Andrea M. Matwyshyn | |
---|---|
Academic background | |
Alma mater | Northwestern University (BA, MA International Relations, JD, PhD Human Development and Social Policy) |
Thesis | Silicon Ceilings: Information Technology Equity, the Digital Divide and the Gender Gap among Information Technology Professionals (2005) |
Academic work | |
Institutions | Northwestern University University of Florida University of Pennsylvania Princeton University Federal Trade Commission Northeastern University Penn State John W. Kluge Center at Library of Congress |
Website | https://www.andreamm.com/ |
Andrea M. Matwyshyn is an American law professor and engineering professor at The Pennsylvania State University. She is known as a scholar of technology policy,particularly as an expert at the intersection of law and computer security [1] [2] [3] [4] and for her work with government. [5] [6] [7] [8] She is credited with originating the legal and policy concept of the Internet of Bodies. [9] [10] [11] [12] [13]
Matwyshyn received her BA with honors from Northwestern University in 1996,and her MA in international relations from Northwestern also in 1996. She received her JD with honors from Northwestern University Pritzker School of Law in 1999,and her PhD in Human Development and Social Policy,also from Northwestern,in 2005. Her thesis focused on individual level determinants of teens' interest in technology entrepreneurship and careers [14] [15] and was published in part as a law review article in 2003. [16]
Between 1999 and 2003,Matwyshyn practiced law as a corporate attorney. [17] Between 2003 and 2005,Matwyshyn was a faculty member in the Donald Pritzker Entrepreneurship Law Center at Northwestern University Pritzker School of Law. [18] In 2005 she was appointed assistant professor,University of Florida Frederic G. Levin College of Law, [19] and the faculty director of the Center for Information Research. [20] In 2007 she was appointed an assistant professor,Legal Studies and Business Ethics,The Wharton School,University of Pennsylvania. [21] In 2012,she became an affiliate scholar of the Stanford Center for Internet and Society. [22] In 2014,Matwyshyn served as an academic in residence/senior policy advisor at the U.S. Federal Trade Commission, [23] where her work focused on data security and consumer privacy initiatives. [24]
In 2015,Matwyshyn was appointed as the Microsoft Visiting professor of Information Technology Policy at Princeton University's Center for Information Technology Policy in the School of Public and International Affairs and Department of Computer Science. [25] During this time,she represented [26] computer scientists Steve Bellovin,Matt Blaze,Alex Halderman,and Nadia Heninger and testified before the Copyright Office in a successful petition to obtain an exemption to Section 1201 of the Digital Millennium Copyright Act to permit information security research on consumer devices,including voting machines. [27] In 2015 she was appointed Professor of Law at Northeastern University School of Law [28] and co-founded the Center for Law,Innovation and Creativity (CLIC). [29]
Beginning in 2019 Matwyshyn became the Associate Dean of Innovation and Technology and a professor on the Penn State Law faculty [30] and a professor in the Penn State College of Engineering. [31] [14] She is also the founding director of the Penn State Policy Innovation Lab of Tomorrow (PILOT lab). [32]
In 2022,Matwyshyn was appointed by the Federal Trade Commission's Bureau of Consumer Protection as a Senior Special Advisor on Law,Technology,and the Digital Economy. [33] In 2023,she was appointed to the Consumer Financial Protection Bureau as a Senior Special Advisor on Information Security and Data Privacy. [34]
In 2016,Matwyshyn was awarded a US/UK Fulbright Cyber Security award. [35] In 2017,she was named a Senior Fellow in the Cyber Statecraft Initiative at the Atlantic Council. [36]
In 2019,Matwyshyn was named a MacCormick Fellow at the University of Edinburgh Law School [37] and a visiting researcher at Centre Internet et Societe in CNRS at the Sorbonne. [38] She was also appointed a fellow in residence at the John W. Kluge Center at the Library of Congress. [39]
In 2020,her work on the Internet of Bodies (IoB) was used as a springboard for reports on the topic by Rand Corporation [40] and the World Economic Forum. [41] She is also part of an IEEE team of technology experts who generate annual trend predictions [42] and the Washington Post's team of cybersecurity experts. [43]
In 2021,she became the founding faculty director of the Anuncia Donecia Songsong Manglona Lab for Gender and Economic Equity at Penn State Law,after a $1 million donation was made by Katie Moussouris. [44]
The Electronic Privacy Information Center (EPIC) is an independent nonprofit research center established in 1994 to protect privacy, freedom of expression, and democratic values in the information age. Based in Washington, D.C., their mission is to "secure the fundamental right to privacy in the digital age for all people through advocacy, research, and litigation." EPIC believes that privacy is a fundamental right, the internet belongs to people who use it, and there's a responsible way to use technology.
