We need an IPA (perhaps a different name...). We need someone that will set "standards" for a minimum baseline of "security" to ensure the health of the internet, and dole out fines based on violations.
However they need to be VERY careful. With something like freon it's a physical "thing" that can be regulated. We don't want to regulate "ideas" or even code, that to me seems like a very dangerous thing.
But you are right, we need something that will protect the "health of the internet" like we protect the health of our environment.
I meant more that I don't want it to be a crime to write a TCP stream handler without SSL. Or to need a license to write crypto code.
To me it gets dangerously close to regulating ideas.
I'd want to it more based in consequences. If your product or code is used in an attack, you get fined. No need to dictate the code or software solutions allowed.
We need an IPA (perhaps a different name...). We need someone that will set "standards" for a minimum baseline of "security" to ensure the health of the internet, and dole out fines based on violations.
However they need to be VERY careful. With something like freon it's a physical "thing" that can be regulated. We don't want to regulate "ideas" or even code, that to me seems like a very dangerous thing.
But you are right, we need something that will protect the "health of the internet" like we protect the health of our environment.