Cyber Security Ethics PDF

Summary

This document provides an overview of cyber security ethics. It touches on various aspects including ethical frameworks, definitions of ethics, and various aspects of the topic. The document is presented by CHRIST (Deemed to be University).

Full Transcript

CYBER SECURITY
ETHICS

MISSION VISION CORE VALUES
CHRIST is a nurturing ground for an individual’s holistic development to Excellence and Service Faith in God | Moral Uprightness
make effective contribution to the society in a dynamic environment Love of Fellow Beings 1
Social Responsibility | Pursuit of Excellence
 CHRIST
Deemed to be University

What is Ethics?

The study of moral principles or values that govern human behavior and decision-making.
The study of what is right and wrong in human behavior.
Beliefs about what is morally correct or acceptable.
Ethics is relevant to various aspects of life, including personal conduct, professional
behavior, and societal issues.
It guides decision-making in areas such as business ethics, medical ethics, environmental
ethics, and many others.
Normative ethics considers what one ‘ought to’ do, while descriptive ethics is concerned with
observing and understanding ethical behaviors in different places, times and cultures.

2
Excellence and Service
 CHRIST
Deemed to be University

Ethics or moral philosophy is a branch of philosophy that " involves systematizing,
defending, and recommending concepts of right and wrong behavior".

3
Excellence and Service
 CHRIST
Deemed to be University

Plato’s Theory on Ethics

The ancient Greek philosopher - Born 428 BC; died 348 BC
Plato's theory of ethics is rooted in his philosophical works, particularly in his dialogue "The
Republic." In this dialogue, Plato explores the nature of justice and the ideal society, which
is closely intertwined with his ethical views.
Central to Plato's ethical theory is the concept of the "Form of the Good," which
represents the ultimate reality and the source of all goodness and value.
In Plato's ethical theory, he believed that the ultimate goal of human life was to achieve
eudaimonia, which can be translated as "flourishing" or "well-being."
He believed that human well-being should be the goal of life and that individual should
cultivate and practice excellence in order to achieve it.

4
Excellence and Service
 CHRIST
Deemed to be University

Plato’s Theory on Ethics

He believed that individuals who lived a well-ordered life could work together to create a
well-ordered society.
He rejected the idea that people should retaliate against others who harmed them, and
argued that people were harmed in their souls when they committed injustices.
Plato argued that individuals needed to be disciplined in their own lives, sacrificing
individual wants and needs to create a good society.
“Ethics are thus both rules for action and statements about the attitudes
people should have, what is valuable and what is important.”

5
Excellence and Service
 CHRIST
Deemed to be University

Ethics and Law

Laws and ethics both serve similar purposes of guiding human conduct so as to make it
conducive to civilized social existence. They enforce a sense of right and wrong.
Laws refer to the set of codified norms which are enforced by the state. They act as external
obligations. On the other hand, ethics refer to the set of norms which guide our internal
compass and judgments.

6
Excellence and Service
 CHRIST
Deemed to be University

7
Excellence and Service
 CHRIST
Deemed to be University

Ethics and Law

What is Law?
Law can be defined as the system of rules which a particular country or community recognizes
as regulating the actions of its members. Consequently, the law is followed by penalties or
punishments for the violation of these enforced rules or regulations.
What is Ethics?
In brief, ethics is a system of moral principles. These contribute to creating morality among the
people in a particular society or a community.

8
Excellence and Service
 CHRIST
Deemed to be University

The relationship between laws and ethics is a complex one.

Many laws are representative of ethics of the time and have been shaped by what is
considered ethical. Ex: The idea that everyone is equal before law is derived from the value
that human is born equal.
At the same time, laws have shaped ethics.
Some actions are ethical, but illegal and some actions are legal, but unethical. Ex: lying to a
friend might be unethical but it’s not necessarily illegal. In many countries, any speech
against the government is punishable by law but it’s ethical for citizens to express their
grievances.

9
Excellence and Service
 CHRIST
Deemed to be University

Computer Ethics

Computer ethics is a branch of ethics that examines ethical issues and principles related to
computer systems, information technology, and the use of computers.
Computer ethics is the set of commonly agreed principles that govern the use of computers.
It addresses the moral and social impacts of computer technology and provides guidelines
for responsible and ethical behavior in the digital realm.
Computer ethics are normative ethics. They are a branch of both practical and professional
ethics.

