Introduction to Cyber-ethics Issues for ICT Professionals
Download
Report
Transcript Introduction to Cyber-ethics Issues for ICT Professionals
Introduction to Cyber-ethics
Issues for ICT Professionals
School of Architecture, Computing, and Engineering
University of East London
5 March 2014
Dr Josephine Anne Stein
Principal Research Fellow in Innovation Studies emerita
Law and Social Sciences/LSS
E-mail: [email protected]
Overview
Ethical issues for ICT professionals
Definitions and basic concepts
Western moral tradition and evolution
What is the relevance of ethics to ICTs?
Cyber-ethics issues and dilemmas
Practical approaches to applying ethics
5.3.2014
JA Stein 2
Ethical issues for ICT professionals
Data protection and other legal matters
Hacktivism
Business computer ethics
Surveillance at work
Ethics in the Cloud
Online privacy
5.3.2014
JA Stein 3
British Computer Society Code of Conduct
Public interest
– Awareness of legal environment
– Avoid discrimination
Duty to relevant authority
– Compliance and expert judgement
– Confidentiality and disclosure
– Manage task within time and budget
Duty to the profession
Professional competence and integrity
5.3.2014
JA Stein 4
Definitions: Ethics
The study and philosophy of human conduct,
with emphasis on the determination of right
and wrong. The basic principles of right action
especially with reference to a particular profession
(New International Webster’s Dictionary 1996)
a code of behaviour, especially of a particular
group, profession or individual. The moral fitness
of a decision, course of action, etc.
(Collins Dictionary 2002)
5.3.2014
JA Stein 5
Why ‘Cyber-ethics’?
Computer ethics
– Customised or bespoke software (machines)
Internet ethics
– Netiquette (www, email) (content)
Cyber-ethics
– LAN Internet Cloud (environment)
5.3.2014
JA Stein 6
Definitions: Morality
the quality of being moral; that which renders an
action right or wrong; the practice of moral
duties apart from religion; virtue......ethics
(Chambers Dictionary 1998)
a set of shared rules, principles and duties
applicable to all members of a group or society
which we follow in our day-to-day living.....They
help us to distinguish between right and wrong
(E Turner)
5.3.2014
JA Stein 7
Moral philosophy and applied ethics
Moral Philosophy or “metaethics”: philosophical
reflection on the nature of moral judgement
– critical analysis, identifying moral principles
Applied ethics: practical approaches to understanding real-world moral issues, making explicit
beliefs and values based on philosophical principles:
–
–
–
–
–
5.3.2014
individual rights and autonomy
ownership
authority and relativism
objectivity, trust, privacy
social distribution of responsibility, damage and risk
JA Stein 8
The nature of authority
Expertise and subjectivity
– validated knowledge and credentialed expertise
– scientific method, experience, opinion
who is qualified concerning moral judgement?
An authority or someone in authority?
– is doing the right thing about avoiding punishment?
– is authority conferred or earned?
– when and why does one reject authority?
From power-based to rule-based to
value-based morality
5.3.2014
JA Stein 9
Ethics in the Old Testament
Ten Commandments, abridged and paraphrased
(Exodus 20)
Honour your father and mother
Don’t commit murder or adultery
Don’t steal or covet what isn’t yours
Don’t lie
Other Old Testament examples
5.3.2014
Don’t accept bribes (Exodus 23)
Do not mistreat an alien or oppress him (Exodus 22)
JA Stein 10
Christian ethics
Incarnation: God as taking human form
Teachings of Jesus Christ
loving all, including the outsider, the rejected, the enemy;
faith, hope and charity, settings norms of humane behaviour
defying local authoritarian power, leading to JC’s execution
Resurrection
taking personal responsibility for one’s actions
....but external divine authority still available to judge, offer
absolution from sin or punishment of the guilty
vindication of JC’s embodied human/divine authority
Rise of the Church and the Bible as authoritative
5.3.2014
closing the biblical canon in 405 AD, ‘Christendom’
JA Stein 11
The rise of secular humanism
Reformation and Protestantism (16th century)
Enlightenment (18th century)
rise of rationality and human-centred philosophy
Modernism (early 20th century)
Martin Luther and the rebellion against corruption
Henry VIII and the Church of England
triumph of “progress” in delivering prosperity now
instead of promises in “eternity” or afterlife, based
on universal scientific principles
Postmodernism (mid-late 20th century)
5.3.2014
rejection of the “grand narrative” in favour of
“constructed identity”, anti-realism and pluralism
JA Stein 12
Systems of ethics:
From ancient Greece to the 21st Century
Deontology: rules, rights and duties
– Divine command ethics
– Kantian ethics
Contractualism
– Hobbes
– Social contract
Consequentialism
– Utilitarianism
5.3.2014
Virtue ethics
JA Stein 13
Deontology
Rules, rights and duties
Divine command ethics:
Claims made about obedience to God
