Home
Josephine Wolff

Josephine Wolff

Associate Professor of Cybersecurity Policy
Associate Professor, Computer Science, Engineering
Director, Hitachi Center for Technology and International Affairs

Education

  • PhD, MIT, USA
  • AB, Princeton University, USA

Biography

Josephine Wolff is an associate professor of cybersecurity policy and has been at The Fletcher School at Tufts University since 2019. Her research interests include liability for cybersecurity incidents, international Internet governance, cyber-insurance, cybersecurity workforce development, and the economics of information security. Her first book "You'll See This Message When It Is Too Late: The Legal and Economic Aftermath of Cybersecurity Breaches" was published by MIT Press in 2018. Her second book "Cyberinsurance Policy: Rethinking Risk in an Age of Ransomware, Computer Fraud, Data Breaches, and Cyberattacks" will be published by MIT Press in 2022. Her writing on cybersecurity has also appeared in Slate, The New York Times, The Washington Post, The Atlantic, and Wired. Prior to joining Fletcher, she was an assistant professor of public policy at the Rochester Institute of Technology and a fellow at the New America Cybersecurity Initiative and Harvard's Berkman Klein Center for Internet & Society.

Selected Publications

Wolff, J. (2022). Cyberinsurance Policy Rethinking Risk in an Age of Ransomware, Computer Fraud, Data Breaches, and Cyberattacks. MIT Press.

Wolff, J. (2021). "CYBERWAR BY ALMOST ANY DEFINITION": NOTPETYA, THE EVOLUTION OF INSURANCE WAR EXCLUSIONS, AND THEIR APPLICATION TO CYBERATTACKS. CONNECTICUT INSURANCE LAW JOURNAL, 28(1), 85-129. Retrieved from https://www.webofscience.com/

Wolff, J. (2018). You'll see this message when it is too late The Legal and Economic Aftermath of Cybersecurity Breaches. MIT Press.

Wolff, J. (2016). Perverse Effects in Defense of Computer Systems: When More Is Less. Journal of Management Information Systems, 33(2), 597-620. doi:10.1080/07421222.2016.1205934

Wolff, J. (2016). What we talk about when we talk about cybersecurity: security in internet governance debates. Internet Policy Review, 5(3).

Wolff, J., & Atallah, N. (2021). EARLY GDPR PENALTIES Analysis of Implementation and Fines Through May 2020. JOURNAL OF INFORMATION POLICY, 11, 63-103. doi:10.5325/jinfopoli.11.2021.0063