10
Excellence and Service
 CHRIST
Deemed to be University

The history of computer ethics

Early Development (1940s-1950s):
The concept of computer ethics originated in the 1940s with MIT professor Norbert Wiener,
while working on anti-aircraft artillery during World War II.
Professional Codes of Conduct (1950s-1960s):
In 1950, Wiener published The Human Use of Human Beings, which considered for the first
time a series of ethical issues, questions, and topics within computer science.
A bit later during the same year, the world's first computer crime was committed. A
programmer was able to use a bit of computer code to stop his banking account from being
flagged as overdrawn.

11
Excellence and Service
 CHRIST
Deemed to be University

The history of computer ethics

The Birth of Computer Ethics (1970s-1980s):
In 1973, the Association for Computing Machinery (ACM) adopted its first code of
ethics.
In 1976, Walter Maner noticed a need for a different branch of ethics for when it came to
dealing with computers. The term "computer ethics" was thus invented.
Computer Hacking and Software Piracy (1980s):
With the rise of personal computers and the spread of computer networks, issues related to
computer hacking and software piracy gained prominence. Hackers and crackers raised
questions about the ethics of unauthorized access to computer systems, while software
piracy raised concerns about intellectual property rights and fair use.

12
Excellence and Service
 CHRIST
Deemed to be University

The history of computer ethics

The Computer Ethics Institute (1980s):
In 1985, James Moor, published an essay called "What is Computer Ethics?”

○ In this essay, computer ethics includes the following:

Identification of computer-generated policy vacuums,

Clarification of conceptual muddles,

Formulation of policies for the use of computer technology, and

Ethical justification of such policies.
In 1985, the Computer Ethics Institute was founded, and it played a significant role in
shaping the field of computer ethics. The institute established guidelines for responsible
computer use and ethical decision-making.
13
Excellence and Service
Internet and Privacy Concerns (1990s-2000s):
 CHRIST
Deemed to be University

The history of computer ethics

Internet and Privacy Concerns (1990s-2000s):
The widespread use of the internet in the 1990s brought new ethical challenges. Privacy
concerns became a central issue as personal information became more accessible and
vulnerable to misuse.
Emerging Ethical Issues (2010s-2020s):
In recent years, computer ethics has expanded to address emerging issues such as artificial
intelligence (AI), machine learning, big data, and social media.
Computer ethics continues to evolve as technology advances, and new ethical challenges
arise. It remains an important field for ensuring responsible and ethical practices in the
development and use of computer systems.

14
Excellence and Service
 CHRIST
Deemed to be University

Cyber Security Ethics
The main professional organization associated with cybersecurity, the Association of Computing
Machinery (ACM) Joint Task Force on Cybersecurity Education, defines cybersecurity as:
“A computing-based discipline involving technology, people, information, and processes
to enable assured operations. It involves the creation, operation, analysis and testing of
secure computer systems. It is an interdisciplinary course of study.”
Cybersecurity ethics are professional ethics, providing contextualized, specific knowledge to a group of
practitioners who share certain characteristics.
Those who work in cybersecurity form an epistemic community – they have had similar training, share
a specific vocabulary and set of ideas and belong to the same professional organizations.
It involves making ethical decisions and following ethical practices to protect digital assets, preserve
privacy, and ensure the integrity of computer systems and networks.

15
Excellence and Service
 CHRIST
Deemed to be University

Why Cyber Security Ethics matter?
Computer scientists have the ability to impact the environment of the internet.
They affect events both online and in the real world.
Cybersecurity must be a central feature in all products being developed today.
Cybersecurity experts need to consider ethics because the environment they work in is so unique.
Engineers, coders and designers can both create and destroy the entities.
Small action by a computer programmer can immediately have large scale repercussions not just in
cyberspace but in the real world as well.
A single line of code:

○ In April 2016, the British newspaper The Independent described how British businessman Marco
Marsala accidentally typed the Linux command “rm-rf” into his computer immediately deleted
everything in all of his servers, including backup copies, without first asking him, “Are you sure you
really want to do this?”
16
Excellence and Service
 CHRIST
Deemed to be University

