Chapter 5.3: Web Security and Privacy: An American Perspective

Monica Frances T. Hao ITETHIC

00A

Book: Cyber Ethics

Chapter 5.3: Web Security and Privacy: An American Perspective

By: J. Lean Camp

Library Reference: N/A

Amazon Link: http://www.amazon.com/Cyberethics-Morality-Cyberspace-Richard-Spinello/dp/0763737836/ref=pd_bbs_1?ie=UTF8&s=books&qid=1238923623&sr=8-1

Quote:

“No person shall be help to answer for a capital, or otherwise infamous crime, unless on a presentment or indictment of a grand jury, except in cases arising in the land or naval forces, or in the militia, when in actual service in time of war or public danger; nor shall any person be subject for the same offense to be twice put in jeopardy of life or limb; nor be deprived of life, liberty, or property, without due process of law; nor shall private property be taken for public use, without just compensation.”

Learning Expectation:

In this chapter of the book “Cyber Ethics” I want to learn what does Web Security and Privacy: An American Perspective is all about. How will this chapter help me in appreciating the Web Security and Privacy: An American Perspective? I also want to learn in this chapter if what does the Web Security and Privacy: An American Perspective means? How does it help the industry? What are the advantages and disadvantages of this?

Review:

For this chapter it talks about security and security is defined in this chapter as the degree of protection against danger, loss, and criminals. Individuals or actions that encroach upon the condition of protection are responsible for a “breach of security.” and for me security is really important especially when you love to surf the net and you have a lot of accounts like yahoo, plurk, hotmail, Friendster, face book, multiply and etc. other people might say bad things about a certain person using your identity and if your Account has been hacked tell it to the public immediately to avoid some misunderstanding with your friends and etc. Security is the most important thing in our life because we protect our identity, family and when we already have company we also protect theirs by being loyal to them and not telling others the secret of the company.

Lessons Learned:

· Access Control List

· Definition of security

· Definition of integrity

· Availability

· Private key encryption

· A replay attack

· Simple replay attacks fall with public key cryptography

· Browsing information

· Provided technical services

· Browser client connects

· Definition of the following:

o ISP

o IP

o DNS

o Web proxy

o Legal Issues and Societal Implications

o Web activities

5 integrative questions:

1. What are the legal issues and societal implications?

2. What are the web activities?

3. What is browser client connects?

4. What is browsing information?

5. What is private key encryption?

Chapter 5.2: Terrorism or Civil Disobedience: Toward a Hacktivist Ethic

Monica Frances T. Hao ITETHIC

00A

Book: Cyber Ethics

Chapter 5.2: Terrorism or Civil Disobedience: Toward a Hacktivist Ethic

By: Mark Manion and Abby Goodrum

Library Reference: N/A

Amazon Link: http://www.amazon.com/Cyberethics-Morality-Cyberspace-Richard-Spinello/dp/0763737836/ref=pd_bbs_1?ie=UTF8&s=books&qid=1238923623&sr=8-1

Quote:

We strongly oppose any attempt to use the power of hacking to threaten or destroy the information infrastructure of any country, for any reason. Declaring ‘war’ against anyone, any group of people, or any nation is a most deplorable act.. this has nothing to do with hackivism or the hacker ethic and is noting a hacker can be proud of.

(Hackernews, 12/29/98)

Learning Expectation:

In this chapter of the book “Cyber Ethics” I want to learn what does Terrorism or Civil Disobedience: Toward a Hacktivist Ethic is all about. How will this chapter help me in appreciating the Terrorism or Civil Disobedience: Toward a Hacktivist Ethic? I also want to learn in this chapter if what does the Terrorism or Civil Disobedience: Toward a Hacktivist Ethic means? How does it help the industry? What are the advantages and disadvantages of this?

Review:

It is said that in this topic the commercial world has been shocked by the growth of hacking activities. I can say that many of the companies are being attacked by these hackers through the use of the internet or the World Wide Web. In the first quarter of 2000 Yahoo, Amazon, eBay, CNN, and Buy.com were all attacked by groups of hackers by Denial of Service attacks. This shut them down for several hours and blocked users from accessing their web sites. The hacktivism proposal is a Hacktivism has the potential to play an active and constructive role in the overcoming of political injustice, to educate, inform, and be a genuine agent of positive political and social change.

