Sasha Romanosky

RAND Corporation

Policy Researcher

1776 Main Street

P.O. Box 2138

Santa Monica, CA 90407-2138

United States

Carnegie Mellon University - Heinz College of Information Systems and Public Policy

Pittsburgh, PA 15213-3890

United States

SCHOLARLY PAPERS

8

DOWNLOADS
Rank 7,146

SSRN RANKINGS

Top 7,146

in Total Papers Downloads

6,740

SSRN CITATIONS
Rank 14,945

SSRN RANKINGS

Top 14,945

in Total Papers Citations

24

CROSSREF CITATIONS

43

Scholarly Papers (8)

1.
Downloads 3,371 ( 3,357)
Citation 13

Empirical Analysis of Data Breach Litigation

Forthcoming in the Journal of Empirical Legal Studies
Number of pages: 31 Posted: 16 Jan 2012 Last Revised: 01 Feb 2014
Sasha Romanosky, David A. Hoffman and Alessandro Acquisti
RAND Corporation, University of Pennsylvania Law School and Carnegie Mellon University - H. John Heinz III School of Public Policy and Management
Downloads 3,370 (3,295)
Citation 6

Abstract:

Loading...

data breach, identity theft, privacy litigation, docket analysis, docketology

Empirical Analysis of Data Breach Litigation

Journal of Empirical Legal Studies, Vol. 11, Issue 1, pp. 74-104, 2014
Number of pages: 31 Posted: 18 Jan 2014
Sasha Romanosky, David A. Hoffman and Alessandro Acquisti
RAND Corporation, University of Pennsylvania Law School and Carnegie Mellon University - H. John Heinz III School of Public Policy and Management
Downloads 1 (737,106)
Citation 5
  • Add to Cart

Abstract:

Loading...

2.

Privacy Costs and Personal Data Protection: Economic and Legal Perspectives

Berkeley Technology Law Journal, Vol. 24, No. 3, 2009
Number of pages: 41 Posted: 13 Dec 2009 Last Revised: 13 Apr 2010
Sasha Romanosky and Alessandro Acquisti
RAND Corporation and Carnegie Mellon University - H. John Heinz III School of Public Policy and Management
Downloads 1,060 (21,870)

Abstract:

Loading...

information disclosure, security breach notification, data breaches, identity theft, privacy costs, ex ante safety regulation, ex post liability

3.

Do Data Breach Disclosure Laws Reduce Identity Theft? (Updated)

Journal of Policy Analysis and Management, Vol. 30, No. 2, pp. 256-286, 2011
Number of pages: 42 Posted: 19 Sep 2008 Last Revised: 13 Oct 2013
Sasha Romanosky, Rahul Telang and Alessandro Acquisti
RAND Corporation, Carnegie Mellon University - H. John Heinz III School of Public Policy and Management and Carnegie Mellon University - H. John Heinz III School of Public Policy and Management
Downloads 1,019 (23,192)
Citation 1

Abstract:

Loading...

data breach disclosure, security breach notification, economics of information security, identity theft, fixed effects regression, difference in difference estimation

4.

Content Analysis of Cyber Insurance Policies: How Do Carriers Write Policies and Price Cyber Risk?

Number of pages: 38 Posted: 10 Mar 2017
Sasha Romanosky, Lilian Ablon, Andreas Kuehn and Therese Jones
RAND Corporation, RAND Corporation, RAND Corporation and RAND Corporation
Downloads 735 (36,756)
Citation 13

Abstract:

Loading...

Cyber Insurance, Cyber Liability, Pricing Cyber Risk

5.

Cyber Crime: Security Under Scarce Resources

American Foreign Policy Council Defense Technology Program Brief, No. 11, June 2015
Number of pages: 10 Posted: 27 Jun 2015
Trey Herr and Sasha Romanosky
Hoover Institution at Stanford University and RAND Corporation
Downloads 325 (100,811)

Abstract:

Loading...

cyber crime, crime, economics of information security, malware, cyber insurance

6.

Building Common Approaches for Cybersecurity and Privacy in a Globalized World

Number of pages: 152 Posted: 24 Jan 2020
NYU Center for Cybersecurity (CCS), Humboldt University of Berlin, RAND Corporation, University of Passau, Indiana University - Kelley School of Business - Department of Business Law, George Washington University School of Law, University Grenoble-Alpes, CESICE, France, Georgia Institute of Technology - Scheller College of Business, Columbia University, School for International and Public Affairs, Stiftung Neue Verantwortung, Alexander von Humboldt Institute for Internet and Society, Boston University - Department of Computer Science and Cisco Systems, Inc.
Downloads 220 (150,974)

Abstract:

Loading...

Cyber Security, Privacy, Data Protection, Transatlantic Relations, Internet

7.

Do Data Breach Disclosure Laws Reduce Identity Theft?

Journal of Policy Analysis and Management, 30(2), 256--286
Number of pages: 30 Posted: 06 Jan 2019 Last Revised: 10 Jan 2019
Sasha Romanosky, Rahul Telang and Alessandro Acquisti
RAND Corporation, Carnegie Mellon University - H. John Heinz III School of Public Policy and Management and Carnegie Mellon University - H. John Heinz III School of Public Policy and Management
Downloads 10 (629,489)
Citation 3

Abstract:

Loading...

Data Breach, Disclosure Laws, Identity Crimes

8.

Data Breaches and Identity Theft: When is Mandatory Disclosure Optimal?

TPRC 2010
Posted: 23 Jan 2012
Sasha Romanosky, Alessandro Acquisti and Richard Sharp
RAND Corporation, Carnegie Mellon University - H. John Heinz III School of Public Policy and Management and affiliation not provided to SSRN

Abstract:

Loading...

Other Papers (2)

Total Downloads: 43
1.

Empirical Analysis of Data Breach Litigation

Number of pages: 27 Posted: 14 Jul 2011
Sasha Romanosky, David A. Hoffman and Alessandro Acquisti
RAND Corporation, University of Pennsylvania Law School and Carnegie Mellon University - H. John Heinz III School of Public Policy and Management
Downloads 33

Abstract:

Loading...

data breach, data breach litigation, docket analysis, identity theft

2.

Do Data Breach Disclosure Laws Reduce Identity Theft?

5th Annual Conference on Empirical Legal Studies Paper
Number of pages: 42 Posted: 16 Jul 2010 Last Revised: 22 Oct 2010
Sasha Romanosky, Rahul Telang and Alessandro Acquisti
RAND Corporation, Carnegie Mellon University - H. John Heinz III School of Public Policy and Management and Carnegie Mellon University - H. John Heinz III School of Public Policy and Management
Downloads 10

Abstract:

Loading...

Data breach disclosure, security breach notification, economics of information security, identity theft, fixed effects regression, difference in difference estimation