– “Son of Sam” murders
– George W. Bush and the invasion of Iraq
– Acceptability in academia
5.3.2014
JA Stein 14
Categorical moral obligations:
Immanuel Kant (1724 - 1804)
Duties as fundamental
Hypothetical (non-moral) imperatives:
Morality a matter of objective, dispassionate rationality
Intent as the basis of moral judgement:
autonomy assumed
If you want to be healthier, stop overeating
If you want to be happier, make more & better friends
If you don’t want to be killed, hand over your money
Categorical (moral) imperatives:
5.3.2014
“common sense” rules that apply to all (universality)
does not distinguish means from ends
absolute: exceptions as never justifiable
JA Stein 15
Contractualism
Mutual advantage based on rational agreement
– explicit, codified (formal contract)
– implicit, understood (paying for a restaurant meal)
– intuitive expectation of social behaviour
(psychological contract)
Thomas Hobbes (1588 - 1679)
– limits of altruism and sympathy
– inequalities in power amongst people
need for absolute ruler
– “social contract”, authority and governance
5.3.2014
JA Stein 16
Consequentialism and utilitarianism
Consequentialism: the consequences of an action
alone determine its morality
the ends justify the means
Utilitarianism: not the same as usefulness....a goal
– classical: “the ultimate good is something that most people
actually desire”
– modern: “satisfaction, rather than happiness”
– ethical hedonism: pleasure the only ultimate good
the greatest happiness of the greatest number
In philosophy, pleasure, happiness and hedonism
are more sophisticated concepts than as everyday
terms, but....
5.3.2014
JA Stein 17
Virtue ethics
Aristotle and purpose in life
– Excellence, flourishing as source of
happiness
Augustine, Aquinas
– Specification of virtue in terms of health,
aesthetics, knowledge, authenticity,
integrity, justice, friendship, holiness
5.3.2014
JA Stein 18
Computer ethics
Postwar period:
Microcomputers, networking and personal computers
software and IPRs
hacking
Internet and bandwidth
the rise of ‘artificial intelligence’ and fears of social
domination by computers
large-scale computation enabling greater lethality of military
weaponry
large-scale data manipulation enabling the centralisation of
social control (especially government): privacy and dignity
privacy and protection from malicious individuals
dependency in the age of informational capitalism
Cloud computing
5.3.2014
JA Stein 19
Conceptualising computers and ethics
Software
Hacking
the Internet
the Cloud
“Computer and information technology creates
new possibilities; it instruments human action in
new ways. The ethical issues that are thereby
created are not out of the realm of human understanding, but they have unique features with which
we must come to grips.” (Johnson)
5.3.2014
JA Stein 20
Computers and society: the case of software
Software (Johnson)
– A series of mental processes that cannot be owned, an
internal structuring of a computer that forms a part of the
machine, or a standalone product with commercial value?
– Traditionalist view: adapt existing tools such as patents and
copyright? But can this approach capture the novel features
and their (sometimes unintended) applications?
Social context: moral, cultural, political ideas
“the study of computer ethics turns out [to] be the study of
human beings and society -- our goals and values, our
norms of behavior, the way we organize ourselves and
assign rights and responsibilities”
5.3.2014
JA Stein 21
Are computer ethical issues unique?
New entities: programmes, software, microchips,
Websites, video games (MMORPGs), the Cloud
Scale of organised activity: data collection, calculation,
statistical analysis
Scale of calculations: new types of knowledge in fields
such as meteorology, economics, military technology
Inherent unreliability of computer systems: new ways
of thinking about risk, accountability and liability
Power and pervasiveness: dependency on computers
for all aspects of modern living, sometimes life itself
5.3.2014
JA Stein 22
Practical applications of ICT ethics
Personal choices: careers, ownership of consumer goods
Protection of children and vulnerable people in our care
Policy, regulation and law
–
–
–
–
–
both public and corporate policies
gender, race, disability, equality and dignity issues
regulation of service provision and content
intellectual property rights
rights to privacy
Conduct of democracy
Codes of professional conduct
5.3.2014
JA Stein 23
Data Protection Act (1984)
DPA requirements include
– Registration of personal data
– Description of purpose of use
– Person responsible for subject access requests
Eight principles
Fairness, specification of purpose,
appropriateness, adequacy, accuracy,
timeliness, accessibility and security
5.3.2014
JA Stein 24
Data Protection Act (1998)
Implementing European standards as per the
Legal protection of databases Directive (1996)
Registration
Enlargement of jurisdiction to cover more
types of data systems
– Manual data
– Videotapes, CDs, etc.
