The Lawfare Podcast

Jim Dempsey on Standards for Software Liability

Software liability has been dubbed the “<a href="https://www.lawfaremedia.org/article/cyber-liability-fight-begins" rel="noopener noreferrer" target="_blank">third rail of cybersecurity policy</a>.” But the Biden administration’s National Cybersecurity Strategy directly takes it on, seeking to <a href="https://www.lawfaremedia.org/article/cybersecuritys-third-rail-software-liability" rel="noopener noreferrer" target="_blank">shift liability</a> onto those who should be taking reasonable precautions to secure their software. What should a software liability regime look like? Jim Dempsey, a Senior Policy Adviser at the Stanford Cyber Policy Center, recently published a paper as part of <a href="https://www.lawfaremedia.org/current-projects/reviews-essays/security-by-design#:~:text=The%20%E2%80%9CSecurity%20by%20Design%E2%80%9D%20project,area%20of%20software%20design%20security" rel="noopener noreferrer" target="_blank">Lawfare’s Security by Design project</a> entitled “<a href="https://www.lawfaremedia.org/article/standards-for-software-liability-focus-on-the-product-for-liability-focus-on-the-process-for-safe-harbor" rel="noopener noreferrer" target="_blank">Standards for Software Liability: Focus on the Product for Liability, Focus on the Process for Safe Harbor</a>,” where he offers a proposal for a software liability regime. Lawfare Senior Editor Stephanie Pell sat down with Jim to discuss his proposal. They talked about the problem his paper is seeking to solve, what existing legal theories of liability can offer a software liability regime and where they fall short, and his three-part definition for software liability that involves a rules-based floor and a process-based safe harbor.Support this show <a href="http://supporter.acast.com/lawfare" rel="payment" target="_blank">http://supporter.acast.com/lawfare</a>. Hosted on Acast. See <a href="https://acast.com/privacy" rel="noopener noreferrer" style="color:grey;" target="_blank">acast.com/privacy</a> for more information.

The Lawfare Podcast features discussions with experts, policymakers, and opinion leaders at the nexus of national security, law, and policy. On issues from foreign policy, homeland security, intelligence, and cybersecurity to governance and law, we have doubled down on seriousness at a time when others are running away from it. Visit us at www.lawfareblog.com.Support this show <a href="http://supporter.acast.com/lawfare" rel="payment" target="_blank">http://supporter.acast.com/lawfare</a>. Hosted on Acast. See <a href="https://acast.com/privacy" rel="noopener noreferrer" style="color:grey;" target="_blank">acast.com/privacy</a> for more information.