Presentation is loading. Please wait.

Presentation is loading. Please wait.

Computer Security And Computer Crimes. Problem under consideration A software flaw was found in a national bank's web site that allows anyone who knows.

Published byPhilomena Summers Modified over 9 years ago

Similar presentations

Presentation on theme: "Computer Security And Computer Crimes. Problem under consideration A software flaw was found in a national bank's web site that allows anyone who knows."— Presentation transcript:

1 Computer Security And Computer Crimes

2 Problem under consideration A software flaw was found in a national bank's web site that allows anyone who knows about the flaw to read all information about other people's bank accounts. You consider it a serious privacy risk. You sent e-mail to the bank about the problem but received no answer. What should you do next? Discuss pros and cons of various possible actions.A software flaw was found in a national bank's web site that allows anyone who knows about the flaw to read all information about other people's bank accounts. You consider it a serious privacy risk. You sent e-mail to the bank about the problem but received no answer. What should you do next? Discuss pros and cons of various possible actions.

3 Discussions covered Individual’s standpoint Bank’s perspective

4 Individual’s stand point Customer Decision Tree Call Customer Support Representative Take AdvantageDo NothingTry Again Stage I Stage II

5 Individual’s stand point (cont’d.) [ Customer Decision Tree…] Harmless Hacking Malicious Hacking Hactivism Close Account Follow Executive Hierarchy Repetition till remedy Eye on possibility of threats (Take Advantage)(Do Nothing) (Try Again)

6 Individual’s standpoint (cont’d.) 1.Take Advantage of the Situation Use your knowledge to hack the web site –Harmless hacking Let the bank know they have been hacked Probably illegal Forces the bank to confront security breach Is this ethically justified?

7 Individual’s standpoint (cont’d.) [ 1.Take Advantage of the Situation…] –Malicious hacking Access accounts yourself Disrupt service and/or steal money Very much illegal Severe penalties No ethical justification

8 Individual’s standpoint (cont’d.) [ 1.Take Advantage of the Situation…] –Hacktivism Disrupt service Tell other customers that web site is unsafe Very much illegal or valid civil disobedience? Penalties may not be as severe

9 Individual’s standpoint (cont’d.) [ 1.Take Advantage of the Situation…] In all three hacking examples the bank may incur serious losses –Financial –Customer relationships –Service disruptions

10 Close account and go away –Problem still exists –Save your own hide –No recognition of responsibility to anyone beyond yourself; socially irresponsible –Absolutely the least one can do –Don’t care about bank’s further actions Individual’s standpoint (cont’d.) 2. Do Nothing

11 Go up one level in complaint –Threaten to leave –Threaten to go to authorities (FDIC) –Threaten to go to media Repeat process as necessary, through chain of command Individual’s standpoint (cont’d.) 3. Try again

12 Individual’s standpoint (cont’d.) [ 3. Try again…] Follow through on threats Shows –Social responsibility –Customer loyalty

13 Bank’s Perspective Decision Tree Informed of Glitch Do Nothing Do Something Internal Fix External Fix

14 Bank’s Perspective Bank’s Perspective 1. Keep quiet about it –Don’t draw attention Keep secret from hackers –Reliance on secrecy Cheap –Cost of fix vs. cost of liability Cost of exposure could have consequences beyond the cost of fixing the problem

15 Bank’s Perspective (cont’d.) 2. Analyze and fix problem internally –Problem can be fixed without undue publicity –Minimal disruption of service –Question of competence Can we trust the people who broke it to fix it? –Potentially most cost effective

16 Bank’s Perspective (cont’d.) [ 2. Analyze and fix problem internally…] –Check the flaw and see if any others exist –Check on potential of IT team Maybe hire a hacker to test other parts of the system –Let it stay within the bank

17 Bank’s Perspective (cont’d.) 3. Third party security audit –What requires auditing? Hardware Software Network –Personnel evaluation

18 Bank’s Perspective (cont’d.) [ 3. Third party security audit …] –Question of security Threat of exposure Exposes secrets to outside entity

19 Bank’s Perspective (cont’d.) How to decide –Has anyone been injured Loss of money Loss of personal information –Consequences of breach becoming known Known only to hackers Known to general public –Ethical considerations

20 Comments / Questions

Download ppt "Computer Security And Computer Crimes. Problem under consideration A software flaw was found in a national bank's web site that allows anyone who knows."

