ABSTRACT
The Internet has grown from a few nodes to billions. Our corporate networks have gone from a few networked computers to global Wide Area Networks. In 1990, a risk assessment process was fairly contained and vertical. The primary consideration was to make sure that the security of the system was maintained. Interconnectivity of systems was usually on the same platform or within the same facility. As the Internet became a prevalent medium for interconnectivity, many of the stable controls we took for granted began to fade. New threats and exposures had to be factored into the risk of doing business in the Internet age. The GLBA has its roots in the financial failures of the Great Depression. Congress passed the Glass–Steagall Act in 1933, which prohibited national and state banks from affiliating with securities companies. The Safe Harbor Privacy Principles allows US companies to register their certification if they meet the European Union requirements.
