Upload
raphael-wormington
View
212
Download
0
Embed Size (px)
Citation preview
Security, Privacy, and Ethics
Marsha Woodbury, Ph.D.University of Illinois, Urbana-Champaign
Let’s start with a punch
http://www.youtube.com/watch?v=AfapbKKLRGg
Roadmap
What is ethics? What does a code of ethics look like? What are laws? What is privacy? What is security? Discussion of issues that face us now
and in the future
Ethical Issues
Privacy and confidentiality Integrity of information over time
Unimpaired and consistent service Controlling access to resources
Serving people and society
What is Ethics?
Figuring out, defending, and recommending concepts of right and wrong behavior.
Usually refers to actions not done while a gun is pointed at your head.
Ethics Made Simple
Is the action legal? What would your parents say? If you do it, will you feel bad? How will it look in the newspaper? Is there a shusher in the group? Does it pass the smell test?
The Code of Ethics (edited by your speaker)
We must take care not to endanger the life, health, safety, and welfare of the public.
We should demonstrate competence and due care in our technical duties.
We must maintain and update our technical skills.
http://www.secureworks.com/research/articles/ethics
Another code of ethics
http://www.cybersecurityinstitute.biz/training/ethicsconduct.htm
Computer Forensics:
4. I will be honest and forthright in my dealings with others.
6. I will not accept compensation for my services based on contingency.
A Point to Ponder
Humans
Mental health is very important. Privacy and other rights need to be considered.
Laws vs. Ethics
The legal system takes time to evolve, lays out what is acceptable and unacceptable behavior, establishes penalties.
12
Example of a Law
Ryan Haight Online Pharmacy Consumer Protection Act
Defines "online pharmacy" Requires at least one face-to-face
patient medical evaluation Requires registration for online
pharmacies
Chilling Effects Law--Example
Digital Millennium Copyright Act
DMCA Safe Harbor—ISP takes down material immediately once it is notified, whether there is just cause or not
DMCA, cont.
DMCA Subpoenas Anyone who has written something
is a copyright holder Law enforcement might use the
Section 512(h) subpoena other than for vindicating copyright right
No judge reviews the subpoena
Is that ethical?
Typical Problems:Medical Records
http://www.youtube.com/watch?v=SYb9Zn5glnw
Privacy
What is the right to privacy?
http://www.youtube.com/watch?v=EUb70aUDYaM
Privacy
Article 12: No one shall be subject to arbitrary interference with his privacy, family, home or correspondence, nor to attacks upon his honor and reputation. Everyone has the right to the protection of the law against such interference or attacks.
United Nations, Universal Declaration Of Human Rights
Security
Measures taken as a precaution against theft or espionage or sabotage, etc.
Freedom from anxiety or fear
Often thwarted by users leaving passwords on sticky notes
Internet Privacy/Security Issues
University Sites and Personal Data Accidents
Identity Theft and Identity Loss
And a few more
Cybercafes
Google's Gmail
Online Dating
Anonymity
Bad uses
money laundering
drug trading terrorism preying upon
the vulnerable
Good uses
security
mental health self-fulfillment peace of mind
Ethical Issues Privacy and confidentiality Integrity of information over time
Unimpaired and consistent service Controlling access to resources
Serving people and society (NSA spying on Americans)
Good Luck!!
Remember,
You have access to data (!) Make sure we can trust you
Contact me: [email protected]