Essays: The Insurance Takeover - Schneier on Security
Insurance, Risk Management, and Public Policy - Essays …
This process changes everything. What will happen when the CFO realizes he can cut his insurance premium in half if he gets rid of all his insecure Windows OSes and replaces them with a hardened version of Linux? The choice of which OS to use will no longer be 100 percent technical. Microsoft, and other companies with shoddy security, will start losing sales because companies don't want to pay the insurance premiums. In this world future, how secure a product is becomes a real, measurable feature that companies are willing to pay for...because it saves them money in the long run.
ACA Replacements, Risk Pooling and Congress Vanner Insurance
Imagine the future.... Every business has network security insurance, just as every business has insurance against fire, theft and any other reasonable physical threat. To do otherwise would be to behave recklessly and open up the organization to lawsuits. When it comes time to calculate the premium, the details of network security become checkboxes. Do you have a firewall? Which brand? Your rate may be one price if you have ABC brand, and a different price if you have XYZ brand. Do you have a PKI? If so, which kind and which brand? And so on.