Presentation is loading. Please wait.

Presentation is loading. Please wait.

Security in Computing  Privacy in Computing  Legal & Ethical Issues in Computer Security  Information Security Management and Security Controls.

Published byKristina Martin Modified over 9 years ago

Similar presentations

Presentation on theme: "Security in Computing  Privacy in Computing  Legal & Ethical Issues in Computer Security  Information Security Management and Security Controls."— Presentation transcript:

1 Security in Computing  Privacy in Computing  Legal & Ethical Issues in Computer Security  Information Security Management and Security Controls

2 I.Privacy in Computing I. What is privacy A.Individual Control of personal information B.Right to declare certain information sensitive C.Privacy has a cost: giving – or not giving – certain information may have affect how we are treated D.Computerization did not invent privacy problems, nor will it solve them...

3 I.Privacy in Computing E.Basic qualities/dimensions/tenets of privacy 1.Consent of information collection 2.Limited use 3.Limited period of retention 4.Limited disclosure 5.Protection of collected information against inappropriate use 6.Controlled access, logging 7.Monitoring of use, logging 8.Policies cannot be weakened once data items are collected.

4 I.Privacy in Computing F.Anonymity, pseudonymity, multiple identities

5 II.Principles and Policies A.Fair information policies B.Privacy laws – which country?

6 III.Authentication A.Of an: 1.Individual 2.Identity 3.Attribute B.Anonymization 1.Delivering unique identities from anonymized data 2.Work of Anderson, Sweeney

7 IV.Data Mining A.Privacy-preserving data mining 1.Tradeoff between anonymity and identification for good purpose 2.Joining databases on common data values 3.Aggregating for study of trends, connections

8 V.Privacy on the Internet A.Finance 1.Web payments 2.Credit cards 3.Anonymous payments 4.Payments in cases of mutual distrust B.Retained relationships A.Cookies B.Site logins C.Impersonation D.Unannounced relationships (tracking)

9 V.Privacy on the Internet C.Tracking 1.Web bugs 2.Keystrokes logging 3.Spyware 4.Adware 5.hijacking

10 VI.Secure e-mail A.No sender assurance; little ability to track the origin of a message B.Insecure channels C.Monitoring D.Anonymous e-mail and remailers E.Spoofing, spam

11 VII.Emerging technologies (examples) A.RFID – Radio-frequency identification 1.Definition 2.Uses 3.Misuses B.Electronic voting 1.Far election principles 2.Contrast to fairness of paper ballot, mechanical voting techniques 3.Internet voting 4.Voice over IP

12 I.Legal and Ethical Issues in Computer Security I. This is a very broad topic – some topics for class discussion based on case studies are: A.Determining current and national laws concerning personal privacy and computer records, computer fraud, or hacking, given that laws change frequently B.Review recent prosecutions of computer crime cases to see what laws where used for this prosecution

13 I.Legal and Ethical Issues in Computer Security C.How to address the international aspect of computer crime – i.e. when a criminal in one country commits a crime against a computer in another country - Whose law is broken? whose police and courts have jurisdiction? how should the crime be investigated? - What if the transaction is passed through a third country or if the criminal uses an ISP in fourth country?

14 I.Information Security Management and Security Controls I. Key area relating to ISO/IEC code of practice for information security management and security controls in terms of: general principles, best practice recommendations, established guidelines and any specific issues within this area. http://en.wikipedia.org/wiki/ISO/IEC_27002 http://www.iso.org/iso/catalogue_detail?csnumber =39612

Download ppt "Security in Computing  Privacy in Computing  Legal & Ethical Issues in Computer Security  Information Security Management and Security Controls."

Similar presentations

Providing protection from potential security threats that exist for any internet-connected computer is termed e- security. It is important to be able to.

Providing protection from potential security threats that exist for any internet-connected computer is termed e- security. It is important to be able to.
Institutional Telecomms and Computer Network Monitoring Andrew Charlesworth University of Bristol 10 June 2002.

Institutional Telecomms and Computer Network Monitoring Andrew Charlesworth University of Bristol 10 June 2002.
Increasing public concern about loss of privacy Broad availability of information stored and exchanged in electronic format Concerns about genetic information.

Increasing public concern about loss of privacy Broad availability of information stored and exchanged in electronic format Concerns about genetic information.
Copyright © 2015 McGraw-Hill Education. All rights reserved. No reproduction or distribution without the prior written consent of McGraw-Hill Education.

