CPSC 3610: Ethical and Social Issues in Computing

(Non-IA course)

Course Description

This course examines the ethical and social issues arising from advances in computer technology and the responsibility that computer professionals and users have with regard to computer use by focusing on the intrinsic link between ethics and the law, how both try to define the validity of human actions, and on the moral and ethical dilemmas created by computer technology that challenge the traditional ethical and moral concepts. Prerequisites: ENGL 1020 and CPSC 1000 or 1100 with minimum grades of C or department head approval. Supplementary course fee assessed.

---

Text

Ethical and Social Issues in the Information Age, 3rd edition, Joseph Kizza, ISBN: 978-1-84628-658-2

---

Lecture Notes

• Chapter 1
• Chapter 2 & 3
• Chapter 4
• Chapter 5
• Chapter 6
• Chapter 7
• Chapter 8
• Chapter 9
• Chapter 10
• Chapter 11

---

Assignments

• Assignment 1

• Assignment 2

• Assignment 3

• Assignment 4

• Research Paper 1
• Research Paper 2

---

Syllabus

---

References

Journal

• Schulze, K. G., & Grodzinsky, F. S. (January 01, 1997). Teaching Ethical and Social Issues in CS1 and CS2. Sigcse Bulletin, 29, 1, 6.
• A gift of fire: social, legal, and ethical issues in computing. (October 01, 1997). Choice Reviews Online, 35, 2, 35-950.
• Tavani, H. T. (January 01, 2002). Applying an interdisciplinary approach to teaching computer ethics.(Special Issue: ISTAS '01: Ethical and Social Issues Criteria in Academic Accreditation)(International Symposium on Technology and Society). Ieee Technology and Society Magazine, 21, 3, 32-38.
• Magenheim, J., & Schulte, C. (January 01, 2006). Social, ethical and technical issues in informatics--An integrated approach. Education and Information Technologies, 11, 3-4.

Article

• IGI Global., & Information Resources Management Association. (2003). Journal of electronic commerce in organizations. Hershey, Pa: IGI Global (701 E. Chocolate Avenue, Hershey, Pa., 17033, USA.

Book

• Kizza, J. M. (2013). Ethical and social issues in the information age. London: Springer London.
• Donaldson, T., & Werhane, P. H. (1983). Ethical issues in business: A philosophical approach. Englewood Cliffs, N.J: Prentice-Hall.
• Gay, G., & Bennington, T. L. (1999). Information technologies in evaluation: Social, moral, epistemological, and practical implications. San Francisco, Calif: Jossey-Bass.

---

Resources

Secure Use
General Security Policy: Cyber Ethics	Cyber Ethics
General Security Policy: Information Technology Security Evaluation Criteria (ITSEC)	ITSEC Definition
General Procedures: Inference	Inference Definition
General Procedures: Rainbow Series	Rainbow Series
General Procedures: NSTISSAM COMPUSEC/1-99 Insider Threat to Government Computer Systems	NSTISS Glossary TEMPEST
General Countermeasures and Safeguards: Computer Law	Computer Law
General Countermeasures and Safeguards: Computer Media	Computer Media Remanence
General Countermeasures and Safeguards: Evaluate Security Testing Tools	Security Testing Tools
Administrative Countermeasures/Safeguards: Control Management	Change Control Control Management
Administrative Countermeasures/Safeguards: Privacy Act	Privacy Act of 1974
Operations Policies/Procedures: Keystroke Monitoring	Keystroke Monitoring
Operations Policies/Procedures: Disaster Recovery Planning	Disaster Recovery
Incidents
Policy and Procedures: Incident Response	Incident Response
Policy and Procedures: Witness Interrogation	Witness Interrogation
Operations Countermeasures/Safeguard: Computer Attacks	Computer Virus Timeline
Operations Countermeasures/Safeguard: Computer Emergency Readiness Teams	CERT
Configuration
Administrative Policies/Procedures: Approval to Operate	Approval to Operate
Administrative Policies/Procedures: Configuration/Change Control	Change Control
Administrative Policies/Procedures: Copyright Protection	Copyright Protection
Administrative Policies/Procedures: Patch Management	Patch Management
Administrative Policies/Procedures: Records Management	Records Management
Administrative Policies/Procedures: Wireless Use Policies	Wireless Use Policy
Anomalies and Integrity
General Risk Management: Computer System Risk Management	Risk Management
Access Control Safeguards: Computer System Access Control	Access Control
Access Control Safeguards: Protected Distribution Systems	Protected Distribution System
Access Control Safeguards: Information Systems Access Restrictions	Access Restrictions
Administration
Access Control Mechanisms: KMI Applications	Key Management
Access Control Mechanisms: Single Sign-on	Single Sign On

---

IA Sites

• National Security Agency, Central Security Service—Information Assurance
• Information Assurance Support Environment
• Information Design Assurance Red Team (IDART)
• National Institute of Standards and Technology (NIST) Computer Security Division
• NIST Computer Security Resource Clearinghouse
• National Telecommunications and Information Administration (NTIA)
• ICAT Metabase
• ICAT is a searchable index of information on computer vulnerabilities. It provides search capability at a fine granularity and links users to vulnerability and patch information.
• National Vulnerability Database (NVD)
• STRATCOM
• ASD NII
• Defense Advanced Research Projects Agency (DARPA)
• Defense Information Systems Agency (DISA)
• Internet Traffic Report
  The Internet Traffic Report monitors the flow of data around the world. It then displays a value between zero and 100 and is updated ever 15 minutes. Higher values indicate faster and more reliable connections.
• Electronic Privacy Information Center Home Page
  Public interest research center in Washington, D.C.
• Internet Privacy Coalition
• International Computer Security Association (ICSA)
  ICSA is known worldwide as an objective source for security assurance services.
• Glossary of Information Warfare Terms
• Cyberwar - Information warfare and psychological operations
  Provides information on the topics of propaganda analysis, online journals, index and metapages, general resources, intelligence agencies, and articles and documents.
• Reliable Software Technologies (RST): Information Warfare
• Forum of Incident Response and Security Teams (FIRST)
• FIRST brings together a variety of computer security incident response teams from government, commercial, and academic organizations. FIRST aims to foster cooperation and coordination in incident prevention, to prompt rapid reaction to incidents, and to promote information sharing among members and the community at large.
• International Association for Cryptologic Research (IACR)
  The International Association for Cryptologic Research (IACR) is a non-profit scientific organization whose primary purpose is to further research in cryptology and related fields.
• International Biometrics Industry Association (IBIA)
• Common Vulnerabilities and Exposures
• A list of standardized names for vulnerabilities and other information security exposures - CVE aims to standardize the names for all publicly known vulnerabilities and security exposures.
• Institute for Applied Network Security (IANETSEC)
  The Institute for Applied Network Security is the premier membership organization for practicing information security professionals. The Institute's mission is to provide key technical and business insights to help members solve their most pressing professional challenges.
• Reliability Information Analysis Center (RIAC)
  Reliability Information Analysis Center (RIAC) : A Government and Industry focal point for Reliability, Maintainability, Quality, Supportability, and Interoperability related Engineering, Data, Software, Information, Training and Technical Assistance.