Here are some key ethical considerations in cybersecurity:
Privacy: Respecting the privacy of individuals and safeguarding their personal information is crucial.
Ethical cybersecurity practices involve:

○ Collecting and using data in a transparent and responsible manner

○ Implementing appropriate security measures to protect sensitive information.
Confidentiality: Maintaining the confidentiality of data and communications is an ethical responsibility.
Cybersecurity professionals should protect sensitive information from unauthorized access, disclosure, or
misuse.
Integrity: Ensuring the integrity of computer systems, networks, and data is essential. Ethical
cybersecurity practices involve preventing unauthorized modifications, tampering, or alteration of data to
maintain its accuracy, reliability, and trustworthiness.

17
Excellence and Service
 CHRIST
Deemed to be University

Here are some key ethical considerations in cybersecurity:
Availability: Cybersecurity professionals should strive to ensure the availability of computer systems and
networks, allowing authorized users to access resources and services when needed. Ethical considerations
involve protecting against denial-of-service attacks and taking appropriate measures to maintain system
uptime and availability.
Consent and transparency: Obtaining informed consent from individuals regarding data collection,
usage, and sharing is an ethical principle. Cybersecurity professionals should provide clear and concise
information about their practices and ensure transparency in their operations.
Responsible disclosure: When identifying vulnerabilities or weaknesses in computer systems, ethical
hackers or researchers should follow responsible disclosure practices.
Non-discrimination: Cybersecurity professionals should not engage in activities that discriminate
against individuals or groups based on race, ethnicity, gender, religion, or any other protected
characteristic. Fair treatment and equal protection should be ensured in all cybersecurity practices.

18
Excellence and Service
 CHRIST
Deemed to be University

Here are some key ethical considerations in cybersecurity:
Continuous learning and professional development: Ethical cybersecurity professionals should
strive to stay updated with the latest technologies, techniques, and ethical considerations in the field.
Continuous learning and professional development help maintain competence and ensure ethical conduct.
Collaboration and information sharing: Ethical cybersecurity practices involve collaborating with
peers, sharing information, and contributing to the collective knowledge of the cybersecurity community.
This helps in addressing common threats and challenges more effectively.
Compliance with laws and regulations: Cybersecurity professionals should comply with applicable
laws, regulations, and industry standards. This includes respecting intellectual property rights, avoiding
unauthorized access or use of systems, and adhering to data protection and privacy laws.
These ethical considerations help guide cybersecurity professionals and organizations in making responsible
decisions, protecting user interests, and promoting a secure and trustworthy digital environment.

19
Excellence and Service
 ETHICAL
FRAMEWORK

MISSION VISION CORE VALUES
CHRIST is a nurturing ground for an individual’s holistic development to Excellence and Service Faith in God | Moral Uprightness
make effective contribution to the society in a dynamic environment Love of Fellow Beings 20
Social Responsibility | Pursuit of Excellence
 CHRIST
Deemed to be University

Ethical Framework
Using an ethical framework is essential for making informed and morally sound decisions in various
contexts, including personal, professional, and societal matters.
Ethical frameworks provide a structured and thoughtful approach to:

○ addressing complex moral issues,

○ analyzing and resolving ethical dilemmas,

○ guiding individuals and organizations towards more ethically responsible choices on different
stakeholders and society as a whole,

○ and promoting a better society for all.

21
Excellence and Service
 CHRIST
Deemed to be University

Some key reasons why using an ethical framework is important
Moral guidance: Ethical frameworks offer a set of principles, values, and guidelines that help individuals
and groups navigate complex ethical situations. They serve as a moral compass, aiding in making choices
that align with fundamental ethical principles.
Consistency: Ethical frameworks promote consistency in decision-making. When individuals or
organizations use a well-established ethical framework, they are more likely to approach similar situations
in a uniform and equitable manner.
Accountability: Employing an ethical framework encourages responsibility for one's actions. It
encourages individuals to critically assess the potential consequences of their decisions and take ownership
of their ethical choices.
Evaluation of consequences: Ethical frameworks often involve considering the consequences of
actions on various stakeholders. This helps identify potential harm, conflicts of interest, and positive or
negative outcomes, which are crucial for responsible decision-making.

