Category: Regulations

The Legislative Forum makes it clear that the national standard it envisions would preempt state laws. For that reason, “a robust framework is warranted,” it said.

Some privacy advocates worry that preemption of state laws might constitute an end-run around the more stringent — and to many companies, quite onerous — privacy protections that are already in place in states such as California. Now, the few pieces from California’s original legislation that were allowed to go into effect — the ability of consumers to request a credit freeze for example — are in danger of being replaced with far weaker national legislation currently under consideration.

http://www.technewsworld.com/rsstory/51272.html

Last August, the FCC ruled CALEA also applied to Internet phone services and gave VoIP providers 18 months to comply with the order.

The ITAA report, co-authored by Vint Cerf, chief Internet evangelist of Google and Whitfield Diffie, chief security officer for Sun Microsystems, among others, notes that in some cases, VoIP calls are essentially the same as a traditional call.

http://www.internetnews.com/security/article.php/3613486

Enisa executive director Andrea Pirotti said that sharing information across Europe would make all stakeholders more aware of security issues. But Graham Titterington of analyst Ovum argued that time and budgetary constraints mean most firms would find it difficult to follow all the suggestions without support.

http://www.itweek.co.uk/itweek/news/2157515/ec-shows-leadership-security

The report calls for the EC’s European Network and Information Security Agency (ENISA) “to study the feasibility of a European information sharing and alert system to facilitate effective responses to existing and emerging threats to electronic networks.” Such a system would require the creation of a multilingual EU portal to provide detailed information on threats, risks, and alerts, the commission said.

Another proposal calls for businesses, users and government agencies to hold a “multi-stakeholder debate” on the balance between security and privacy, including the implications of RFID technology on end user privacy.

http://www.darkreading.com/document.asp?doc_id=96086&WT.svl=news2_3

For Brussels this technology tax is just one option given imminent change in the way the European Union budget is formed.

http://www.viruslist.com/en/news?id=187762489

The SEC and PCAOB arranged the roundtable to solicit feedback about Section 404 of the legislation, which requires companies to attest to the effectiveness of internal controls put in place to protect financial reporting systems and processes. “In practice it hasn’t always worked out that way,” he acknowledged.

Over the course of five panel discussions, participants shared their experiences with the internal control reporting requirements.

http://www.networkworld.com/news/2006/051106-sox-costs.html