Lessons Learned:

· Definition of a hacktivist

· Hacktivist Ethic

· Electronic civil disobedience

· Hacktivism and electronic civil disobedience

· Hacktivism

· Cyberterrorism

· Toward a Hacktivist ethic

o Access to computers

o All information should be free

o Mistrust authority

5 integrative questions:

1. What is a hacktivist?

2. What is a hacktivist ethic?

3. What is electronic civil disobedience?

4. What is cyberterrorism?

5. What is hacktivism?

Chapter 5.1: Defining the Boundaries of Computer Crime: Piracy, Break-Ins, and Sabotage in Cyberspace

Monica Frances T. Hao ITETHIC

00A

Book: Cyber Ethics

Chapter 5.1: Defining the Boundaries of Computer Crime: Piracy, Break-Ins, and Sabotage in Cyberspace

By: Herman T. Tavani

Library Reference: N/A

Amazon Link: http://www.amazon.com/Cyberethics-Morality-Cyberspace-Richard-Spinello/dp/0763737836/ref=pd_bbs_1?ie=UTF8&s=books&qid=1238923623&sr=8-1

Quote:

“One might reasonably ask what the value would be in pursuing questions about computer crime from the point of view of a descriptive category. One argument to support the view that having a descriptive category of computer crime is worthwhile can be advanced by appealing to an insight of James Moors with respect to certain conceptual confusions that have arisen because of the development and use of computer technology.”

Learning Expectation:

In this chapter of the book “Cyber Ethics” I want to learn what does defining the Boundaries of Computer Crime: Piracy, Break-Ins, and Sabotage in Cyberspace is all about. How will this chapter help me in appreciating the Defining the Boundaries of Computer Crime: Piracy, Break-Ins, and Sabotage in Cyberspace? I also want to learn in this chapter if what does the Defining the Boundaries of Computer Crime: Piracy, Break-Ins, and Sabotage in Cyberspace means? How does it help the industry? What are the advantages and disadvantages of this?

Review:

In this chapter I think that the highlight or the one who attracts my attention is to know what the three types of computer crime are. The author has classified it as software piracy, electronic break and computer sabotage. I will be explaining each type one by one and I will try it to explain very carefully and briefly for you to understand it more. First I will discuss to you about software piracy, it is said that it is the unauthorized copying of software which I think many people are doing it. Because many are uploading it and wants to share the cheats, license key and etc. Next I will explain to you what an electronic break means that some of the programmers would make software in order for a person to access the private information of the company. In this case they are already making a way to hack the private information of the company. I think that it is very unethical for you to get the private information of the company. Lastly we have the computer sabotage which means that bad persons will find their way in order for that software to have leak and have errors. If the software would have leaks, then that person can see the information. I think that only dumb person will do that because you are destroying the work of others.

Lessons Learned:

· Boundaries of Computer Crime

· Definition of a Computer crime

· The need to know these computer crimes

· Legal categories of computer crime

· Moral categories of computer crime

· Informational/descriptive categories of computer crime

· Computer crime as a descriptive category of crime

· Establishing clear and coherent criteria

· Applying the definition to some specific cases

· The three types of computer crime:

o Piracy

o Break-ins

o Sabotage

5 integrative questions:

1. What are boundaries of computer crime?

2. What is computer crime?

3. What are the legal categories of computer crime?

4. What are the moral categories of computer crime?

5. What are the three types of computer crime?

Chapter 4.8: Privacy and Varieties of Informational Wrongdoing

Monica Frances T. Hao ITETHIC

00A

Book: Cyber Ethics

Chapter 4.8: Privacy and Varieties of Informational Wrongdoing

By: Jeroen Van Den Hoven

Library Reference: N/A

Amazon Link: http://www.amazon.com/Cyberethics-Morality-Cyberspace-Richard-Spinello/dp/0763737836/ref=pd_bbs_1?ie=UTF8&s=books&qid=1238923623&sr=8-1

Quote:

“Domain specific standards regulate activities and relationships in specific domains of social life. Individuality by roles, examples of domains includes the family, the educational system, the scientific community, the criminal justice system, the medical system, the economic system, the political system and so forth.”

