What is cyber law?
What is cyber crime?
Cybercrimes areas
what law relating to
Data protection and privacy
Software Licensing Issues
IT acts
Policy Versus Law
Codes of Ethics and Professional Organizations
2. What is cyber law?
What is cyber crime?
Cybercrimes areas
what law relating to
Data protection and privacy
Software Licensing Issues
IT acts
Policy Versus Law
Codes of Ethics and Professional Organizations
2
3. “the modern thief can steel more with a computer
than with a gun. Tomorrow’s terrorist be able to do
more damage with a keyboard than with a bomb”
-National Research Council, U S A “Computer at
risk” (1991)
3
4. • Cyber law is the law governing cyber space.
• Cyber space is a very wide term and includes
computers, networks, software, data storage
devices( such as hard disks, USB disk etc), the
internet, websites, emails and even electronic
devices such as cell phones ,ATM machines etc.
4
5. It is the latest and perhaps the most complicated
problem in the cyber world.
◦ Cyber crimes are unlawful acts where computer is used
either as a tool; or a target; or both.
◦ The enormous growth in electric commerce(e-
commerce) and online share trading has led to a
phenomenal spurt in incidents of cyber crime.
5
6. Cybercrimes against persons.
Cybercrimes against property.
Cybercrimes against government.
6
7. Cybercrimes committed against persons include
various crimes like transmission of child-
pornography ,harassment of any one with the use
of a computer such as email.
7
8. These crime include
◦ Computer vandalism(destruction of others’ property)
◦ Transmission of harmful programmes
◦ Stealing secret information and data
8
9. The medium of cyberspace is used by individuals
and group to threaten the international
governments as also to terrorize the citizens or a
country.
This crime manifests itself into terrorism when an
individual “cracks” into a government or military
maintained website.
9
10. Cyber crimes
Software Licensing Issues
Electronic and digital signature
Intellectual property
Data protection and privacy
10
11. Data protection and privacy laws aim to achieve a
fair balance between the privacy right of the
individual and the interests of data controllers
such as banks, hospitals, email service providers
etc.
These laws seek to address the challenges to
privacy caused by collecting ,storing and
transmitting data using new technologies.
11
12. Owners and managers who find themselves
presented with a licensing agreement that they do
not completely understand should resist pressure
from the sales representative to sign the
document with little or no time for meaningful
review.
12
13. To provide legal recognition for transactions
Carried out by means of electronic data
interchange, and Other means of electronic
communication ,commonly referred to as
“electronic commerce” involving the use of
alternatives to paper-based methods of
communication and storage of information.
13
14. Computer Fraud and Abuse Act of 1986 (CFA Act)
National Information Infrastructure Protection Act of
1996
USA Patriot Act of 2001
Telecommunications Deregulation and Competition Act
of 1996
Communications Decency Act of 1996 (CDA)
Computer Security Act of 1987
14
15. Most organizations develop and formalize a body
of expectations called policy
Policies serve as organizational laws
To be enforceable, policy must be distributed,
readily available, easily understood, and
acknowledged by employees
15
17. Several professional organizations have
established codes of conduct/ethics
Codes of ethics can have positive effect;
unfortunately, many employers do not
encourage joining of these professional
organizations
Responsibility of security professionals to act
ethically and according to policies of employer,
professional organization, and laws of society
17
18. Laws: rules that mandate or prohibit certain
behavior in society; drawn from ethics
Ethics: define socially acceptable behaviors;
based on cultural mores (fixed moral attitudes or
customs of a particular group)
18
19. Many organizations have codes of conduct
and/or codes of ethics
Organization increases liability if it refuses to
take measures known as due care
Due diligence requires that organization make
valid effort to protect others and continually
maintain that effort
19