Associate Professor Josephine Wolff researches issues related to cybersecurity policy and the economics of information security. Her projects include examining the costs of cybersecurity incidents and how they are distributed, as well as insurance coverage related to cyber risk. She also looks at the aftermath of cybersecurity events more broadly to understand how liability is assigned, what lessons are learned from these incidents, and how they shape policy efforts moving forward.
Ongoing projects include analyzing the impact of cryptocurrency-related sanctions for combating ransomware, how the US government has responded to foreign state-sponsored cyberattacks over the course of the past decade, and how safety and security audits for complex AI systems are evolving in light of new AI policy measures.