Tap the Power

Knowledge
is Power

Publications available from the Theobald Legislative Library

Identity Theft

 Compiled by Arden Rice, April 2008

Back to Tap the Power Page

In recent years, Congress and the Wisconsin Legislature have passed legislation to increase the penalties for identity theft-related crimes. This bibliography examines the prevalence of the problem, who commits identity theft crimes, and how victims are impacted. Many of the titles below describe how the public and private sector should work to prevent data security breaches and the lessons that can be learned from past mistakes. This bibliography examines identity theft as an institutional problem rather than a consumer issue, and therefore does not include many valuable consumer prevention tips and remedies.

Combating Identity Theft: A Strategic Plan / The President's Identity Theft Task Force. 2007. (332.85/X6)
(Plan) http://purl.access.gpo.gov/GPO/LPS82893
(Supplemental information) http://purl.access.gpo.gov/GPO/LPS82895

Common Risks Impeding the Adequate Protection of Government Information / Sponsored by the Department of Homeland Security and the Office of Management and Budget as directed by the Identity Theft Task Force. 2007. (342.43/X19)
http://csrc.nist.gov/pcig/document/Common-Risks-Impeding-Adequate-Protection-Govt-Info.pdf

Consumer Fraud and Identity Theft Complaint Data, January-December 2007 / U.S. Federal Trade Commission. 2008. (332.85/X7) www.ftc.gov/opa/2008/02/fraud.pdf

Dumpster Diving / Wisconsin Legislative Reference Bureau. 2000. (Budget Brief 00-1) (332.85/W7i4) www.legis.wi.gov/lrb/pubs/budbriefs/00bb1.pdf

Identification Security: Technology and Policy Issues / National Conference of State Legislatures. 2005. (342.43/N213b) www.ncsl.org/programs/pubs/summaries/017203-sum.htm

Identity Fraud Trends and Patterns: Building a Data-Based Foundation for Proactive Enforcement / Utica College, Center for Identity Management and Information Protection and U.S. Department of Homeland Security. 2007. (332.85/C331) www.utica.edu/academic/institutes/ecii/publications/media/cimip_id_theft_study_oct_22_noon.pdf

Identity Theft / Wisconsin Legislative Reference Bureau. 1998. (Legislative Brief 98-14) (332.85/W7i1) www.legis.wi.gov/lrb/pubs/Lb/98Lb14.pdf

Identity Theft: Assessing Offenders' Strategies and Perceptions of Risk / Heith Copes and Lynne Vieraitis, University of Alabama at Birmingham, Department of Justice Sciences. 2007. (332.85/AL1) www.ncjrs.gov/pdffiles1/nij/grants/219122.pdf

"Identity Theft: Can Congress Give Americans Better Protection?" / Congressional Quarterly, Inc., CQ Researcher, June 10, 2005, v.15, no.22. (346.51/C761)

Identity Theft: Does the Risk Vary with Demographics? / U.S. Federal Trade Commission, Bureau of Economics. 2005. (332.85/X8) Concludes that people in certain areas of the country and of higher socioeconomic levels are more at risk for identity theft. http://purl.access.gpo.gov/GPO/LPS79066

Identity Theft in Wisconsin / Wisconsin Legislative Reference Bureau. 2006. (Wisconsin Brief 06-2) (332.85/W7i5) www.legis.wi.gov/lrb/pubs/wb/06wb2.pdf

Identity Theft: The Aftermath 2006 / Identity Theft Resource Center. 2007. (332.85/Id2a) Annual survey of the impact of identity theft on its victims. www.idtheftcenter.org/artman2/uploads/1/The_Aftermath_2006_2.pdf

Information Security: Protecting Personally Identifiable Information / U.S. Government Accountability Office. 2008. (GAO- 08-343) (342.43/X17) www.gao.gov/new.items/d08343.pdf

The Insecurity of Test Data: The Unseen Crisis / Ponemon Institute. 2007. (342.43/P77) Describes the potential for data security breaches in the pre-production environment when data is being tested by contract employees and others not directly screened by the employer.
www.compuware.com/dl/TestDataReport_Final5_660png.pdf

IT Security Awareness and Training: Changing the Culture of State Government / National Association of State CIOs. 2007. (342.43/N215a) Includes numerous examples of training methods used by different states. www.nascio.org/publications/documents/NASCIO-ITSecurityAwarenessAndTraining.pdf

Keeping Citizen Trust: What Can a State CIO Do to Protect Privacy? / National Association of State CIOs. 2006. (342.43/N215) www.nascio.org/publications/documents/NASCIO-keeping%20Citizen%20Trust.pdf

Measuring Identity Theft at Top Banks (Version 1.0) / Chris Hoofnagle, University of California-Berkeley, Berkeley Center for Law and Technology. 2008. (paper no. 44) (332.85/C1) The author argues that companies should follow consistent reporting standards for incidents of data security breaches so that consumers can choose wisely. http://repositories.cdlib.org/bclt/lts/44/

Methamphetamine-Related Identity Theft / U.S. Department of Justice, National Drug Intelligence Center. 2007. (Intelligence Bulletin) (614.252/X71) http://purl.access.gpo.gov/GPO/LPS83680

"The Misplaced Role of Identity Theft in Triggering Public Notice of Database Breaches" / Brendan St. Amant, Harvard Journal on Legislation, Summer 2007, p.505-528. (328/H26/2007/v.44/no.2) Compares the merits of several different privacy bills introduced in the 109th Congress and makes recommendations about what should constitute a data security breach and how it should be handled.

