• 한국IT서비스학회지
• /
• 제19권1호
• /
• pp.37-53
• /
• 2020

Today, our society is exposed to cyber threats, such as the leakage of personal information, as various systems are connected and operated organically with the development of information and communication technology. With the impact of these cyber risks, we are experiencing damage from the virtual world to the physical world. As the number of cases of damage caused by cyber attacks has continued to rise, social voices have risen that the government needs to manage cyber risks. Thus, information and telecommunication service providers are now mandatory to have insurance against personal information protection due to amendment of "the Act on Promotion of Information and Communication Network Utilization and Information Protection". However, the insurance management system has not been properly prepared, with information and communication service providers selecting the service operators based on sales volume rather than selecting them based on the type and amount of personal information they store and manage. In order for the personal information protection liability insurance system to be used more effectively in line with the legislative purpose, effective countermeasures such as cooperation with the government and related organizations and provision of benefits for insured companies should be prepared. Thus, the author of this study discuss the current status of personal information protection liability insurance system and the issues raised in the operation of the system. Based on the results of this analysis, the authors propsoe tasks and plans to establish an effective personal information protection liability insurance system.

• 무역상무연구
• /
• 제27권
• /
• pp.129-161
• /
• 2005

Todays, computers in business world are potent facilitators that most companies could not without them, while they are only tools. They offer extremely efficient means of communication, particularly when connected to Internet. What I stress in this article is the risks accompanied by e-commerce rather than the advantages of Internet or e-commerce. The management of e-commerce companies, therefore, should keep in mind that the benefit of e-commerce through the Internet are accompanied by enhanced and new risks, cyber risks or e-commerce risks. For example, companies are exposed to computer system breakdown and business interruption risks owing to traditional and physical risks such as theft and fire etc, computer programming errors and defect softwares and outsider's attack such as hacking and virus. E-commerce companies are also exposed to tort liabilities owing to defamation, the infringement of intellectual property such as copyright, trademark and patent right, negligent misrepresent and breach of confidential information or privacy infringement. In this article, I would like to suggest e-commerce insurance or cyber liability insurance as a means of risk management rather than some technical devices, because there is not technically perfect defence against cyber risks. But e-commerce insurance has some gaps between risks confronted by companies and coverage needed by them, because it is at most 6 or 7 years since it has been introduced to market. Nevertheless, in my opinion, e-commerce insurance has offered the most perfect defence against cyber risks to e-commerce companies up to now.

• 통상정보연구
• /
• 제7권3호
• /
• pp.27-51
• /
• 2005

Todays, computers in business world are potent facilitators that most companies could not without them, while they are only tools. They offer extremely efficient means of communication, particularly when connected to Internet. What I stress in this article is the risks accompanied by e-commerce rather than the advantages of Internet or e-commerce. The management of e-commerce companies, therefore, should keep in mind that the benefit of e-commerce through the Internet are accompanied by enhanced and new risks, cyber risks or e-commerce risks. For example, companies are exposed to computer system breakdown and business interruption risks owing to traditional and physical risks such as theft and fire etc, computer programming errors and defect softwares and outsider's attack such as hacking and virus. E-commerce companies are also exposed to tort liabilities owing to defamation, the infringement of intellectual property such as copyright, trademark and patent right, negligent misrepresent and breach of confidential information or privacy infringement. In this article, I would like to suggest e-commerce insurance or cyber liability insurance as a means of risk management rather than some technical devices, because there is not technically perfect defence against cyber risks. But e-commerce insurance has some gaps between risks confronted by companies and coverage needed by them, because it is at most 6 or 7 years since it has been introduced to market. Nevertheless, in my opinion, e-commerce insurance has offered the most perfect defence against cyber risks to e-commerce companies up to now.

• 한국인터넷방송통신학회논문지
• /
• 제16권2호
• /
• pp.1-8
• /
• 2016

정보통신기술의 발달 및 인터넷 이용의 활성화로 간편결제 등 금융과 정보통신기술의 융합된 핀테크 산업이 활성화 되고 있다. 하지만 현재 법규 상 금융사고 발생 시 금융회사, 핀테크 업체와 소비자 간의 책임이 모호하고 금융기관 또는 전자금융업자가 손해배상을 해야 하는 경우 전자금융거래법 제정('06년) 당시 지정된 전자금융사고 책임이행 보험 가입 최저한도와 현재 전자금융거래 규모, 사고 발생 추이, 보안 투자 규모 등을 비교했을 때 현실적으로 적정하다고 보기 어렵다. 이에 본 논문에서는 국내 금융사고의 현황과 사후처리를 파악하고 현재 사이버 배상책임보험의 한계와 변경 필요성을 지적하고자 한다.

• 정보보호학회논문지
• /
• 제27권5호
• /
• pp.1233-1245
• /
• 2017

지능정보사회를 선도하는 핵심 기술이자 서비스인 사물인터넷의 초연결성으로 인해 사이버리스크가 급증하면서 사이버리스크의 전가(Risk transfer)를 통해 경영환경의 안정성을 높이는 새로운 위험관리 방안으로 사이버보험(Cyber insurance)이 주목받고 있다. 그러나, 사이버보험은 아직 국내에서는 비교적 생소한 개념이다. 이에 본 연구에서는 국내 상황에서 우선적으로 요구되는 보장사항을 도출하여 국내 수요에 적합한 사이버보험의 개념을 제안하고자 하였다. 연구 결과 사이버보험의 수요자들은 사업손실과 배상책임에 가장 많은 필요성을 보이고 있는 것으로 나타났다.

• 한국전자거래학회지
• /
• 제16권4호
• /
• pp.53-73
• /
• 2011

각종 정보보안 관련 사고의 증가에 따라, 세계 각국에서는 지속가능한 정보보호를 위한 다양한 보안책임 및 규제에 관한 법률들을 발전시켜왔다. 본 연구에서는 이러한 정책의 실효성을 분석하기 위하여 2007년 제정된 전자금융거래법이 기업의 정보보안 활동에 미치는 영향에 대한 실증적인 분석을 실시하였다. 연구 결과에 따르면, 전자금융거래법의 실효성에 대한 다양한 비판에도 불구하고, 이러한 법률의 제정이 기업의 정보보안 활동의 증가에 긍정적인 영향을 미치는 것으로 나타났다. 즉, 본 연구는 정보보호를 위한 보안책임 및 규제에 관한 법률이 정보보안의 지속적인 발전에 공헌한다는 것을 밝혀냈다.