Can Legislating Technology Really Be Effective?

Michael Coates, you boldly proposed legislation to create a user’s Bill of Rights, which would force companies to protect the backend servers housing personal data, and encrypt information as it travels over the Internet, among other things. But Sam Quigley suggests that financial incentives would be more effective than legislation.

Is it really possible to construct cyber security regulations that are broad enough to avoid dictating specific technologies (which nobody wants Washington involved in), without being so vague as to be effectively unenforceable? Is there a model for this?

The Future of Security Roundtable is a Google-sponsored initiative that brings together thought leaders to discuss how we can best protect ourselves from the data breaches and security risks of tomorrow. Panelists are not affiliated with Google, and their opinions are their own. Read the post that kicked off the roundtable here and feel free to join in the conversation.