Information Commissioner empowered to
issue fines from 6 April 2010
5.3.2014
JA Stein 25
Implications of the Data Protection Act
for ICT professionals
5.3.2014
Awareness of requirements for
registration; exemptions
Treatment of personal data
Use and disclosure of data
Adequate but not excessive
Accuracy and timeliness
JA Stein 26
Data protection and the Internet (I)
Exemptions for personal use of data
DPA Section 55 at work
– Pornographic websites
– Sexually explicit e-mails
Disclosure of data to third parties
5.3.2014
JA Stein 27
Data protection and the Internet (II)
Web site cookies, application forms and
transparency
Confidentiality and public services
Use of personal data for secondary purposes
– Authorisation
– Public interest disclosure
– Informed consent
5.3.2014
JA Stein 28
Computer Misuse Act (1990)
Unauthorised access to a computer
Unauthorised modification of data
held on a computer
Hacking
Infecting computers with viruses
Attempt to control international
computer crime
5.3.2014
JA Stein 29
File-sharing, IPRs… and Democracy
Napster mp3 file sharing started in 1999 and was shut
down in 2001 by judicial order
More than 60% of Internet traffic p2p sharing music,
movies, books and games (June 2010)
Encryption and IP address migration
Piratbyrån - The Pirate Bay: 25 million visitors/month
(2008) – only hosts bit-torrents and not files so cannot be
shut down – but conspiracy case
Market economy vs. capitalism (concentrated power)
Democracy and Human Rights: Piratpartiet and privacy
5.3.2014
JA Stein 30
Digital Economy Act (2010)
Copyright/anti-piracy
– Compels ISPs to report persistent offenders
– Powers to restrict or cut off Internet access granted
to the Secretary of State to instruct ISPs
– Ofcom enforces ISPs obligations
– Control of content:
Video game classification
Copyright material on websites
The controversy continues
– Implementation wrt piracy delayed until 2015
5.3.2014
JA Stein 31
Professional responsibility v.
Legal responsibility
Compliance with the law
Contribution to the formulation of law
and professional practice
– Technological expertise
– Ethical/professional judgement
Disclosure (whistleblowing)
What if the law itself is ethically wrong?
5.3.2014
JA Stein 32
Business computer ethics
Ethical behaviour as essential to maintaining trust that
is the basis for doing business:
– clients, customers and suppliers
– competitors, especially when collaborating
– employees, shareholders and stakeholders
empirical observation: “ethical behaviour works” (Langford)
Computers pervasive in all aspects of business, and
businesses of all sizes are highly dependent upon them
Computers allow very complex processes to take place
which are not transparent to consumers or regulators
5.3.2014
JA Stein 33
Regulation of Investigatory Powers Act (2000)
allows monitoring of email
by employers
legalises interception of email
by the security services
5.3.2014
JA Stein 34
Cloud computing and cyber-ethics
Control and responsibility
– Users relinquish control over both
computation and data
– Dispersed responsibility for data
and computational integrity
– Disappearance of geographical and
functional boundaries
– Multi-purpose, multi-use
– Accountability?
5.3.2014
JA Stein 35
Online Privacy : Why is it important?
Personal autonomy, security and dignity
Freedom of association
Political freedom and democracy
Intellectual property
Commerce and employment
Protection from cyber-crime
5.3.2014
JA Stein 36
What does secrecy mean in a
virtual social environment?
5.3.2014
Privacy
Anonymity
Identity
Security
Confidentiality
JA Stein 37
Privacy
Theories of privacy:
– Non-intrusion privacy: being free from
interruption and interference
– Seclusion privacy: personal privacy and
being alone
– Control/access privacy: having control
over information about oneself
5.3.2014
– Limitation privacy: context-dependent
limits to access to one’s personal
information
JA Stein 38
Internet privacy
Datagathering and cyberstalking
Dataveillance
Merging electronic records
Personal data mining
Search engines
Social networking online
What is properly personal and private, and
what is in the public domain?
5.3.2014
JA Stein 39
Anonymity online
Liberation (Cyborg Manifesto)
– or deception?
