Menu Expand

IT-Schwachstellenmanagement in der Cyberversicherung

Cite JOURNAL ARTICLE

Style

Dickmann, R. IT-Schwachstellenmanagement in der Cyberversicherung. Zeitschrift für die gesamte Versicherungswissenschaft, 112(3), 225-236. https://doi.org/10.3790/zverswiss.2023.1428301
Dickmann, Roman "IT-Schwachstellenmanagement in der Cyberversicherung" Zeitschrift für die gesamte Versicherungswissenschaft 112.3, 2023, 225-236. https://doi.org/10.3790/zverswiss.2023.1428301
Dickmann, Roman (2023): IT-Schwachstellenmanagement in der Cyberversicherung, in: Zeitschrift für die gesamte Versicherungswissenschaft, vol. 112, iss. 3, 225-236, [online] https://doi.org/10.3790/zverswiss.2023.1428301

Format

IT-Schwachstellenmanagement in der Cyberversicherung

Dickmann, Roman

Zeitschrift für die gesamte Versicherungswissenschaft, Vol. 112 (2023), Iss. 3 : pp. 225–236

Additional Information

Article Details

Author Details

Roman Dickmann, Rechtsanwalt und Fachanwalt für Versicherungsrecht, Europajurist (Univ. Würzburg), LL.M. (VersR, Univ. Münster).

Abstract

This article begins by looking at the concept of IT security in general and in the stan­dard terms and conditions of cyber insurance. As absolute security cannot be achieved, it is necessary to define a (minimum) security level that must be continuously approached. This has not yet been legally defined. Rather, insecure basic technologies and poor source code quality have led to the current level of IT insecurity. This could now change as a result of new impetus from product safety regulation with the requirement for vulnerability management in order to affix the CE mark. The core element here is the handling of reported vulnerabilities and their elimination. This could provide a baseline of IT security, particularly in the Internet of Things, which would also serve to stabilise the cyber insurance product.