Center for Democracy & Technology (CDT) is a Washington, D.C.-based 501(c)(3) nonprofit organisation that advocates for digital rights and freedom of expression. CDT seeks to promote legislation that enables individuals to use the internet for purposes of well-intent, while at the same time reducing its potential for harm. It advocates for transparency, accountability, and limiting the collection of personal information.
Eugene Howard Spafford, known as Spaf, is an American professor of computer science at Purdue University and a computer security expert.
A privacy policy is a statement or legal document that discloses some or all of the ways a party gathers, uses, discloses, and manages a customer or client's data. Personal information can be anything that can be used to identify an individual, not limited to the person's name, address, date of birth, marital status, contact information, ID issue, and expiry date, financial records, credit information, medical history, where one travels, and intentions to acquire goods and services. In the case of a business, it is often a statement that declares a party's policy on how it collects, stores, and releases personal information it collects. It informs the client what specific information is collected, and whether it is kept confidential, shared with partners, or sold to other firms or enterprises. Privacy policies typically represent a broader, more generalized treatment, as opposed to data use statements, which tend to be more detailed and specific.
Information security standards are techniques generally outlined in published materials that attempt to protect the cyber environment of a user or organization. This environment includes users themselves, networks, devices, all software, processes, information in storage or transit, applications, services, and systems that can be connected directly or indirectly to networks.
Howard Anthony Schmidt was a partner with Tom Ridge in Ridge Schmidt Cyber LLC, a consultancy company in the field of cybersecurity. He was the Cyber-Security Coordinator of the Obama Administration, operating in the Executive Office of the President of the United States. He announced his retirement from that position on May 17, 2012, effective at the end of the month.
Cyberethics is "a branch of ethics concerned with behavior in an online environment". In another definition, it is the "exploration of the entire range of ethical and moral issues that arise in cyberspace" while cyberspace is understood to be "the electronic worlds made visible by the Internet." For years, various governments have enacted regulations while organizations have defined policies about cyberethics.
Ari M. Schwartz is an American cybersecurity and technology policy expert. He is the former Special Assistant to the President and senior director for cybersecurity on the United States National Security Council Staff at the White House, having left the role in October 2015. Previously, Schwartz worked in both the Executive Branch and civil society as on cybersecurity, privacy, civil liberties, and policy. He is an advocate for vulnerability disclosure programs.
Susan Landau is an American mathematician, engineer, cybersecurity policy expert, and Bridge Professor in Cybersecurity and Policy at the Fletcher School of Law and Diplomacy at Tufts University. She previously worked as a Senior Staff Privacy Analyst at Google. She was a Guggenheim Fellow and a visiting scholar at the Computer Science Department, Harvard University in 2012.
Peter P. Swire is the J.Z. Liang Chair in the School of Cybersecurity and Privacy in the College of Computing at the Georgia Institute of Technology. Swire is also Professor of Law and Ethics in the Scheller College of Business and has an appointment by courtesy with the School of Public Policy. He is an internationally recognized expert in privacy law. Swire is also a senior fellow at the Future of Privacy Forum and has served on the National Academies of Science and Engineering Forum on Cyber Resilience. During the Clinton administration, he became the first person to hold the position of Chief Counselor for Privacy in the Office of Management and Budget. In this role, he coordinated administration policy on privacy and data protection, including interfacing with privacy officials in foreign countries. He may be best known for shaping the Health Insurance Portability and Accountability Act Privacy Rule while serving as the Chief Counselor for Privacy. In November 2012 he was named as co-chair of the Tracking Protection Working Group of the World Wide Web Consortium (W3C), to attempt to mediate a global Do Not Track standard. In August 2013, President Obama named Swire as one of five members of the Director of National Intelligence Review Group on Intelligence and Communications Technologies.