22
Excellence and Service
 CHRIST
Deemed to be University

Some key reasons why using an ethical framework is important
Balancing competing interests: In many situations, there may be conflicting interests among
stakeholders. Ethical frameworks provide a systematic way to balance these interests and find
compromises that minimize harm and maximize benefits.
Building trust: Consistently applying an ethical framework builds trust with stakeholders, including
customers, employees, partners, and the wider community. Trust is a crucial foundation for long-term
relationships and sustainable success.
Legal compliance: Ethical frameworks often align with legal requirements. Following an ethical
framework can help organizations and individuals ensure they are acting within the bounds of the law and
avoid legal consequences.
Reputation and brand image: Ethical behavior enhances an individual’s or organization's reputation
and brand image. People are more likely to support and engage with entities known for their ethical
practices.

23
Excellence and Service
 CHRIST
Deemed to be University

Some key reasons why using an ethical framework is important
Ethical development: Engaging with ethical frameworks facilitates personal and organizational growth
by promoting critical thinking, self-reflection, and an understanding of the underlying values that guide
decision-making.
Contributing to a just society: Ethical frameworks help foster a sense of social responsibility. By
considering the impact of decisions on society, individuals and organizations can contribute to a more just
and equitable world.

24
Excellence and Service
 CHRIST
Deemed to be University

Virtue Ethics
Virtue ethics is a philosophical approach to ethics that focuses on the development of moral character and
virtues in individuals as a means to lead a good and fulfilling life.
Unlike other ethical theories that emphasize rules or consequences, virtue ethics places greater emphasis
on the moral character of a person and the cultivation of virtues that lead to ethical behavior.
The origins of virtue ethics can be traced back to ancient Greek philosophers such as Aristotle, who
believed that " Virtue ethics is concerned with identifying and cultivating the virtues that contribute to a
flourishing life.”
Koller writes, “The concept of virtue refers to the character traits of persons, their practical attitudes or
dispositions which have some motivating force for their conduct.”
It is referred to as agent-centered ethics, since it emphasizes the decision-maker's agency or free will to
make choices.

25
Excellence and Service
 CHRIST
Deemed to be University

Virtue Ethics
An ethical individual, in Aristotle's view, is someone who does and feels "the right things at the right time
in the right way and for the right reasons”.
He also acknowledges that the right amount of a virtue might vary depending on the context as well as on
one's own limitations.
Virtue ethics also assumes that one's character develops over time – through one's experiences and
exposure to people and ideas.

26
Excellence and Service
 CHRIST
Deemed to be University

Key components of virtue ethics include
Virtues: Virtues are character traits or dispositions that are morally praiseworthy and contribute to a
good life. Examples of virtues include courage, honesty, compassion, wisdom, justice, and temperance.
Eudaimonia: Virtue ethicists hold that eudaimonia is the ultimate end or goal of human life. Eudaimonia
is seen as a state of overall well-being and fulfillment that arises from living a virtuous life.
Moral Education: This involves cultivating virtues through practice, reflection, and learning from role
models.
Moral Decision Making: Rather than relying on strict rules or calculations of consequences, virtue
ethics encourages individuals to consider what a virtuous person would do in a given situation.

○ Involves developing moral intuition and practical wisdom to navigate complex moral dilemmas.

27
Excellence and Service
 CHRIST
Deemed to be University

Critiques of Virtue Ethics
Critics of virtue ethics argue that it can be somewhat vague and lacks concrete guidelines for action.
Additionally, determining which virtues are essential and universally applicable can be challenging, as virtues
may vary across cultures and societies.
We can identity different types of critiques:
First, some analysts point out that often in the real world, people may be coerced or compelled into making
decisions – through peer or social pressures or threats.
Next, some analysts suggest that the individual level is not the most appropriate level of analysis for
thinking about the development of good in society.
They prefer Pragmatic ethics - a subfield of ethics which focuses on society, rather than on lone individuals
as the entity which achieves morality.

