As citizens, we should expect to be provided with a yardstick by which we may measure our confidence in protection. After all, we are not curing cancer, but we are protecting the data that will lead to a cure.
Given the issues that we face daily, given our liability, legal and regulatory environments, the seriousness of what we do, and the effect it has on our society, it is time for us, our industry associations and certification entities, to begin the dialogue surrounding the formation of a governing body with the force of law
In the wake of the Caffrey trial verdict in the UK I felt compelled to write an opinion piece on what this verdict and, in particular the style of defence, means for the information security community.