Copyright © 2015 McGraw-Hill Education. All rights reserved. No reproduction or distribution without the prior written consent of McGraw-Hill Education.
Legal and Ethical Issues: Privacy and Security Chapter Five.

Legal and Ethical Issues: Privacy and Security Chapter Five.
Chapter 10 Privacy and Other Social Issues. Copyright © 2003, Addison-Wesley What Is Privacy? Freedom from observation, intrusion, or attention of others.

Chapter 10 Privacy and Other Social Issues. Copyright © 2003, Addison-Wesley What Is Privacy? Freedom from observation, intrusion, or attention of others.
McGraw-Hill/Irwin ©2009 The McGraw-Hill Companies, All Rights Reserved CHAPTER 4 ETHICS AND INFORMATION SECURITY Business Driven Information Systems 2e.

McGraw-Hill/Irwin ©2009 The McGraw-Hill Companies, All Rights Reserved CHAPTER 4 ETHICS AND INFORMATION SECURITY Business Driven Information Systems 2e.
NC1 WETZEL. Purpose  To revise policy and provide guidance for the establishment of a sexual assault prevention/victim assistance program within the.

NC1 WETZEL. Purpose  To revise policy and provide guidance for the establishment of a sexual assault prevention/victim assistance program within the.
Chapter 4 Personal Security

Chapter 4 Personal Security
MIS PERSONAL, LEGAL, ETHICAL, AND ORGANIZATIONAL ISSUES OF INFORMATION SYSTEMS CHAPTER 4 Hossein BIDGOLI Phishing Email that bites Paying for Privacy Pirates.

MIS PERSONAL, LEGAL, ETHICAL, AND ORGANIZATIONAL ISSUES OF INFORMATION SYSTEMS CHAPTER 4 Hossein BIDGOLI Phishing that bites Paying for Privacy Pirates.
 Guarantee that EK is safe  Yes because it is stored in and used by hw only  No because it can be obtained if someone has physical access but this can.

 Guarantee that EK is safe  Yes because it is stored in and used by hw only  No because it can be obtained if someone has physical access but this can.
COMP6005 An Introduction to Computing An Introduction to Computing Privacy and Ethical Issues.

COMP6005 An Introduction to Computing An Introduction to Computing Privacy and Ethical Issues.
Business Plug-In B7 Ethics.

Business Plug-In B7 Ethics.
1 McGraw-Hill/Irwin Copyright © 2004, The McGraw-Hill Companies, Inc. All rights reserved. Ethical Challenges Ethics Principles of right and wrong that.

1 McGraw-Hill/Irwin Copyright © 2004, The McGraw-Hill Companies, Inc. All rights reserved. Ethical Challenges Ethics Principles of right and wrong that.
The role of the Office of the Privacy Commissioner in telecommunications Andrew Solomon Director, Policy.

The role of the Office of the Privacy Commissioner in telecommunications Andrew Solomon Director, Policy.
Privacy & Security By Martin Perez. Introduction  Information system - People : meaning use, the people who use computers. - Procedures : Guidelines.

Privacy & Security By Martin Perez. Introduction  Information system - People : meaning use, the people who use computers. - Procedures : Guidelines.
Ethics and Privacy. Utilitarian approach: an ethical action is the one that provides the most good or does the least harm. Rights approach: ethical action.

Ethics and Privacy. Utilitarian approach: an ethical action is the one that provides the most good or does the least harm. Rights approach: ethical action.
E-Commerce: Regulatory, Ethical, and Social Environments

E-Commerce: Regulatory, Ethical, and Social Environments
Privacy in Computing Legal & Ethical Issues in Computer …Security Information Security Management …and Security Controls Week-9.

Privacy in Computing Legal & Ethical Issues in Computer …Security Information Security Management …and Security Controls Week-9.
Personal Data (Privacy) Ordinance Hong Kong Personal Data (Privacy) Ordinance Hong Kong by Stephen Lau Privacy Commissioner for Personal Data Hong Kong.

Personal Data (Privacy) Ordinance Hong Kong Personal Data (Privacy) Ordinance Hong Kong by Stephen Lau Privacy Commissioner for Personal Data Hong Kong.

Similar presentations

Ads by Google