A Website of Cooke Kobrick & Wu LLP, Attorneys at Law
|
|
|
|
Selected Books on Information Security and the Law Books on Information Security Authored or Co-Authored by Stephen Wu
Information Security: A Legal, Business, and Technical Handbook This book co-authored with Kimberly Kiefer Peretti, Ben Wilson, and Randy Sabett is a primer covering basic information on data security and the law. It aims to inform directors, management, other business personnel, information security professionals, and the legal professionals who assist them regarding information security legal issues. The book introduces readers to the types of information security threats companies face. It then covers compliance with security requirements in law, liability, and appropriate responses to information security incidents. It also contains information on information security best practices.
Risk Management for Consumer Internet Payments Mr. Wu wrote this book for the Internet Council of the National Automated Clearing House Association (NACHA). The book focuses on managing the risks involved with payments in business-to-consumer (B2C) transaction between a consumer purchasing goods or services and a merchant on the Internet. Payment types covered include credit cards, debit cards, automated clearing house payments, and person-to-person payments. The book has significant discussions of legal risk, include the risks of noncompliance with requirements in law or contract, liability, and a failure or inability to enforce contractual obligations or terms.
Stephen Wu wrote this book with co-authors Mohan Atreya, Benjamin Hammond, Stephen Paine, and Paul Starrett. The book covers basic technical information concerning digital signatures, including cryptography, public key infrastructure (PKI), how digital signatures work, and current standards and implementations. In addition, Mr. Wu wrote a chapter on business issues, which should assist the process of procurement, and drafting and negotiating an agreement with a technology vendor to obtain PKI products and services. He also wrote a chapter on PKI documentation, which should help reviewing attorneys, and liability scenarios. Paul Starrett wrote chapters concerning digital signature legislation and other legal issues.
Public Key Infrastructure Assessment Guidelines Stephen Wu served as Co-Reporter of the PKI Assessment Guidelines (PAG), a publication of the the American Bar Association's Information Security Committee within the Section of Science and Technology Law. The PAG is the most comprehensive book on the market covering how to operate a public key infrastructure supporting the use of digital signatures, confidentiality encryption, and other secure electronic commerce applications. It provides a critical tool to assess the security and trustworthiness of PKI. Companies seeking to procure PKI products or services can use this publication to guide their due diligence of potential vendors.
Guide to HIPAA Security and the Law Stephen Wu is editor of publication of the American Bar Association's Section of Science and Technology Law. The book delves into health care information security practices. It provides a section-by-section analysis of the Security Rule promulgated under the federal Health Insurance Portability and Accountability Act of 1996 (HIPAA). It informs health care lawyers, administrators, compliance officers, chief information security officers, and security personnel what HIPAA-covered entities must or should do to comply with the Security Rule from a technical, business, and legal perspective. The book also contains information on the background and history of HIPAA, the relationship between HIPAA security and privacy, implementation of the Security Rule, enforcement, and litigation. Other Selected Books on Information Security and the Law
|
Send mail to
info@ckwlaw.com with
questions or comments about this web site.
|
