Friday 16 September 2011

Week 5: Ethics and Security

1) Explain the ethical issues surrounding information technology

One ethical issue surrounding IT is intellectual property, which is the collection of rights that protect creative and intelllectual effort. Copyright is another issue, surrounding the exclusive right to do, or omit to do, certain acts with intangible property such as a song, video game and some types of proprietary documents. Fair use of doctrine is also an ethical issue, dealing with how in certain situations, it is legal to use copyrighted material. Pirated software is the unauthorised use, duplication distribution, or sale of copyrighted software, hence why it is an ethical issue. Counterfeit software is also an example of ethical issues surrounding IT, being software that is manufactured to look like the real thing and sold as such.

2) Describe a situation involving technology that is ethical but illegal

A situation involving technology that is ethical but illegal includes making an extra copy of a software package that you purchased and keeping one on file for backup.

3) Describe and explain one of the computer use policies that a company might employ

An ethical computer use policy contains general principles to guide computer use behaviour. For example, the ethical computer use policy might explicitly state that users should refrain from playing computer games during working hours. this policy ensures the users know how to behave at work and the organisation has a published standard by which to deal with user infractions.

4) What are the 5 main technology security risks?

The five main technology security risks are:
- Human error
- Natural disasters
- Technical failures
- Deliberate acts
- Management failure

5) Outline one way to reduce each risk


One way to reduce human error risks and malicious acts can be reduced with the use of a strong password incorporating letters and numbers, and regularly changed to ensure a high level of security. This makes it more difficult for hackers and other unauthorised users to frequently access your information.


There is no way to prevent Natural disasters however a company can prepare themselves efficiently in case of this event and have all files backed up and alternative plans.


Technical failures are most of the time unforeseen and cannot be predicted therefore organisations must ensure they have all files backed up and frequently saved so that if systems were to crash, their data and unsaved files will not be lost.

6) What is a disaster recovery plan, what strategies might a firm employ?

A disaster recovery plan is the process of regaining access to a computer systems and its data after a disaster has occurred. It is encouraged that all firms have a comprehensive disaster recovery plan set. This plan lists things such as communication plans, alternative sites, business continuity and location of backup data. All firms must have business continuity plans which outlines in detail what happens in the case of a disaster, offsite data kept in date order, hot or warm sites, well documented procedures and regular recovery testing.

No comments:

Post a Comment