28
Excellence and Service
 CHRIST
Deemed to be University

Critiques of Virtue Ethics
Other scholars 'situationist critique' note that people behave differently in different situations – even at
different times of day – while virtue ethics assumes that one's notion of the self is relatively stable and
fixed.
Finally, some scholars describe virtue ethics as based on circular reasoning: One acts in a certain way in
order to show one's character which is a function of one's actions. It is unclear whether actions cause
character or character causes action.

Nonetheless, virtue ethics continues to be a significant and influential approach to ethics, offering valuable
insights into the development of moral character and the pursuit of a good life.

29
Excellence and Service
 CHRIST
Deemed to be University

Virtue ethics in cyberspace
In the context of cyberspace, virtue ethics encourages individuals to develop positive character traits that
foster responsible and ethical online behaviour.
Individuals can import their values from real world interactions into cyberspace.
Many interactions among individuals and groups in cyberspace rest on core values of virtue ethics – such
as the establishment of trust, the building of relationships and a desire to speak honestly and avoid
deception.
Vallor identifies twelve ‘techno-moral virtues’ which she believes can serve individuals as a guide to
making ethical and moral decisions about their conduct in cyberspace.

30
Excellence and Service
 CHRIST
Deemed to be University

Virtue ethics in cyberspace
Honesty: Being honest and trustworthy in digital interactions and respecting the privacy and security of
others.
Self-control: Exercising self-control and moderation in the use of digital technologies to avoid addiction
and harmful behaviors.
Humility: Recognizing the limits of one's knowledge and expertise in the digital realm and being open to
learning from others.
Justice: Fairness and equity in the distribution and access to digital resources and opportunities.
Courage: The willingness to stand up for what is right in the face of digital challenges, such as
cyberbullying or online harassment.
Empathy: Understanding and considering the feelings and perspectives of others in the online
environment.

31
Excellence and Service
 CHRIST
Deemed to be University

Virtue ethics in cyberspace
Care: Being informed about potential online threats and cyberattacks and taking measures to protect
oneself and others from cyber risks. Taking proactive measures to prevent cyberbullying and standing up
against online harassment.
Civility: fostering a culture of online interaction that is characterized by kindness, empathy, and
constructive dialogue.
Flexibility: ability to adapt, adjust, or be open to change in the context of digital technologies and the
digital environment
Perspective: involve reflecting on the ethical and social implications of technological developments,
considering privacy, security, digital rights, and the impact of technology on society as a whole.
Magnanimity: a willingness to forgive and be tolerant of mistakes made by others in digital interactions.
Wisdom: The ability to critically evaluate and use digital technologies effectively, avoiding their misuse
and negative consequences.

32
Excellence and Service
 CHRIST
Deemed to be University

Deontological ethics
The term "deontology" comes from the Greek word "deon," which means "duty" or "obligation."
Deontology is a category of normative ethical theories that encompasses any theory which is primarily
concerned with adherence to certain rules or duties.
Consequences do NOT matter.
The most famous proponent of deontological ethics was the 18th century German philosopher Immanuel
Kant, who developed the ethical theory known as Kantian ethics.
Kantian ethics is also referred to as deontological ethics, or an ethics of duty or obligation.
Kant was not focused on the agent's state of mind or character or outcome of the agent's decision.
Instead, deontological ethics defines certain behaviors as moral duties or obligations which all humans
have to follow - these duties exist independently of any good or bad consequences that they might create.
It may not necessarily lead to the best possible outcome. Rather, it is simply the right thing to do.

33
Excellence and Service
 CHRIST
Deemed to be University
Deontological ethics
One of the central ideas in deontological ethics is the concept of the "categorical imperative," which is a
moral command that is universally binding, irrespective of personal desires or circumstances.
categorical imperative, which can be expressed as “always act on the maxim or principle which can be
universally binding, without exception, for all humans.”
His ethics thus assumes that it is not moral to have a different set of ethical or moral laws for one
individual.
A second principle of Kantian ethics is the notion of reversibility or the Golden Rule.
In contemplating taking an action, the actor needs to ask himself “Would I be harmed if someone took the
same action against me? How might I be harmed?”
Kantian ethics help to establish a foundation where people can trust one another – since individuals
recognize that they have a duty not to deceive, coerce or exploit their fellow humans.
Kant's emphasis was on identifying principles that would be universally true, always and everywhere.