Learning Expectation:

In this chapter of the book “Cyber Ethics” I want to learn what does Privacy and Varieties of Informational Wrongdoing is all about. How will this chapter help me in appreciating the Privacy and Varieties of Informational Wrongdoing? I also want to learn in this chapter if what does the Privacy and Varieties of Informational Wrongdoing means? How does it help the industry? What are the advantages and disadvantages of this?

Review:

Well for this article it is concerned with the question of how to balance the claims of those who want to limit the availability of personal information in order to protect individuals and the claims of those who want to make information about individuals available in order to benefit the community. Liberals and Communitarians are on each side of this debate. Communitarians argue that the community benefits from having knowledge about its members. They make the claim that Liberalism is plagued by free-rider problems, by people who continue to enjoy the benefits of membership and identity while no longer participating in the activities that produce these benefits. The Moral reason for data-protection is Hoven states that it is unlikely that both sides will ever come to an agreement. However, there are a few moral reasons for data-protection that both sides should agree on and these are Information-Based Harm, Informational Inequality, and Informational Injustice.

Lessons Learned:

· Definition of Privacy

· The different varieties of informational wrongdoing

· Panoptic technologies and the public good

· Information-based harm

· Informational inequality

· Informational injustice

· Spheres of access

· Encroachment on moral autonomy

5 integrative questions:

1. What is privacy?

2. What are the different varieties of informational wrongdoing?

3. What are panoptic technologies and the public good?

4. What are spheres of access?

5. What is encroachment on moral autonomy?

Chapter 4.7: Workplace Surveillance, Privacy, and Distributive Justice

Monica Frances T. Hao ITETHIC

00A

Book: Cyber Ethics

Chapter 4.7: Workplace Surveillance, Privacy, and Distributive Justice

By: Lucas D. Introna

Library Reference: N/A

Amazon Link: http://www.amazon.com/Cyberethics-Morality-Cyberspace-Richard-Spinello/dp/0763737836/ref=pd_bbs_1?ie=UTF8&s=books&qid=1238923623&sr=8-1

Quote:

“If data about themselves and their activities are captured, it is in their interest to have maximum control over it- what is captured, who sees it, for what purposes, and so forth.”

Learning Expectation:

In this chapter of the book “Cyber Ethics” I want to learn what does Workplace Surveillance, Privacy, and Distributive Justice is all about. How will this chapter help me in appreciating the Workplace Surveillance, Privacy, and Distributive Justice? I also want to learn in this chapter if what does the Workplace Surveillance, Privacy, and Distributive Justice means? How does it help the industry? What are the advantages and disadvantages of this?

Review:

In this chapter the author first discussed about Surveillance. He said that it is a popular topic in today’s society because Some Data like 45% of major U.S. firms record and review employee communications and activities on the job or Includes phone calls, e-mail, and computer files or In a MacWorld survey of 301 businesses, 22% of them have searched employee computer files, voice mail, e-mail, or other networking communications or Percentage jumps to 30% for businesses w/ 1,000 or more employees. The Author’s purpose is that the real issue of workplace surveillance is justice as fairness and will inherent the political possibilities of surveillance concerns employees and they simply do not trust the interested gaze of management. In Resisting Workplace Surveillance there are two trends influence the discussion of workplace surveillance and these are the increasing challenges by the employees of their conditions of work, especially the normalizing practices of discipline and the rapid development of surveillance technology that created unprecedented possibilities for comprehensive surveillance.