‘On the Internet, nobody
knows you're a dog’
Trust and accountability
(e.g. misrepresentation and hacking)
5.3.2014
JA Stein 40
Identity in the virtual world
Personal, social and legal identity
Aliases
Constructed identities
Digital effigies
5.3.2014
JA Stein 41
Security: a highly emotive topic
Technological security (PETs)
Identity theft, impersonation and fraud
Surveillance and “counter-terrorism”
Psychological and sociological origins
(“existential insecurity”; “risk society”)
Security through cooperation
5.3.2014
JA Stein 42
Confidentiality and trust
Friendship, kinship
Caring professions
–
–
–
–
5.3.2014
Medical
Social
Educational
Religious
Employment
Social contracts, social capital
JA Stein 43
Evolution of virtual society
Communities
– Personal / family / diaspora
– Occupational / professional
– Interest group
Organisations and institutions
– e-government
– e-commerce
5.3.2014
JA Stein 44
The social regulation of the virtual world
Regulating human behaviour
– Individual
– Institutional
– Social
Social values of the Internet
– Development of expectations of identity in
a postmodern medium
– Confidence in secure transactions (financial, personal)
– Anarchy, communism (Linux, open source software, freeware)
5.3.2014
JA Stein 45
Secrecy and governance in the virtual world
Technological approaches are insufficient
Formal and informal approaches to the
governance of the www
Social norms differ according to national,
religious, ethnic and other distinctive
features of various societies – including
online societies
5.3.2014
JA Stein 46
Promoting an ethical approach and
the problem of moral philosophy
Internet ethics is derived from Western moral
philosophy, thus based on Judeao-Christian and
European cultural heritage
The foundations of different ethical frameworks
cannot be fully rationalised – and therefore,
conceptualisations of ethical standards and
approaches to governance (e.g. deontology,
utilitarianism, notions of human rights etc.) don’t lend
themselves to multicultural rationalisation
5.3.2014
JA Stein 47
Universal ethics
Values? (worth, esteem, etc.)
– Is privacy an intrinsic social value or is it
instrumental ?
Truly universal ethics are based on virtues:
–
–
–
–
–
–
5.3.2014
Honesty and trustworthiness
Benevolence and generosity
Excellence
Courage
Honour and respect
Justice
JA Stein 48
Virtual and virtuous ?
Honesty and trustworthiness: Wikipedia
Benevolence and generosity:
on-line petitions and appeals
Excellence: peer-reviewed journals
Courage: resistance to political oppression
Honour and respect: netiquette
Justice: ?
5.3.2014
JA Stein 49
Virtual secrecy?
No technological solutions to social problems,
but no legal solutions either
Tailoring secrecy to purpose
– Protection of legitimate confidentiality in
professional and business/financial world
– Protection of personal privacy and dignity
– Social scepticism wrt identity – education
Informal and informed cooperative social
promotion of on-line virtue
5.3.2014
JA Stein 50
Psychology of moral autonomy
(Lawrence Kohlberg)
Preconventional level: self-benefit and the
avoidance of punishment
Conventional level: family, group or social norms
uncritically accepted as standards of morality
Postconventional level: individual recognition
that right and wrong is not reducible to selfinterest or social convention
– autonomous individuals who think for themselves
and do not assumes that customs are always right
– seek to live by general, universal principles such as
moral integrity, respect, and the “Golden Rule”
5.3.2014
JA Stein 51
Limits to rationalism
Feminist critique: “ethics of care” (Carol Gilligan)
– context-dependent on maintaining personal relationships:
masculine ethics based on abstract rights and rules contrasted
with feminine context-oriented reasoning
Persistence of religious morality in contemporary society
– empirical observation that religious experience (including
conversion) is attributed to God
– impossible to acquire religious belief through reasoning
– fundamentalism mainly in text-based religions: no moral
ambiguity -- also balanced ‘scripture, tradition and reason’
Computer Power and Human Reason (Joseph Weizenbaum)
– Decision vs. choice
– Judgement, compassion and wisdom
5.3.2014
JA Stein 52
Moral Heuristics
Is it honourable? Is there anyone from whom we would like
to hide the action?
Is it honest? Does it violate any agreement, actual or implied,
or otherwise betray a trust?
Does it avoid the possibility of conflict of interest? Are there
other considerations that might bias your judgement?
Is it within your area of competence? Is it possible that your
best effort will not be adequate?
Is it fair? Is it detrimental to the legitimate interests of others?
Is it considerate? Will it violate confidentiality or privacy,
or otherwise harm anyone or anything?
Is it conservative? Does it unnecessarily squander time
or otherwise valuable resources?
5.3.2014
JA Stein 53
Example: Ethical analysis of plagiarism
Identify and list as many different forms of plagiarism
as possible
Select four of the most egregious forms of plagiarism
What are the main ethical issues?
Identify the stakeholders
What ethical principles apply?
What formal guidelines apply?
What are the long-term implications, including
prevention strategies?
5.3.2014
JA Stein 54
Plagiarism…..don’t…..
When to reference
“Lifting” material
– Padding
– Over-reliance on sources
Other hazards:
– Self plagiarism
– Collusion
– Commercial (dis-)services
UEL guidelines, policies
and strategies
5.3.2014
JA Stein 55