowadays is malicious designed to disrupt data or steal information. One of the newest concepts I heard about earlier was ‘data-kidnapping’ – where hackers break into business systems and block a company from using its data, effectively holding them to ransom.

This provoked fierce debate about accountability amongst many of my fellow delegates. If an online banking customer has his account details stolen and loses money, who is responsible? Is it the user for not keeping his identity secure or is it the bank whose security may have been compromised? Doubtless, this is set to be the biggest driver behind the calls for regulation and standards with banks crying out for guidance from a governing body.

It makes sense. If we have regulators for the Internet, telecommunications and accounting then surely we should have some standards in place for security? Someone to turn to so there is no doubt over where the responsibilities lie or what actions should be taken when a security breach happens.

This post proves 1) Open Space is a great way to do events. Even at this incredible event the coffee breaks rock. 2) The issues that the Identity community is seeking to address are front and center amongst world business and political elites.

I also think there is a problem with he thinking that we need to have a security 'governing' body. I hope that those thinking along these lines can get with the 'internet' paradigm and read the Accountable Net: Peer Production of Internet Governance White Paper (Crawford, Johnson, Palfry) and Article (by Esther Dyson)

The Abstract:

Three problems of online life - spam, informational privacy, and network security - lend themselves to the peer production of governance. Traditional sovereigns have tried and, to date, failed to address these three problems through the ordinary means of governance. The sovereign has a role to play in the solution to each of the three, but not as a monopoly and not necessarily in the first instance. A new form of order online, brought on by private action, is emerging in response to these problems. If properly understood and encouraged, this emerging order could lead to an accountable internet without an offsetting loss of those aspects of online life that we have found most attractive.

There has been a great deal of loose talk about the need for internet governance, particularly in the context most recently of the World Summit on the Information Society, but much less careful analysis of the question whether the online world really does pose special problems, or present special opportunities, for collective action. There has been a general discussion as to whether the internet, as a general rule, lends itself to governance by traditional sovereigns or if something in the net's architecture resists such forms of control. We do not seek to re-open this debate, acknowledging at the outset the important role that traditional sovereigns have to play in most areas of decision-making and enforcement on the internet. Rather, we seek to look more closely at a series of particularly thorny issues that have proven especially challenging for policy makers seeking to impose governance by states. We seek the special problems -- and corresponding opportunities – of online activity and assess the relative merits of various options for how to resolve them.

Digg This
Reddit This
Stumble Now!
Buzz This
Vote on DZone
Share on Facebook
Bookmark this on Delicious
Kick It on DotNetKicks.com
Shout it
Share on LinkedIn
Bookmark this on Technorati
Post on Twitter
  • Share/Bookmark

Related posts:

  1. Bruce Schneier: Why Security Has So Little To Do With Security
  2. Bruce Schneier: Economics of Security
  3. Security and Password Myths
  4. Are VRM ideas gaining traction?
  5. "We have a saying in this business: ‘Privacy and security are a zero-sum game."

This entry was posted on 24/01/2007 (Wednesday) at 2:25 pm and is filed under Uncategorized. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.
Printed from: http://www.identitywoman.net/security-on-the-web-a-topic-at-davos .
© Kaliya Young Hamlin 2010.

Leave a Reply

  • Latest Tweets

    • She's Geeky NYC registration is LIVE!!! super early bird only lasts for a week http://bit.ly/bKOUxl 2 days ago
    • @pamelarosiedee has a post inspired by the lastest women in technology kerfullful. http://bit.ly/dCwFrL 2 days ago
    • I just posted more information about or DC venue for IIW - http://bit.ly/cja7SP 3 days ago
    • "Help" I am saving illustrator images as Jpg. that start out white then turn grey-black. what to do? 5 days ago
    • hi @RobBonta thanks for the follow cause I live in Alameda. Bad news is I can't vote I am Canadian (for now). 5 days ago
    • I went to your site @redjotter and like what I see there. I think focus on service design will be key for "identity" & #vrm services 5 days ago
    • @jayhori you mean the one in NYC? we are still trying to find a venue that doesn't cost the moon. 7 days ago

  • Archives

    • 2010 (16)
    • 2009 (82)
    • 2008 (112)
    • 2007 (167)
    • 2006 (300)
    • 2005 (189)

  • Categories

    • Active Clients (1)
    • Art (1)
    • Articles in other Publications (1)
    • Biometric (2)
    • Books/Papers on ID (7)
    • Business Cases (2)
    • Canada (5)
    • Community (1)
    • Community Dinner (2)
    • Community Management (2)
    • Digital Death (1)
    • Electronic Beacons (1)
    • Enterprise ID (1)
    • Environment (2)
    • Event Annoucements (11)
    • Event Review (7)
    • Facebook (4)
    • Facilitation (1)
    • Freedom (1)
    • Future (11)
    • Government (7)
    • ID Protocol (10)
    • Identitification (6)
    • Identity Commons (5)
    • Identity Gang (9)
    • Identity Layer (4)
    • Identity Rights (7)
    • IIW (14)
    • Industry Commentary (9)
    • Industry Developments (16)
    • Innovation (5)
    • Interesting (7)
    • interop (3)
    • Kids (1)
    • Legal Cases (4)
    • Legislation-Regulation (2)
    • me (6)
    • Media Commentary (5)
    • Media Coverage (2)
    • Mobile (1)
    • National ID (7)
    • Non-US (2)
    • NPTech (2)
    • Open Source (3)
    • Past Lessons (5)
    • Physical Devices (2)
    • Presos/Podcasts/Videos (19)
    • Privacy (14)
    • Representational Systems (1)
    • reputation (3)
    • Reputation Currents (2)
    • She’s Geeky (2)
    • Social Implications (2)
    • Social Network (7)
    • Tool Usage (9)
    • Uncategorized (771)
    • unconferences (2)
    • User Centrism (3)
    • Virtual World (1)
    • visionary (1)
    • What is Identity? (6)
    • Women (3)