Lessons Learned:

· Definition of surveillance in the workspace

· Definition of privacy and justice

· Resisting workplace surveillance

· Privacy as a matter of justice

· Privacy, surveillance, and distributive justice

o From individual perspective

o From the perspective of the collective

o Self-interested individuals

· Conclusion

· Some implications

5 integrative questions:

1. What is surveillance in the workspace?
2. What is privacy and justice?

3. What is resisting workplace surveillance?

4. What is privacy as a matter of justice?

5. What are Privacy, surveillance, and distributive justice?

Chapter 4.6: Data Mining and Privacy

Monica Frances T. Hao ITETHIC

00A

Book: Cyber Ethics

Chapter 4.6: Data Mining and Privacy

By: Joseph S. Fulda

Library Reference: N/A

Amazon Link: http://www.amazon.com/Cyberethics-Morality-Cyberspace-Richard-Spinello/dp/0763737836/ref=pd_bbs_1?ie=UTF8&s=books&qid=1238923623&sr=8-1

Quote:

“Data mining is most easily accomplished when the data are highly structured and available in many different forms at many different levels in what are known as data warehouse.”

Learning Expectation:

In this chapter of the book “Cyber Ethics” I want to learn what does Data Mining and Privacy is all about. How will this chapter help me in appreciating the Data Mining and Privacy? I also want to learn in this chapter if what does the Data Mining and Privacy? How does it help the industry? What are the advantages and disadvantages of this?

Review:

In this chapter it discussed about data mining and privacy. It is said that Data mining is the process of analyzing data from different perspectives and summarizing it into useful information – information that can be used to increase revenue, cuts costs, or both. I have already encountered what data mining is the collection of data and summarizing it. It is like gathering the important details first before anything else. Data mining is where you collect the important data and saving it to the database while the unimportant is placed somewhere else. In this topic they have also discussed about data warehouse contains four kinds and these are integrated data, both detailed and summarized data, historical data and lastly the Meta data. In this chapter they have suggested the local government to separate data mining and privacy because these two are different. It will just provide a conflict if they will not separate the two.

Lessons Learned:

· Knowledge Discovery and Data Mining

· The issue

· Analysis of the issue

· Issues in the first case as well as the second case

· Categories in pre-existing data

· Cluster data by mapping

5 integrative questions:

1. What is data mining?
2. What is privacy?

3. What are Knowledge Discovery and Data Mining?

1. What are categories in pre-existing data?
2. What id cluster data by mapping?

Chapter 4.5: KDD, Privacy, Individuality, and Fairness

Monica Frances T. Hao ITETHIC

00A

Book: Cyber Ethics

Chapter 4.5: KDD, Privacy, Individuality, and Fairness

By: Anton H. Vedder

Library Reference: N/A

Amazon Link: http://www.amazon.com/Cyberethics-Morality-Cyberspace-Richard-Spinello/dp/0763737836/ref=pd_bbs_1?ie=UTF8&s=books&qid=1238923623&sr=8-1

Quote:

“The data subject has some specific rights with regard to “his or her” personal data. Among these rights are the right of access (knowing what data is being stored and whether the data relating to the data subject are being processed.), the right of rectification, the right to know to whom the data has been disclosed, and the right to object to the processing of data relating to the data subject.”

Learning Expectation:

In this chapter of the book “Cyber Ethics” I want to learn what does KDD, Privacy, Individuality, and Fairness is all about. How will this chapter help me in appreciating the KDD, Privacy, Individuality, and Fairness? I also want to learn in this chapter if what does the KDD, Privacy, Individuality, and Fairness means? How does it help the industry? What are the advantages and disadvantages of this?

Review:

For this chapter the author discussed about the knowledge in discovery in database, privacy individuality and fairness through KDD or data mining. KDD stands for knowledge discovery in databases. KDD is being described by the book as the nontrivial extraction of implicit, previously unknown, and potentially useful information from data. For my understanding, KDD is what we call the gathering of data where knowledge discovery in databases collects information, data, and etc. The book also discussed about Web mining refers to the whole of data mining and related techniques that are used to automatically discover and extract information from web documents and services. In KDD they should have a good privacy because most of the people would not want their personal information to be spread out to the public especially when they are popular or rich. The book also discussed about personal data which means that it is often considered to be exclusive kind of data eligible for protection by privacy law and privacy norms. Personal data is what we call our data and information relating to an identified or identifiable person.

