Re: Revising CA breach law (SB 20)

[Chris Walsh <chris () cwalsh org>]

I don't see anything there about this "lost in the crowd" theory.  I
think that is giving them too much credit.  What I see is rather
typical  lobbyist FUD.

cw


On Mon, Mar 16, 2009 at 2:22 PM, Sasha Romanosky
<sromanos () andrew cmu edu> wrote:
> I hadn't seen this posted yet, so here's the proposal for updating the CA
> breach law.
>
> What I find most interesting are the arguments opposed (2nd to last
> paragraph). Not that I believe them, necessarily, but that it would be a
> great to actually find some evidence either in favor or against them. I've
> seen a little bit of work related to whether people feel more or less
> comfortable disclosing information to a larger/smaller database, though
> nothing conclusive. I suspect the idea is that people might feel more secure
> with larger databases because of some twisted mental model of being 'lost in
> a crowd' which likely doesn't hold well in the digital medium.
_______________________________________________
Dataloss Mailing List (dataloss () datalossdb org)

CREDANT Technologies, a leader in data security, offers advanced data encryption solutions.
Protect sensitive data on desktops, laptops, smartphones and USB sticks transparently 
across your enterprise to ensure regulatory compliance.
http://www.credant.com/stopdataloss