Skip navigation
Skip navigation

Responsive regulation and the reporting of information security incidents-taiwan and china

Chang, Yao-Chung (Lennon)

Description

As most software used by government agencies and companies is proprietary, malicious computer activity targeting breaches in that software can be likened to a pandemic of an infectious disease in the cyber world. When a breach occurs, the consequences can be widespread and damaging because the damage can spread rapidly. Therefore, cybercrime prevention needs to involve all users in a cooperative effort, with warnings and information on countermeasures distributed to users in order to prevent...[Show more]

dc.contributor.authorChang, Yao-Chung (Lennon)
dc.date.accessioned2015-12-13T22:19:20Z
dc.identifier.issn1013-2511
dc.identifier.urihttp://hdl.handle.net/1885/71745
dc.description.abstractAs most software used by government agencies and companies is proprietary, malicious computer activity targeting breaches in that software can be likened to a pandemic of an infectious disease in the cyber world. When a breach occurs, the consequences can be widespread and damaging because the damage can spread rapidly. Therefore, cybercrime prevention needs to involve all users in a cooperative effort, with warnings and information on countermeasures distributed to users in order to prevent the "disease" from spreading when unprotected computers encounter an attack. This cooperative effort relies heavily on all institutions reporting information security incidents. Based on institutional theory, together with regulatory pluralism and responsive regulation theory, this paper examines the pluralized regulatory approach adopted to promote a system for sharing reports of information security incidents in Taiwan and China. An expanded model of regulatory enforcement and a strengths-basedpyramid are proposed and used as a frameworkfor discussing existing systems for encouraging the reporting of information security incidents.
dc.publisherNational Chengchi University of Taiwan
dc.sourceIssues and Studies
dc.subjectKeywords: Expanded regulatory pyramid; Incident reporting; Information security; Institutional theory; Responsive regulation
dc.titleResponsive regulation and the reporting of information security incidents-taiwan and china
dc.typeJournal article
local.description.notesImported from ARIES
local.identifier.citationvolume48
dc.date.issued2012
local.identifier.absfor080303 - Computer System Security
local.identifier.ariespublicationf5625xPUB2859
local.type.statusPublished Version
local.contributor.affiliationChang, Yao-Chung (Lennon), College of Asia and the Pacific, ANU
local.description.embargo2037-12-31
local.bibliographicCitation.issue1
local.bibliographicCitation.startpage85
local.bibliographicCitation.lastpage119
dc.date.updated2016-02-24T09:03:05Z
local.identifier.scopusID2-s2.0-84863652088
local.identifier.thomsonID000299200400001
CollectionsANU Research Publications

Download

File Description SizeFormat Image
01_Chang_Responsive_regulation_and_the_2012.pdf1.75 MBAdobe PDF    Request a copy


Items in Open Research are protected by copyright, with all rights reserved, unless otherwise indicated.

Updated:  19 May 2020/ Responsible Officer:  University Librarian/ Page Contact:  Library Systems & Web Coordinator