[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

BCP38 - Internet Death Penalty

Subject: BCP38 - Internet Death Penalty
From: fergdawgster at gmail.com (Paul Ferguson)
Date: Wed, 27 Mar 2013 21:42:27 -0700
In-reply-to: <[email protected]>
References: <[email protected]> <[email protected]> <[email protected]> <CANQy6FZZqKqp14aPZTqCmtdP9NSx_ZMsU4RMp7Vwn26+bMCAAQ@mail.gmail.com> <CAA=cXfrO3c8=UYZDExpiYsEhFJDup=gUMvO+d=U34-DjW0AgdA@mail.gmail.com> <[email protected]> <[email protected]>

On Wed, Mar 27, 2013 at 9:18 PM, Dobbins, Roland <rdobbins at arbor.net> wrote:

>
> On Mar 28, 2013, at 6:01 AM, Mark Andrews wrote:
>
>> Secondly you reduce your legal liability.
>
> IANAL, but this has yet to be proven, AFAIK.
>
> One approach that hasn't been tried, to my knowledge, is educating the insurance companies about how they can potentially reduce *their* liability for payouts by requiring that real, actionable security BCPs such as BCP38/84, running closed resolvers, implementing iACLs, et. al. are implemented by those they insure.
>
> Does anyone have insight into examples of how insurance policies have been paid out as a result of losses stemming from availability-related security events?
>
> Another approach is educating the 'risk management' and 'business continuity' communities about the risks and how to mitigate them, and how doing so enhances business continuity.
>

Funny you should mention it.

Actually, I do know someone who is in the "digital insurance" (for
lack of a better term) business, and although I just met them a few
weeks ago, somehow I get the feeling  that it is a growth industry.
I'm semi --> :-)

- ferg


-- 
"Fergie", a.k.a. Paul Ferguson
 fergdawgster(at)gmail.com

Follow-Ups:
- BCP38 - Internet Death Penalty
  - From: rdobbins at arbor.net (Dobbins, Roland)

References:
- BCP38 - Internet Death Penalty
  - From: jra at baylink.com (Jay Ashworth)
- BCP38 - Internet Death Penalty
  - From: jcurran at arin.net (John Curran)
- BCP38 - Internet Death Penalty
  - From: marka at isc.org (Mark Andrews)
- BCP38 - Internet Death Penalty
  - From: fergdawgster at gmail.com (Paul Ferguson)
- BCP38 - Internet Death Penalty
  - From: jason at ackley.net (Jason Ackley)
- BCP38 - Internet Death Penalty
  - From: marka at isc.org (Mark Andrews)
- BCP38 - Internet Death Penalty
  - From: rdobbins at arbor.net (Dobbins, Roland)

Prev by Date: BCP38 - Internet Death Penalty
Next by Date: BCP38 - Internet Death Penalty
Previous by thread: BCP38 - Internet Death Penalty
Next by thread: BCP38 - Internet Death Penalty
Index(es):
- Date
- Thread