Presentation is loading. Please wait.

Presentation is loading. Please wait.

Protecting People and Information

Published byAubrey Tucker Modified over 6 years ago

Similar presentations

Presentation on theme: "Protecting People and Information"— Presentation transcript:

1 Protecting People and Information
Chapter 8 Protecting People and Information

2 STUDENT LEARNING OUTCOMES
Describe the ways in which information on your computer or network is vulnerable. Define risk management and risk assessment and describe the seven security measures that companies can take to protect their information.

3 They Know about 96 Percent of American Households
The Acxiom company, in Little Rock, handles consumer information for marketing purposes Acxiom gets information from the three major credit bureaus

4 They Know about 96 Percent of American Households
Customers: 9 of the 10 largest credit-card issuers Acxiom has 20 billion records on 110 million people 96% of households Makes and sells lists to customers Merges and protects databases

5 They Know about 96 Percent of American Households
Class poll Is the privacy of consumers threatened by companies such as Acxiom? What are the advantages to consumers of companies selling information on them? What are the disadvantages?

6 INTRODUCTION Handling information responsibly means understanding the following issues Ethics Personal privacy Threats against information Protection of information

7 ETHICS Ethics – the principles and standards that guide our behavior toward other people Ethics are rooted in history, culture, and religion

8 Factors that Determine How You Decide Ethical Issues
Actions in ethical dilemmas determined by Your basic ethical structure The circumstances of the situation Your basic ethical structure determines what you consider to be Minor ethical violations Serious ethical violations Very serious ethical violations

9 Basic Ethical Structure

10 Circumstances of the Situation
Consequences of the action or inaction Society’s opinion of the action or inaction Likelihood of effect of action or inaction Time to consequences of action or inaction Relatedness of people who will be affected by action or inaction Reach of action or inaction

11 Guidelines for Ethical Computer System Use
Talk to someone whose judgment you trust Visit company’s ethical ombudsman Ask lots of questions about what you’re being asked to do (couch questions in terms of company’s best interest) You may have to refuse to do something you consider unethical

12 Intellectual Property
Intellectual property – intangible creative work that is embodied in physical form Copyright – legal protection afforded an expression of an idea Fair Use Doctrine – may use copyrighted material in certain situations

13 Intellectual Property
Using copyrighted software without permission violates copyright law Pirated software – the unauthorized use, duplication, distribution, or sale of copyrighted software

14 PRIVACY Privacy – the right to left alone when you want to be, to have control over your own personal possessions, and not to be observed without your consent Dimensions of privacy Psychological: to have a sense of control Legal: to be able to protect yourself

15 Privacy and Other Individuals
Key logger (key trapper) software – a program that, when installed on a computer, records every keystroke and mouse click Screen capture programs – capture screen from video card is stored on many computers as it travels from sender to recipient Hardware key logger – hardware device that captures keystrokes moving between keyboard and motherboard

16 An E-Mail Is Stored on Many Computers

17 Online Social Networks
Be careful concernin what information you place on these Popular – MySpace, FaceBook, Xanga, Bibo Estimated that 1 in 5 social network participants will receive some kind of sexual offer Again, be careful… very careful

18 Identity Theft Identity theft – the forging of someone’s identity for the purpose of fraud

19 Identity Theft Phishing (carding, brand spoofing) – a technique to gain personal information for the purpose of identity theft NEVER Reply without question to an asking for personal information Click directly on a Web site provided in such an

20 Identity Theft Facts on phishing…
February 2005 – 2,625 phishing sites Consumers lost $500 million to phishers in 2004 70% people report visiting a fake site What to do if you suspect you’re at risk Close your credit card accounts (use ID theft affidavit form) Place a fraud alert on your credit reports Ask government to flag your files

21 Privacy and Employees Companies need information about their employees to run their business effectively As of March 2005, 60% of employers monitored employee s 70% of Web traffic occurs during work hours 78% of employers reported abuse 60% employees admitted abuse

22 Privacy and Employees Cyberslacking – misuse of company resources
Visiting inappropriate sites Gaming, chatting, stock trading, etc.