Similar presentations

Web Security for Network and System Administrators1 Chapter 1 Introduction to Information Security.

Web Security for Network and System Administrators1 Chapter 1 Introduction to Information Security.
© 2007 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice Application Security and Testing.

© 2007 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice Application Security and Testing.
Ethics, Privacy and Information Security

Ethics, Privacy and Information Security
Online Safety. Introduction The Internet is a very public place Need to be cautious Minimize your personal risk while online Exposure to: viruses, worms,

Online Safety. Introduction The Internet is a very public place Need to be cautious Minimize your personal risk while online Exposure to: viruses, worms,
Confidentiality and HIPAA

Confidentiality and HIPAA
Black, White, Grey Hat Hackers Not all hackers are bad…which one’s which?

Black, White, Grey Hat Hackers Not all hackers are bad…which one’s which?
Protection from Internet Theft By James Seegars. What Is Hacking? Definition – A)To change or alter(Computer Program) – B) To gain access to (a computer.

Protection from Internet Theft By James Seegars. What Is Hacking? Definition – A)To change or alter(Computer Program) – B) To gain access to (a computer.
ICT & Crime Data theft, phishing & pharming. Data loss/theft Data is often the most valuable commodity any business has. The cost of creating data again.

ICT & Crime Data theft, phishing & pharming. Data loss/theft Data is often the most valuable commodity any business has. The cost of creating data again.
© 2014 wheresjenny.com Cyber crime CYBER CRIME. © 2014 wheresjenny.com Cyber crime Vocabulary Defacement : An attack on a website that changes the visual.

© 2014 wheresjenny.com Cyber crime CYBER CRIME. © 2014 wheresjenny.com Cyber crime Vocabulary Defacement : An attack on a website that changes the visual.
Computer Ethics Ms. Scales. Computer Ethics Ethics  the right thing to do Acceptable Use Policy  A set of rules and guidelines that are set up to regulate.

Computer Ethics Ms. Scales. Computer Ethics Ethics  the right thing to do Acceptable Use Policy  A set of rules and guidelines that are set up to regulate.
1 Defining System Security Policies. 2 Module - Defining System Security Policies ♦ Overview An important aspect of Network management is to protect your.

1 Defining System Security Policies. 2 Module - Defining System Security Policies ♦ Overview An important aspect of Network management is to protect your.
Computer Threats I can understand computer threats and how to protect myself from these threats.

Computer Threats I can understand computer threats and how to protect myself from these threats.
Netiquette Rules.

Netiquette Rules.
Hacker Ethics Kim Bissett Sabrina Short. Hacker Ethic: In General  Freedom of Information The web is not physical; it couldn’t be interpreted as property,

Hacker Ethics Kim Bissett Sabrina Short. Hacker Ethic: In General  Freedom of Information The web is not physical; it couldn’t be interpreted as property,
INDEX  Ethical Hacking Terminology.  What is Ethical hacking?  Who are Ethical hacker?  How many types of hackers?  White Hats (Ethical hackers)

INDEX  Ethical Hacking Terminology.  What is Ethical hacking?  Who are Ethical hacker?  How many types of hackers?  White Hats (Ethical hackers)
Security, Privacy, and Ethics Online Computer Crimes.

Security, Privacy, and Ethics Online Computer Crimes.
Ethical Hacking by Shivam.

Ethical Hacking by Shivam.
Overview of IS Auditing n Need for control and Audit of Computers –Org cost of data loss –cost of incorrect decision –Value of hardware, software, personnel.

Overview of IS Auditing n Need for control and Audit of Computers –Org cost of data loss –cost of incorrect decision –Value of hardware, software, personnel.
1 Pertemuan 9 Network Security and E-Commerce Matakuliah: M0284/Teknologi & Infrastruktur E-Business Tahun: 2005 Versi: >

1 Pertemuan 9 Network Security and E-Commerce Matakuliah: M0284/Teknologi & Infrastruktur E-Business Tahun: 2005 Versi: >
Vulnerability Assessments

Vulnerability Assessments

Similar presentations

Ads by Google