IT-Schwachstellenmanagement in der Cyberversicherung
JOURNAL ARTICLE
Cite JOURNAL ARTICLE
Style
Format
IT-Schwachstellenmanagement in der Cyberversicherung
Zeitschrift für die gesamte Versicherungswissenschaft, Vol. 112 (2023), Iss. 3 : pp. 225–236
Additional Information
Article Details
Author Details
Roman Dickmann, Rechtsanwalt und Fachanwalt für Versicherungsrecht, Europajurist (Univ. Würzburg), LL.M. (VersR, Univ. Münster).
Abstract
This article begins by looking at the concept of IT security in general and in the standard terms and conditions of cyber insurance. As absolute security cannot be achieved, it is necessary to define a (minimum) security level that must be continuously approached. This has not yet been legally defined. Rather, insecure basic technologies and poor source code quality have led to the current level of IT insecurity. This could now change as a result of new impetus from product safety regulation with the requirement for vulnerability management in order to affix the CE mark. The core element here is the handling of reported vulnerabilities and their elimination. This could provide a baseline of IT security, particularly in the Internet of Things, which would also serve to stabilise the cyber insurance product.
Table of Contents
| Section Title | Page | Action | Price |
|---|---|---|---|
| Roman Dickmann: IT-Schwachstellenmanagement in der Cyberversicherung | 225 | ||
| Zusammenfassung | 225 | ||
| Abstract | 225 |