Lessons Learned:

· Definition of KDD

· Personal data

· Law

· Ethics

· Social consequences

· Categorical privacy

· Solutions

· Closing remarks

5 integrative questions:

1. What is KDD?
2. What are the social consequences?
3. What is categorical privacy?
4. What is fairness?
5. What is individuality?

Chapter 4.3: Privacy Protection, Control of Information, and Privacy enhancing technologies

Monica Frances T. Hao ITETHIC

00A

Book: Cyber Ethics

Chapter 4.3: Privacy Protection, Control of Information, and Privacy enhancing technologies

By: Herman Tavani and James Moor

Library Reference: N/A

Amazon Link: http://www.amazon.com/Cyberethics-Morality-Cyberspace-Richard-Spinello/dp/0763737836/ref=pd_bbs_1?ie=UTF8&s=books&qid=1238923623&sr=8-1

Quote:

“In our private lives we wish to control information about ourselves. We wish to control information that might be embarrassing or harm us. And, we wish to control information that might increase our opportunities and allow us to advance our projects.”

Learning Expectation:

In this chapter of the book “Cyber Ethics” I want to learn what does Privacy Protection, Control of Information, and Privacy enhancing technologies is all about. How will this chapter help me in appreciating the Privacy Protection, Control of Information, and Privacy enhancing technologies? I also want to learn in this chapter if what does the Privacy Protection, Control of Information, and Privacy enhancing technologies means? How does it help the industry? What are the advantages and disadvantages of this?

Review:

In this chapter the author discusses about privacy protection, Control of information and privacy enhancing technologies. As I read through this chapter I have found out that it has divided this topic into two parts and these are topics about all the criticisms about the control of information as to the issues about the privacy protection concerned. Next we have the he privacy enhancing technology that would control the personal information. I can say that the word privacy is very familiar to us because all the people need privacy. In the information technology I think that they should really have privacy protection because for me in the industry you must know what the new technologies are, software’s and gadgets and you can use these tools to be able to build a new application. You really need to protect your software or application because many hackers would try to know what have you done to your application and how did you do the application and the program. I think that they should really protect it. Especially when these hackers spread things or he or she can destroy your application which I think that it is really unethical.

Lessons Learned:

· The theory of privacy

· Normative privacy and the restricted access theory

· The use control in the justification and management of privacy

· Privacy-enhancing technologies

· PETs

· PETs and the role of individual choice in controlling personal information

· PETs and the principle of informed consent

· PET owners beware

5 integrative questions:

1. What is the theory of privacy?
2. What is normative privacy?
3. What is restricted access theory?
4. What are privacy enhancing technologies?
5. What is PETs?

Chapter 4.4: Toward an Approach to Privacy in Public: Challenges of Information Technology

Monica Frances T. Hao ITETHIC

00A

Book: Cyber Ethics

Chapter 4.4: Toward an Approach to Privacy in Public: Challenges of Information Technology

By: Helen Nissenbaum

Library Reference: N/A

Amazon Link: http://www.amazon.com/Cyberethics-Morality-Cyberspace-Richard-Spinello/dp/0763737836/ref=pd_bbs_1?ie=UTF8&s=books&qid=1238923623&sr=8-1

Quote:

“At the heart of the concern to protect “privacy” lies a conception of the individual and his or her relationships with society. The idea of private and public spheres or activity assumes a community in which not only does such a division make sense, but the institutional and structural arrangements that facilitate an organic representation of this kind are present.”

Learning Expectation:

In this chapter of the book “Cyber Ethics” I want to learn what does Toward an Approach to Privacy in Public: Challenges of Information Technology is all about. How will this chapter help me in appreciating the Toward an Approach to Privacy in Public: Challenges of Information Technology? I also want to learn in this chapter if what does the Toward an Approach to Privacy in Public: Challenges of Information Technology means? How does it help the industry? What are the advantages and disadvantages of this?