New Laws Relating to Personal Data Privacy / Wisconsin Legislative Reference Bureau. 2006. (Legislative Brief 06-12) (342.43/W7b1) See next entry, New Wisconsin Identity Theft Statutes, for description. www.legis.wi.gov/lrb/pubs/Lb/06Lb12.pdf

New Wisconsin Identity Theft Statutes (2005 Acts 138, 139, and 140) / Wisconsin Legislative Council. 2006. (Information Memorandum 06-3) (342.43/W7g3) This publication and New Laws Relating to Personal Data Privacy describe Act 138, Wisconsin's new data breach notification law; Act 139, which limits the use of Social Security numbers by the register of deeds; and Act 140, which allows consumers to put a "security freeze" on their credit report to prevent unauthorized persons from opening new lines of credit with their identification.
www.legis.wi.gov/lc/publications/im/im_2006_03.pdf

The Ongoing Critical Threats Created by Identity Fraud: An Action Plan / Gary R. Gordon and Norman A. Willox, Jr., Utica College, Economic Crime Institute and LexisNexis. 2006. (332.85/Ut3) www.utica.edu/academic/institutes/ecii/publications/media/identity_fraud_wp6-06.pdf

Personal Information: Data Breaches Are Frequent, but Evidence of Resulting Identity Theft Is Limited; However, the Full Extent Is Unknown / U.S. Government Accountability Office. 2007. (GAO-07-737) (342.43/X18) http://purl.access.gpo.gov/GPO/LPS84579

Privacy: Lessons Learned About Data Breach Notification / U.S. Government Accountability Office. 2007. (GAO-07-657) (342.43/X20) Identifies the lessons learned by the federal government following the accidental disclosure of millions of veterans records at the Department of Veterans Affairs. www.gao.gov/new.items/d07657.pdf

"The Recognition of a Negligence Cause of Action for Victims of Identity Theft: Someone Stole My Identity, Now Who Is Going to Pay for It?" / Anthony E. White, Marquette Law Review, Spring 2005, p.1031-1053. (328/M34/2005/v.88/no.4) The author contends that individuals should be allowed to sue financial institutions and businesses for negligence if their identity is stolen through a security breach.

2007 Annual Study: U.S. Cost of a Data Breach / Ponemon Institute. 2007. (342.43/P77a) "A study summarizing the actual costs incurred by 35 U.S. organizations that lost confidential information and had a regulatory requirement to publicly notify affected individuals." http://www.vontu.com/uploadedfiles/global/Ponemon-Cost-of-a-Data-Breach-2007.pdf

Related Web Sites and Podcasts

Center for Identity Management and Information Protection: www.utica.edu/academic/institutes/cimip/

Consumers Union: www.consumersunion.org/pub/m/s/moneyprivacyid_theft/ "Money-Privacy-ID Theft" updates.

Economic Crime Institute: www.utica.edu/academic/institutes/ecii/

Federal Trade Commission (U.S.)

• www.ftc.gov/bcp/edu/microsites/idtheft/ "Fighting Back Against Identity Theft."
• www.ftc.gov/bcp/edu/microsites/idtheft/law-enforcement/laws.html Federal and state laws regarding identity theft.

Identity Theft Resource Center

• www.idtheftcenter.org Home page.
• www.idtheftcenter.org/artman2/publish/lib_survey/ITRC_2008_Breach_List.shtml "ITRC 2008 Breach List." Lists occurrences of data breaches by industry category and state. Also contains links to the 2005, 2006, and 2007 reports.

National Association of State CIOs: www.nascio.org/committees/security/AT-RISK-Video.cfm NASCIO podcast: "At-Risk! Securing Government in a Digital World."

National Conference of State Legislatures: www.ncsl.org/programs/lis/privacy/idtheft.htm Identity theft resources.

National Institute of Standards and Technology: http://csrc.nist.gov "Computer Security Resource Center."

The President's Identity Theft Task Force: www.idtheft.gov

Wisconsin Department of Administration, SecurITy: http://itsecurity.wi.gov

Wisconsin Office of Privacy Protection: www.privacy.wi.gov

Legislative Reference Bureau

We bring knowledge to you

Library Circulation Desk: (608) 266-7040
LRB.Library@legis.wisconsin.gov
Research Questions: (608) 266-0341
One East Main Street
Madison, WI 53703

The Legislative Reference Bureau
invites legislators to suggest
topics for future annotated
bibliographies

Serving the Wisconsin Legislature since 1901