Chapter 3 Review
1. What is the difference between law and ethics?
The difference between law and ethics is that law is a set of rules and regulations that are universal and should be accepted and followed by society and organizations. Ethics on the other hand was derived from the latin word mores and Greek word Ethos means the beliefs and customs that help shape the character of individuals and how people interact with one another
2. What is civil law, and what does it accomplish?
A wide variety of laws that govern a nation or state and deal with the relationships and conflicts between organisational and entities and people.
3. What are the primary examples of public law?
...view middle of the document...
The act requires organisations that retain health-care information to use information security information security mechanisms to protect information, as well as policies and procedures to maintain this security. HIPPAA provides guidelines for the use of electronic signatures based on security standards that ensure message integrity, user authentication and nonrepudiation.
8. If you work for a financial service organisation such as bank or credit union, which 1999 law affects your use of customer data? What other affects does it have?
The law from 1999 that affects the use of customer data by financial institutions is the Financial Services Modernisation Act or Gramm-Leah-Bliley Act of 1999. Specifically, this act requires all financial institutions to disclose their privacy policies on the sharing of non-public personal information. It also requires due notice to customers, so that they can request that their information not be shared with third parties. In addition, the act ensures that the privacy policies effect in an organisation are both fully disclosed when a customer initiates a business relationship, and distributed at least annually for the duration of the professional association.
9. What is the primary purpose of the USA PATRIOT ACT?
The purpose of the USA Patriot Act is to deter and punish terrorist acts in the united States and around the world, and to enhance law enforcement investigatory tools.
10. Which 1997 law provides guidance on the use of encryption?
The Security and Freedom through Encryption Act of 1997
11. What is intellectual property? Is it afforded the same protection in every country of the world? What laws currently protect it in the United States and Europe?
Intellectual property is recognised as a protected asset in the United States. The U.S Copyright laws extend this privilege to the published word, including electronic formats. Fair use of copyrighted materials includes their use to support news reporting, teaching, scholarship, and a number of other related activities, so long as the use if for educational or library purposes, not for profit, and is not excessive. As long as proper acknowledgement is provided to the original author of such works, including a proper description of the location of source materials(citation) and the work is not represented as one’s own, it is entirely permissible to include portions of someone else’s work as reference.
The laws that currently protect it in the United States and Europe are the; Agreement on Trade-Related Aspects of Intellectual Property Rights (TRIPS) and Digital Millennium Copyright Act (DMCA).
12. How does the Sarbanes-Oxley Act of 2002 affect information security managers?
Executives working in firms covered by this law will seek assurance on the reliability and quality of information systems from senior information technology managers. In turn, IT managers will likely ask information security managers to verify the...