Review:

Well for this chapter it still discuss about privacy and now I will give you a brief definition of privacy, privacy is the control over all information about oneself regarding intimate and personal data. It is also the protection of information. The precise context will be determined by social and cultural convention. There are two Misleading Assumptions about the Public realm and these are there is a realm of public information about persons to which no privacy norms apply and an aggregation of information does not violate privacy if its parts, taken individually do not. It also discusses about This private realm, which is contrasted with a public realm, is defined in various ways. It is delimited by physical boundaries, such as the home; by personal relationships, such as family, friends, and intimates; and by selected fields of information, such as personal, sensitive, or embarrassing information. The aggregation and manipulate of information have significant bearings on the humans who are subjects such as Manipulation involves shifting information from one context to another. And unless subjects have granted permission to move this data, the subject has lost control over the data. And the act of compiling information may also transform harmless bits into a picture that can embarrass and hurt subjects. Compiling this information leads to portraits of the person, not used to build friendship, but used to judge and make decisions that will affect the subject in important ways

Lessons Learned:

· Privacy

· The personal Realm

· Violating privacy in public – the case of Lotus Marketplace: Households

· Two misleading Assumptions

· Erroneous Assumption1

· Erroneous assumption 2

· Implications for a theory of privacy

5 integrative questions:

1. What is privacy?

2. What is violating privacy in public – the case of Lotus Marketplace: Households?

3. What are the two misleading assumptions?

4. What are the implications for a theory of privacy?

5. What is the personal realm?

Chapter 4.2: The structure of rights in directive 95/46/ZEC on the Protection of individuals with regard to the processing of personal data and the free movement of such data.

Monica Frances T. Hao ITETHIC

00A

Book: Cyber Ethics

Chapter 4.2: The structure of rights in directive 95/46/ZEC on the Protection of individuals with regard to the processing of personal data and the free movement of such data.

By Dag Elgesem

Library Reference: N/A

Amazon Link: http://www.amazon.com/Cyberethics-Morality-Cyberspace-Richard-Spinello/dp/0763737836/ref=pd_bbs_1?ie=UTF8&s=books&qid=1238923623&sr=8-1

Quote:

“I think the notion of control is a central one in the theory of privacy. But even if we qualify the crude statement of the theory in the two directions suggested above, it is still far from rich enough to account for all of the dimensions of control that arise in the directive.”

Learning Expectation:

In this chapter of the book “Cyber Ethics” I want to learn what does the structure of rights in directive 95/46/ZEC on the Protection of individuals with regard to the processing of personal data and the free movement of such data is all about. How will this chapter help me in appreciating the structure of rights in directive 95/46/ZEC on the Protection of individuals with regard to the processing of personal data and the free movement of such data? I also want to learn in this chapter if what does the structure of rights in directive 95/46/ZEC on the Protection of individuals with regard to the processing of personal data and the free movement of such data means? How does it help the industry? What are the advantages and disadvantages of this?

Review:

In this chapter they have discussed the three parts. First, a survey and analysis is given of the structure of individual rights in the recent EU Directive on data protection. It is argued that at the core of this structure is an un explicated notion of what the data subject can `reasonably expect’ concerning the further processing of information about him or herself. In the second part of the paper it is argued that theories of privacy popular among philosophers are not able to shed much light on the issues treated in the Directive, which are, arguably, among the central problems pertaining to the protection of individual rights in the information society. In the third part of the paper, some suggestions are made for a richer philosophical theory of data protection and privacy. It is argued that this account is better suited to the task of characterizing the central issues raised by the Directive. I am really happy when I surf the net because I have gain ideas and learned a lot from it. Which can help me to become better business analysts or programmer because through the internet you can learn a lot like knowing what are the new technologies, gadgets and software’s.

Lessons Learned:

· Introduction to the structure

· The directive on the question of further processing of personal data

· Data quality

· Legitimate purposes

· Sensitive data

· The right to be informed

· Data subject’s right to access and to object

· The reprocessing of personal data

· Using personal data for a different purpose

· Data protection and the philosophy of privacy

o Privacy as restricted access

o Privacy as control

· Channels for the flow of personal information

o Relationship between privacy and data protection in the directive

o Channels for the flow of personal information

o Data protection and the protection of privacy

o The directive and the protection of channels

5 integrative questions:

1. What is data quality?
2. What are legitimate purposes?
3. What is a sensitive data?
4. What are the data protection and the philosophy of privacy?
5. What are the channels for the flow of personal information?