Regulating security on the internet: Control versus trust

Esther Keymolen, Bibi van den Berg

Research output: Contribution to journalArticleScientificpeer-review

Abstract

This article focuses on the role of government in relation to cybersecurity. Traditionally, cybersecurity was primarily seen as a technical issue. In recent years, governments have realised that they, too, have a stake in securing the Internet. In their attempts to grapple with cybersecurity, governments often turn to technical solutions to ?code away? illegal or undesired behaviours. ?Techno-regulation? has become popular because it may seem to be an effective and cheap way of increasing control over end users? behaviours and increasing cybersecurity. In this article, we will explain why using techno-regulation has significant downsides and, therefore, why it may be unwise to use it as a dominant regulatory strategy for securing the Internet. We argue that other regulatory strategies ought to be considered as well, most importantly: trust. The second part of this article explains that trust can be used as an implicit strategy to increase cybersecurity or as an explicit mechanism for the same goal.
LanguageEnglish
Pages188-205
Number of pages18
JournalInternational Review of Law, Computers & Technology
Volume31
Issue number2
DOIs
Publication statusPublished - 2017

Fingerprint

Internet
regulation

Cite this

@article{b7bcb907a62849d29fd352c3af3ec117,
title = "Regulating security on the internet: Control versus trust",
abstract = "This article focuses on the role of government in relation to cybersecurity. Traditionally, cybersecurity was primarily seen as a technical issue. In recent years, governments have realised that they, too, have a stake in securing the Internet. In their attempts to grapple with cybersecurity, governments often turn to technical solutions to ?code away? illegal or undesired behaviours. ?Techno-regulation? has become popular because it may seem to be an effective and cheap way of increasing control over end users? behaviours and increasing cybersecurity. In this article, we will explain why using techno-regulation has significant downsides and, therefore, why it may be unwise to use it as a dominant regulatory strategy for securing the Internet. We argue that other regulatory strategies ought to be considered as well, most importantly: trust. The second part of this article explains that trust can be used as an implicit strategy to increase cybersecurity or as an explicit mechanism for the same goal.",
author = "Esther Keymolen and {van den Berg}, Bibi",
year = "2017",
doi = "10.1080/13600869.2017.1298504",
language = "English",
volume = "31",
pages = "188--205",
journal = "International Review of Law, Computers & Technology",
issn = "1360-0869",
publisher = "Routledge",
number = "2",

}

Regulating security on the internet : Control versus trust. / Keymolen, Esther; van den Berg, Bibi.

In: International Review of Law, Computers & Technology, Vol. 31, No. 2, 2017, p. 188-205.

Research output: Contribution to journalArticleScientificpeer-review

TY - JOUR

T1 - Regulating security on the internet

T2 - International Review of Law, Computers & Technology

AU - Keymolen, Esther

AU - van den Berg, Bibi

PY - 2017

Y1 - 2017

N2 - This article focuses on the role of government in relation to cybersecurity. Traditionally, cybersecurity was primarily seen as a technical issue. In recent years, governments have realised that they, too, have a stake in securing the Internet. In their attempts to grapple with cybersecurity, governments often turn to technical solutions to ?code away? illegal or undesired behaviours. ?Techno-regulation? has become popular because it may seem to be an effective and cheap way of increasing control over end users? behaviours and increasing cybersecurity. In this article, we will explain why using techno-regulation has significant downsides and, therefore, why it may be unwise to use it as a dominant regulatory strategy for securing the Internet. We argue that other regulatory strategies ought to be considered as well, most importantly: trust. The second part of this article explains that trust can be used as an implicit strategy to increase cybersecurity or as an explicit mechanism for the same goal.

AB - This article focuses on the role of government in relation to cybersecurity. Traditionally, cybersecurity was primarily seen as a technical issue. In recent years, governments have realised that they, too, have a stake in securing the Internet. In their attempts to grapple with cybersecurity, governments often turn to technical solutions to ?code away? illegal or undesired behaviours. ?Techno-regulation? has become popular because it may seem to be an effective and cheap way of increasing control over end users? behaviours and increasing cybersecurity. In this article, we will explain why using techno-regulation has significant downsides and, therefore, why it may be unwise to use it as a dominant regulatory strategy for securing the Internet. We argue that other regulatory strategies ought to be considered as well, most importantly: trust. The second part of this article explains that trust can be used as an implicit strategy to increase cybersecurity or as an explicit mechanism for the same goal.

U2 - 10.1080/13600869.2017.1298504

DO - 10.1080/13600869.2017.1298504

M3 - Article

VL - 31

SP - 188

EP - 205

JO - International Review of Law, Computers & Technology

JF - International Review of Law, Computers & Technology

SN - 1360-0869

IS - 2

ER -