Category: Regulations

Guidelines for this directive include:
· There should be an incentive for providers to contribute to the overall security of interconnected networks rather than protecting merely their own resources.
· Providers need to be more proactive and monitor their networks for risks of security breaches. Providers could also be asked to report which networks they monitor.
· This includes guidance to consumers as well as guidance to the provider’s staff, in particular with regard to incident response and emergency planning.
· The need for contact details for email abuse and security violations should also be stressed.

Providers in Europe are more concerned about spam emails that their customers receive than they are concerned with spam that their customers send.

http://www.enisa.eu.int/doc/pdf/deliverables/enisa_security_spam.pdf

The record indicates that TTPs are available to provide a variety of services for CALEA compliance to carriers, including processing requests for intercepts, conducting electronic surveillance, and delivering relevant information to LEAs. Fifth, the Order restricts the availability of compliance extensions under CALEA section 107(c) to equipment, facilities and services deployed prior to October 25, 1998 and clarifies the role and scope of CALEA section 109(b), under which carriers may be reimbursed for their CALEA compliance costs. Seventh, the Order concludes that carriers are responsible for CALEA development and implementation costs for post-January 1, 1995 equipment and facilities, and declines to adopt a national surcharge to recover CALEA costs. -FCC-

http://www.itu.int/osg/spu/newslog/FCC+Adopts+Order+To+Enable+Law+Enforcement+Access+To+Broadband+And+VoIP+Providers.aspx

“The study further shows that European corporate privacy leaders are more likely to hold the view that their role is inextricably tied to advancing a culture of responsible information use rather than establishing technical or administrative controls over privacy and data protection,” said Larry Ponemon, founder of the Ponemon Institute, who led the research team. Most European companies have a strict “no share” policy for consumer and employee data.

US companies are more likely to employ information security technologies to protect or safeguard sensitive personal information than European firms, including the use of encryption, intrusion detection systems and website monitoring.

Whether in established or emerging markets, the hallmark of White & Case is our complete dedication to the business priorities and legal needs of our clients.

http://www.whitecase.com/news/Detail.aspx?news=1091

Experts warned that the law would not fully protect anyone from dedicated hackers but acknowledged it could raise awareness of the vulnerabilities inherent in wireless technology.

http://entmag.com/news/rss.asp?editorialsid=7368

Any statewide policy, however, would not apply to the legislative and judicial branches or to the state’s constitutional officers, although they could adopt it, the executive order states.

Other state governments have enacted similar P2P use policies.

http://www.fcw.com/article94067-04-13-06-Web

China’s Ministry of Information Industry has adopted the Measures for the Administration of Internet E-mails. The regulations, which took effect from 30 March 2006, are designed to apply to email service providers and apply to any person operating an email service for Internet users in Mainland China.

The regulations are as follows:

A provider is defined as any person in the service supply chain involved in delivering or helping users to receive email;
Service providers must register with the government and obtain a license before providing email services;
Violators face warnings or penalties of up to 30,000 yuan (approx. $3,700 US) and risk losing their license;
Firms are barred from sending unsolicited commercial messages without prior consent from recipients;
All commercial email must have a subject header of “AD” or the Chinese character for advertisement;
The rules only apply to email containing commercial advertisements;
The rules state that providers must stop delivery of any messages containing commercial advertisements even if a recipient first consents, but later changes his or her mind.

http://www.tid.gov.hk/english/aboutus/tradecircular/cic/asia/2006/files/ci200681a.pdf