23 Monitoring Technology
Example of cost of misuse Watching an online fashion show uses as much bandwidth as downloading the entire Encyclopedia Britannica Reasons for monitoring Hire the best people possible Ensure appropriate behavior on the job Avoid litigation for employee misconduct

24 Privacy and Consumers Consumers want businesses to know who they are, but not to know too much Provide what they want, but not gather information on them Let them know about products, but not pester them with advertising

25 Cookies Cookie – a small file that contains information about you and your Web activities, which a Web site places on your computer Handle cookies by using Web browser cookie management option Buy a program that manages cookies

26 Spam Spam – unsolicited from businesses advertising goods and services Gets past spam filters by Inserting characters Inserting HTML tags that do nothing Replying usually increases, rather than decreases, amount of spam

27 Adware and Spyware Adware – software to generate ads that installs itself when you download another program Spyware (sneakware, stealthware) – software that comes hidden in downloaded software and helps itself to your computer resources

28 Adware in Free Version of Eudora

29 Trojan Horse Software Trojan horse software – software you don’t want inside software you do want Some ways to detect Trojan horse software AdAware at The Cleaner at Trojan First Aid Kit (TFAK) at Check it out before you download at

30 Web Logs Web log – one line of information for every visitor to a Web site Anonymous Web browsing (AWB) – hides your identity from the Web sites you visit The Anonymizer at SuftSecret at

31 Privacy and Government Agencies
About 2,000 government agencies have databases with information on people Government agencies need information to operate effectively Whenever you are in contact with government agency, you leave behind information about yourself

32 Government Agencies Storing Personal Information
Law enforcement NCIC (National Crime Information Center) FBI Electronic Surveillance Carnivore or DCS-1000 Magic Lantern (software key logger) NSA (National Security Agency) Echelon collect electronic information by satellite

33 Government Agencies Storing Personal Information
IRS Census Bureau Student loan services FICA Social Security Administration Social service agencies Department of Motor Vehicles

34 Laws on Privacy Health Insurance Portability and Accountability Act (HIPAA) protects personal health information Financial Services Modernization Act requires that financial institutions protect personal customer information Other laws in Figure 8.7 on page 281

35 SECURITY Attacks on information and computer resources come from inside and outside the company Computer sabotage costs about $10 billion per year In general, employee misconduct is more costly than assaults from outside

36 Security and Employees
Statistics on white-collar crime Costs an estimated $400 billion annually Average nonmanagerial embezzlement is $60,000 Average managerial embezzlement is $250,000 Two-thirds of insider fraud is not reported Of known losses, one-quarter cost more than $1 million

37 Types of Cyber Crime Computer virus (virus) – software that is written with malicious intent to cause annoyance or damage Worm – type of virus that spreads itself from computer to computer usually via Denial-of-service (DoS) attack – floods a Web site with so many requests for service that it slows down or crashes

38 Computer Viruses Can’t…
Hurt your hardware Ex: Monitors, printers, processors, etc. Hurt any files they weren’t designed to attack Ex: A worm designed to attack Outlook won’t attack other programs Infect files on write-protected media

39 Risk Management & Assessment
The identification of risks or threats The implementation of security measures Monitoring of measures for effectiveness Risk assessment – asks What can go wrong? How likely is it to go wrong? What will the consequences be?

40 Security Precautions Backup – process of making a copy of information
Anti-virus software – detects and removes or quarantines computer viruses Firewall – hardware and/or software that protects a computer or network from intruders

41 Security Precautions Access Authentication
Biometrics – the use of physiological characteristics for identification purposes Encryption – scrambles the contents of a file so that you can’t read it without the decryption key Public Key Encryption (PKE) – an encryption system with two keys: a public for everyone and a private one for the recipient

42 Security Precautions Intrusion detection software – looks for people on the network who shouldn’t be there or who are acting suspiciously Security-auditing software – checks out your computer or network for potential weaknesses

43 CAN YOU… Define ethics and describe the two factors that affect how you make a decision concerning an ethical issue. Define and describe intellectual property, copyright, Fair Use Doctrine, and pirated software. Define privacy and describe the ways in which it can be threatened.

44 CAN YOU… Describe the ways in which information on your computer or network is vulnerable. Define risk management and risk assessment and describe the seven security measures that companies can take to protect their information.

Download ppt "Protecting People and Information"

Similar presentations

Copyright © 2015 McGraw-Hill Education. All rights reserved. No reproduction or distribution without the prior written consent of McGraw-Hill Education.

Copyright © 2015 McGraw-Hill Education. All rights reserved. No reproduction or distribution without the prior written consent of McGraw-Hill Education.
1 COMPUTER SECURITY AND ETHICS Chapter Five. Computer Security Risks 2.

1 COMPUTER SECURITY AND ETHICS Chapter Five. Computer Security Risks 2.
Topic 4: Protecting People & Information Ethics, Privacy & Security MGMD 233-MIS AMN 2012.

Topic 4: Protecting People & Information Ethics, Privacy & Security MGMD 233-MIS AMN 2012.
Cookies Are small text filer with or unique ID tag that are embedded in a Web browser and saved on the user hard drive. Cookies also make it possible.

