Lecture 9 of IT Security course is about legal and ethical issues in computer security. Lecture start with En.Mohd Zaki discuss about law and ethical. Law is a rule of conduct or action prescribed or formally recognized as binding or enforced by a controlling authority. Ethics is a set of moral principles or values and the principles of conduct governing an individual or a group.
According to En.Mohd Zaki, laws are divided to several categories which are civil law, criminal law, tort law. Civil law represents a wide variety of laws that govern a nation or state while criminal law addresses violations harmful to society and is actively enforced through prosecution by the state. Tort law enables individuals to seek recourse against others in the event of personal, physical or financial injury.
| Law | Ethic |
| Formal, documented | Described by unwritten principles |
| Interpreted by courts | Interpreted by individuals |
| Established by legislature representing everyone | Presented by philosophers, religions, professional, group |
| Applicable to everyone | Personal choice |
| Priority determined by courts if two laws conflict | Priority determined by individual if two principles conflict |
| Enforceable by police and courts | |
There are several ethics concept in information security such as ethical difference across cultures, software license infringement, illicit use, and misuse of corporate resources, ethics and education, deterrence to unethical and illegal behavior. Three general categories of unethical and illegal behavior include ignorance, accident and intent. Deterrence is the best method for preventing an illegal or unethical activity. In order to protect programs and data, copyright which designed to protect the expression of ideas such as story and song, patents which applies to the result of science, technology and engineering, trade secret used by owner to protect secret by storing it in a safe and encrypting it and by making employees sign a statement that they will not disclose the secret can be implemented.
In addition, En. Mohd Zaki told us some ethical issues in computer security which includes ethics and religion, ethics is not universal, ethics does not provide answer and ethical reasoning. Ethics & Religion distinguish ethics from religion, analyze a situation from an ethical perspective and reach ethical conclusions without appealing to any particular religion. Ethics is not universal but varies by society within a society such as may be they have different view on privacy. Ethical pluralism is recognizing or admitting that more than one position may be ethically justifiable. Ethics helps to justify our choice and help to identify the issues involves.
At the end of lecture, En. Mohd Zaki remind us to prepare for our assignment presentation.
No comments:
Post a Comment