Abstract

http://ssrn.com/abstract=1561845
 
 

Footnotes (341)



 


 



The Hacker's Aegis


Derek E. Bambauer


University of Arizona - James E. Rogers College of Law

Oliver Day


affiliation not provided to SSRN

March 1, 2010

Emory Law Journal, Vol. 60, p. 1051, 2011
Brooklyn Law School, Legal Studies Paper No. 184

Abstract:     
Intellectual property law stifles critical research on software security vulnerabilities, placing computer users at risk. Researchers who discover flaws often face IP-based legal threats if they reveal findings to anyone other than the software vendor. This Article argues that the interplay between law and vulnerability data challenges existing scholarship on how intellectual property should regulate information about improvements on protected works, and suggests weakening, not enhancing, IP protections where infringement is difficult to detect, lucrative, and creates significant negative externalities. It proposes a set of three reforms – “patches,” in software terms – to protect security research. Legal reform would create immunity from civil IP liability for researchers who follow “responsible disclosure” rules. Linguistic reform would seek to make the term “hacker” less threatening either by recapturing the term’s original meaning, or abandoning it. Finally, structural reform would ameliorate failures in the market for software vulnerability data by having a trusted third party act as a voluntary clearinghouse. The Article concludes by describing other areas, such as physical security, where reforming how law coordinates IP improvements may be useful.

Number of Pages in PDF File: 55

Keywords: Software, Security, Hacker, Intellectual Property, Copyright, Trademark, Patent, DMCA, Tort, Immunity, Liability

Accepted Paper Series


Download This Paper

Date posted: March 1, 2010  

Suggested Citation

Bambauer, Derek E. and Day, Oliver, The Hacker's Aegis (March 1, 2010). Emory Law Journal, Vol. 60, p. 1051, 2011; Brooklyn Law School, Legal Studies Paper No. 184. Available at SSRN: http://ssrn.com/abstract=1561845 or http://dx.doi.org/10.2139/ssrn.1561845

Contact Information

Derek E. Bambauer (Contact Author)
University of Arizona - James E. Rogers College of Law ( email )
P.O. Box 210176
Tucson, AZ 85721-0176
United States
Oliver Day
affiliation not provided to SSRN ( email )
Feedback to SSRN


Paper statistics
Abstract Views: 3,009
Downloads: 309
Download Rank: 54,458
Footnotes:  341

© 2014 Social Science Electronic Publishing, Inc. All Rights Reserved.  FAQ   Terms of Use   Privacy Policy   Copyright   Contact Us
This page was processed by apollo4 in 0.250 seconds