Julie Simone Brill is an American lawyer who serves as Chief Privacy Officer and Corporate Vice President for Global Privacy, Safety and Regulatory Affairs at Microsoft. Prior to her role at Microsoft, Brill was nominated by President Barack Obama on November 16, 2009, and confirmed unanimously by the US Senate to serve as Commissioner of the US Federal Trade Commission on March 3, 2010. Brill served as a Commissioner of the Federal Trade Commission (FTC) from 2010 to 2016.
Jeff Kosseff is a cybersecurity law professor at the United States Naval Academy. He was previously a journalist, and was a finalist for the Pulitzer Prize and recipient of the George Polk Award.
The Cyber Intelligence Sharing and Protection Act was a proposed law in the United States which would allow for the sharing of Internet traffic information between the U.S. government and technology and manufacturing companies. The stated aim of the bill is to help the U.S. government investigate cyber threats and ensure the security of networks against cyberattacks.
Carl E. Landwehr is an American computer scientist whose research focus is cybersecurity and trustworthy computing. His work has addressed the identification of software vulnerabilities toward high assurance software development, architectures for intrusion-tolerant and multilevel security systems, token-based authentication, and system evaluation and certification methods. In an invited essay for ACSAC 2013, he proposed the idea of developing building codes for building software that is used in critical infrastructures. He has organized an NSF funded workshop to develop a building code and research agenda for medical device software security. The final committee report is available through the Cyber Security and Policy Institute of the George Washington University, and the building code through the IEEE.
The National Cyber Security Hall of Fame, founded by Larry Letow and Rick Geritz, was established in 2012 to recognize the contributions of key individuals in the field of cyber security; its mission statement is, Respect the Past – Protect the Future. According to its website, it is designed to honor the innovative individuals and organizations which had the vision and leadership to create the fundamental building blocks for the cybersecurity Industry. The organization also highlights major milestones in the industry's 40-year history through a timelineArchived 2013-12-30 at the Wayback Machine representation, which includes inductees and their corresponding accomplishments.
The Cybersecurity Information Sharing Act is a United States federal law designed to "improve cybersecurity in the United States through enhanced sharing of information about cybersecurity threats, and for other purposes". The law allows the sharing of Internet traffic information between the U.S. government and technology and manufacturing companies. The bill was introduced in the U.S. Senate on July 10, 2014, and passed in the Senate on October 27, 2015. Opponents question CISA's value, believing it will move responsibility from private businesses to the government, thereby increasing vulnerability of personal private information, as well as dispersing personal private information across seven government agencies, including the NSA and local police.
Privacy laws vary from state to state within the United States of America. Several states have recently passed new legislation that adapt to changes in cyber security laws, medical privacy laws, and other privacy related laws. State laws are typically extensions of existing United States federal laws, expanding them or changing the implementation of the law.
The Cybersecurity Law of the People's Republic of China, commonly referred to as the Chinese Cybersecurity Law, was enacted by the National People’s Congress with the aim of increasing data protection, data localization, and cybersecurity ostensibly in the interest of national security. The law is part of a wider series of laws passed by the Chinese government in an effort to strengthen national security legislation. Examples of which since 2014 have included the data security law, the national intelligence law, the national security law, laws on counter-terrorism and foreign NGO management, all passed within successive short timeframes of each other.
Camille Stewart is an American technology and cybersecurity attorney, public speaker, and entrepreneur. She served as the Senior Policy advisor for the U.S. Department of Homeland Security under the Obama administration from 2015 to 2017 under the Barack Obama administration. She also served as the Head of Product Security Strategy Google after serving as the Lead for Security Policy & Election Integrity, Google Play & Android at Google.
Gregory Falco is an American inventor and researcher. Falco is a professor at Cornell University. He is a pioneer in the field of cybersecurity research and its aerospace applications. Falco is the founding chair of IEEE's Standard for Space System Cybersecurity and the NATO Country Project Director for the NATO Science for Peace and Security effort to reroute the internet to space.