![[보험과 리스크 관리] INTELLECTUAL PROPERTY AND TECHNOLOGY RISK MANAGEMENT(영문)-1](http://images.happyhaksul.com/thumb/508/507844-0001.gif)
![[보험과 리스크 관리] INTELLECTUAL PROPERTY AND TECHNOLOGY RISK MANAGEMENT(영문)-2](http://images.happyhaksul.com/thumb/508/507844-0002.gif)
![[보험과 리스크 관리] INTELLECTUAL PROPERTY AND TECHNOLOGY RISK MANAGEMENT(영문)-3](http://images.happyhaksul.com/thumb/508/507844-0003.gif)
![[보험과 리스크 관리] INTELLECTUAL PROPERTY AND TECHNOLOGY RISK MANAGEMENT(영문)-4](http://images.happyhaksul.com/thumb/508/507844-0004.gif)
![[보험과 리스크 관리] INTELLECTUAL PROPERTY AND TECHNOLOGY RISK MANAGEMENT(영문)-5](http://images.happyhaksul.com/thumb/508/507844-0005.gif)
![[보험과 리스크 관리] INTELLECTUAL PROPERTY AND TECHNOLOGY RISK MANAGEMENT(영문)-6](http://images.happyhaksul.com/thumb/508/507844-0006.gif)
![[보험과 리스크 관리] INTELLECTUAL PROPERTY AND TECHNOLOGY RISK MANAGEMENT(영문)-7](http://images.happyhaksul.com/thumb/508/507844-0007.gif)
![[보험과 리스크 관리] INTELLECTUAL PROPERTY AND TECHNOLOGY RISK MANAGEMENT(영문)-8](http://images.happyhaksul.com/thumb/508/507844-0008.gif)
![[보험과 리스크 관리] INTELLECTUAL PROPERTY AND TECHNOLOGY RISK MANAGEMENT(영문)-9](http://images.happyhaksul.com/thumb/508/507844-0009.gif)
![[보험과 리스크 관리] INTELLECTUAL PROPERTY AND TECHNOLOGY RISK MANAGEMENT(영문)-10](http://images.happyhaksul.com/thumb/508/507844-0010.gif)
![[보험과 리스크 관리] INTELLECTUAL PROPERTY AND TECHNOLOGY RISK MANAGEMENT(영문)-11](http://images.happyhaksul.com/thumb/508/507844-0011.gif)
![[보험과 리스크 관리] INTELLECTUAL PROPERTY AND TECHNOLOGY RISK MANAGEMENT(영문)-12](http://images.happyhaksul.com/thumb/508/507844-0012.gif)
![[보험과 리스크 관리] INTELLECTUAL PROPERTY AND TECHNOLOGY RISK MANAGEMENT(영문)-13](http://images.happyhaksul.com/thumb/508/507844-0013.gif)
![[보험과 리스크 관리] INTELLECTUAL PROPERTY AND TECHNOLOGY RISK MANAGEMENT(영문)-14](http://images.happyhaksul.com/thumb/508/507844-0014.gif)
![[보험과 리스크 관리] INTELLECTUAL PROPERTY AND TECHNOLOGY RISK MANAGEMENT(영문)-15](http://images.happyhaksul.com/thumb/508/507844-0015.gif)
![[보험과 리스크 관리] INTELLECTUAL PROPERTY AND TECHNOLOGY RISK MANAGEMENT(영문)-16](http://images.happyhaksul.com/thumb/508/507844-0016.gif)
![[보험과 리스크 관리] INTELLECTUAL PROPERTY AND TECHNOLOGY RISK MANAGEMENT(영문)-17](http://images.happyhaksul.com/thumb/508/507844-0017.gif)
분야
docInformation Technology
Information Technology Risk
Risk Assessment
Computer Fraud
Systems and records
Invasion of privacy
Regulation of IT Risk
Risk Control and Financing
Liability issues
Insurance
2.Biotechnology Risk: The Human Genome Project
The purposes of the Human Genome Project can be defined as:
Potential Benefits
LEGAL AND ETHICAL ISSUES
THE BIOTECHNOLOGY RISK
GOVERNMENT REGULATION (U.S.)
TASK LEFT BEHIND
3.NANOTECHNOLOGY RISK
*Classification
*Today uses and advantages
Risk Assessment and control
Risk financing
4.TECHNOLGY AND ENVIRONMENT
RISK ASSESSMENT AND CONTROL
RISK FINANCING
In order to regulate the IT risk, governments work to address threat to computer crime. For example, representatives of 29 countries - including Canada, Japan and the U.S. – signed the Council of Europe Cybercrime convention in 2001. The convention deals with substantive and procedural cybercrime law. The substantive defines the following activities as criminal: illegal access, illegal interception, data interference, system interference, misuse of devices, computer-related forgery, computer-related fraud, child pornography and offences related to copyright. The procedural law section covers law enforcement issues, including measures to be taken against the crimes and offenses, search and seizure of stored computer data, collection of real time computer traffic, and preservation of stored data. The convention also contains provisions concerning intergovernmental cooperation in the fight against cybercrime. Despite it being the first multi-governmental instrument related to cybercrime, some argue that the convention falls short of addressing privacy protection as well as restrictions on government use of power.
The APEC represents more than 60 percent of world’s internet users, also decided in 2002(reaffirmed in 2004) to adopt cyber-security regulatory measures, which follow the council of Europe cybercrime convention. The African union, in particular its African commission on Human and Peoples’ Rights adopted in 2002 a declaration of principles on Freedom of Expression in Africa, which deals in part with cybercrime as well as criminal and economic measures.
The OECD(2002) issued a non-binding guideline for the security of information systems and networks. Although the guideline is subject to further review, it proposes 9 principles that each member state should adopt to promote a culture of security.
The principles are:
Awareness: Participants should be aware of the need for security of information systems and networks and what they can do to enhance security, they also should be aware of the potential harm to others arising from interconnectivity and interdependency.
Responsibility: all participants, including policymakers and program designers, are responsible for the security of information systems and networks.
Response: Participants should act in a timely and cooperative manner to prevent, detect and respond to security incidents. Where permissible, this may involve cross-border information sharing and cooperation.
Ethical standards and conducts: Participants should respect the legitimate interests of others.
Democracy: the security of information systems and networks should be compatible with essential values of a democratic society.
Risk assessment: Participants should conduct risk assessments, to include identification of key internal and external factors.
Security design and implementation: Participants should incorporate security as an essential element of information systems and networks. Participants should focus on the design and adoption of safeguards and solutions to manage potential harm from identified threats and vulnerabilities.
Security management: Participants should adopt a comprehensive approach to security management. The approach should include forward-looking responses to emerging threats, detection and response to incidents, review and audit.
Reassessment: Participants should review and reassess the security of information systems and networks and make appropriate modifications to security policies, practices, measures and procedures.
Individual governments also have enacted laws in an effort to