Cookies Are small text filer with or unique ID tag that are embedded in a Web browser and saved on the user hard drive. Cookies also make it possible.
CHAPTER OVERVIEW SECTION 4.1 – Ethics

CHAPTER OVERVIEW SECTION 4.1 – Ethics
McGraw-Hill/Irwin ©2009 The McGraw-Hill Companies, All Rights Reserved CHAPTER 4 ETHICS AND INFORMATION SECURITY Business Driven Information Systems 2e.

McGraw-Hill/Irwin ©2009 The McGraw-Hill Companies, All Rights Reserved CHAPTER 4 ETHICS AND INFORMATION SECURITY Business Driven Information Systems 2e.
Chapter 4 McGraw-Hill/Irwin Copyright © 2011 by The McGraw-Hill Companies, Inc. All rights reserved. Ethics and Information Security.

Chapter 4 McGraw-Hill/Irwin Copyright © 2011 by The McGraw-Hill Companies, Inc. All rights reserved. Ethics and Information Security.
Copyright © 2015 McGraw-Hill Education. All rights reserved. No reproduction or distribution without the prior written consent of McGraw-Hill Education.

Copyright © 2015 McGraw-Hill Education. All rights reserved. No reproduction or distribution without the prior written consent of McGraw-Hill Education.
Security, Privacy, and Ethics Online Computer Crimes.

Security, Privacy, and Ethics Online Computer Crimes.
MIS PERSONAL, LEGAL, ETHICAL, AND ORGANIZATIONAL ISSUES OF INFORMATION SYSTEMS CHAPTER 4 Hossein BIDGOLI Phishing Email that bites Paying for Privacy Pirates.

MIS PERSONAL, LEGAL, ETHICAL, AND ORGANIZATIONAL ISSUES OF INFORMATION SYSTEMS CHAPTER 4 Hossein BIDGOLI Phishing that bites Paying for Privacy Pirates.
Chapter 8 Protecting People and Information: Threats and Safeguards Copyright © 2010 by the McGraw-Hill Companies, Inc. All rights reserved. McGraw-Hill/Irwin.

Chapter 8 Protecting People and Information: Threats and Safeguards Copyright © 2010 by the McGraw-Hill Companies, Inc. All rights reserved. McGraw-Hill/Irwin.
Chapter 8 Protecting People and Information Threats and Safeguards

Chapter 8 Protecting People and Information Threats and Safeguards
McGraw-Hill © 2008 The McGraw-Hill Companies, Inc. All rights reserved. Chapter 8 Threats and Safeguards Chapter 8 PROTECTING PEOPLE AND INFORMATION Threats.

McGraw-Hill © 2008 The McGraw-Hill Companies, Inc. All rights reserved. Chapter 8 Threats and Safeguards Chapter 8 PROTECTING PEOPLE AND INFORMATION Threats.
Protecting People and Information Threats and Safeguards

Protecting People and Information Threats and Safeguards
8-1 Management Information Systems for the Information Age Copyright 2004 The McGraw-Hill Companies, Inc. All rights reserved Chapter 8 Protecting People.

8-1 Management Information Systems for the Information Age Copyright 2004 The McGraw-Hill Companies, Inc. All rights reserved Chapter 8 Protecting People.
Business Plug-In B7 Ethics.

Business Plug-In B7 Ethics.
1010 CHAPTER PRIVACY AND SECURITY. © 2005 The McGraw-Hill Companies, Inc. All Rights Reserved. 10-2 Competencies Describe concerns associated with computer.

1010 CHAPTER PRIVACY AND SECURITY. © 2005 The McGraw-Hill Companies, Inc. All Rights Reserved Competencies Describe concerns associated with computer.
Chapter 8 Protecting People and Information: Threats and Safeguards Copyright © 2010 by the McGraw-Hill Companies, Inc. All rights reserved. McGraw-Hill/Irwin.

Chapter 8 Protecting People and Information: Threats and Safeguards Copyright © 2010 by the McGraw-Hill Companies, Inc. All rights reserved. McGraw-Hill/Irwin.
PROTECTING PEOPLE AND INFORMATION Threats and Safeguards

PROTECTING PEOPLE AND INFORMATION Threats and Safeguards
Chapter 8 Threats and Safeguards Chapter 8 PROTECTING PEOPLE AND INFORMATION Threats and Safeguards McGraw-Hill/Irwin Copyright © 2009 by The McGraw-Hill.

Chapter 8 Threats and Safeguards Chapter 8 PROTECTING PEOPLE AND INFORMATION Threats and Safeguards McGraw-Hill/Irwin Copyright © 2009 by The McGraw-Hill.

Similar presentations

Ads by Google