Proposes a new framework for regulating operational threats such as damage to physical assets, business disruption, and system failures. It suggests replacing rwa regulation with simple buffers of equity and outlines what a "macro-operational" approach to banking supervision might look like. It also acknowledges the limitations of macro-operational supervision and considers what new types of operations-specific emergency tools might need to be devised in response.
“Using cybersecurity certification as the basis for providing a complete defense to liability may not prevent every harm from occurring. However, if organizations invest in certification to avoid lega
Security risk analysis techniques involve identifying security threats in software systems and planning countermeasures. Automation and knowledge reuse aid analysts, but they must interpret and assess
“... this article provides anchorage to scholarly audiences when scrutinizing the extent to which privacy and security measures qualify as ‘appropriate’ in the context of liability claims and actions