34
Excellence and Service
 CHRIST
Deemed to be University

Critiques of deontological ethics

Some analysts suggest that Kant's notions of universal duties in all situations are too idealistic and
ultimately unachievable.
Others have dismissed Kantian ethics because they see it as inflexible.
Should one tell the truth to someone else whose own intentions are impure and inclined to do ill to you?
Kant did distinguish between lying to someone who might harm you (like a criminal) versus lying to
someone else.

35
Excellence and Service
 CHRIST
Deemed to be University

Deontological ethics in cyberspace

Some analysts assume that there is nothing unique about cyberspace and that individuals have the same
obligations and duties to their fellow man that they would have in real space.
rule of reversibility is applied here, noting that we would not like it if others did not respect our intellectual
property and so therefore we should respect the intellectual property of others.
They argue that the duty not to lie or practice deception holds in cyberspace just as it does in the real
world.

36
Excellence and Service
 CHRIST
Deemed to be University

Utilitarian ethics
Concerned with the end point or the decision's consequences, rather than the decision maker's attitude or
intent.
Utilitarian ethics is a consequentialist ethical theory that focuses on promoting the greatest amount of
overall happiness or well-being for the largest number of people.
It was developed by philosophers such as Jeremy Bentham and John Stuart Mill in the 18th and 19 th
centuries.
The central idea of utilitarianism is to determine the morality of an action based on its consequences.
An action is considered morally right if it maximizes overall happiness or utility and minimizes suffering or
pain.
In this context, "utility" refers to the measure of happiness, well-being, or pleasure that individuals
experience as a result of an action.
Reason or logic could provide a guide to social behavior in the world.

37
Excellence and Service
 CHRIST
Deemed to be University

Key features of utilitarian ethics
Greatest Happiness Principle:
The fundamental principle of utilitarianism is often stated as the "greatest happiness principle" or "the
greatest good for the greatest number.“
It means that an action is morally right if it produces the greatest amount of happiness or utility for the
most significant number of people affected by that action.
Hedonistic Calculus:
Utilitarians often use a method called the "hedonistic calculus" to evaluate actions.
This involves weighing the intensity, duration, certainty, and extent of pleasure or pain that an action may
cause.
By doing so, they attempt to determine which action will likely lead to the greatest overall happiness.
Impartiality:
- Utilitarians emphasize impartiality and treat each person's happiness
equally. No individual or group is favored over another in the pursuit
38
Excellence and Service
of overall well-being.
 CHRIST
Deemed to be University

Key features of utilitarian ethics
Impartiality:
Utilitarians emphasize impartiality and treat each person's happiness equally. No individual or group is
favored over another in the pursuit of overall well-being.
Consequences over Intentions:
Utilitarian ethics prioritizes the consequences of actions over the intentions behind them.
An action is judged by its outcomes, not the motives of the person performing the action.

39
Excellence and Service
 CHRIST
Deemed to be University

Comparing virtue ethics and utilitarianism
Virtue ethics assumes that the outcome alone is not the most important determinant in deciding what the
moral choice would be.
Virtue ethics also suggests that an individual’s ethical obligations – to act well and with good intent.
In contrast, utilitarian ethics is the 'best' decision is the one with the highest payoff – or the one that
creates the most utility or happiness.
Utilitarianism also allows for the possibility of situational ethics.
In order to create utility for the many it may be necessary to create disutility or to sacrifice the needs of one
or more individuals.

40
Excellence and Service
 CHRIST
Deemed to be University

Comparison of ethical framework

41
Excellence and Service
 CHRIST
Deemed to be University

Summary
Virtue ethicists believe that there is some objective list of virtues that, when cultivated, maximize a
person’s chance of living a good life.
Utilitarianism assumes that one can measure the utility of particular choices and decide rationally which
action will yield the most utility.
In seeking a particular end, it is possible that other values will need to be compromised, and it assumes
that what is ‘best’ in one situation might not be best in another.
Deontological ethicists believe that humans can use their reasoning abilities to derive an ethical
position through asking a series of questions including “What would be the outcome if everyone acted this
way?” And “Would I approve of this type of behavior having the status of a universal law?”

42
Excellence and Service