- Conceptualizing Communications Security: A value chain approach
- The 41st Research Conference on Communication, Information and Internet Policy
- Book/source title
- TPRC 41: The 41st Research Conference on Communication, Information and Internet Policy: September 27-29, 2013: George Mason University School of Law, Arlington, VA
- Rochester, NY: Social Science Research Network (SSRN)
- Document type
- Conference contribution
- Faculty of Law (FdR)
- Institute for Information Law (IViR)
Cybersecurity has become a top priority for policymakers these days, but as the engineering saying goes: "if you don’t know what you want, it’s hard to do it right." This paper finds considerable shortcomings in current conceptual and legal frameworks for communications security policymaking. The misleading concept of cybersecurity incorporates a wide range of social issues under its umbrella, such as child protection, foreign policy and intellectual property protection. Cybersecurity distracts communications security conceptualizations and policies from the technical conception that should be at their core, i.e. ensuring confidentiality, integrity and availability of communications to authorized entities.
The paper develops a value chain approach for the conceptualization and legal governance of communications security. This value chain approach is informed by an empirical case study into HTTPS governance and multilateral security engineering methods SQUARE and MSRA. It offers a 9-step framework for granular, functional communications security conceptualizations, tailored to specific communications settings. The framework enables policymakers to devise technical security goals, apprise constitutional values, confront stakeholder interests and balance associated public and private interests. The value chain approach should assist policymakers in deciding what they want, and to know whether they are the appropriate actor to get it right.
- go to publisher's site
If you believe that digital publication of certain material infringes any of your rights or (privacy) interests, please let the Library know, stating your reasons. In case of a legitimate complaint, the Library will make the material inaccessible and/or remove it from the website. Please Ask the Library, or send a letter to: Library of the University of Amsterdam, Secretariat, Singel 425, 1012 WP Amsterdam, The Netherlands. You will be contacted as soon as possible.