Ethics of Full Disclosure of Security Holes

2901 Words6 Pages
bulb-icon

Recommended: Ethical issues in computer security

Ethics of Full Disclosure of Security Holes

Introduction

Security breaches are making big headlines nowadays, and Microsoft is leading the charge. Its flagship operating systems and office suite are so bulky and complex, that it is impossible to be bug-free. The system administrators (the white hats) are up to their noses plugging all the holes from super hackers (the black hats). Yet they are also facing attack from another front – those that post vulnerabilities on the internet (the gray hats).

The gray hats are hackers that find security vulnerabilities and post them on the internet, forcing system administrators to patch up the holes. Usually, they inform the vendor ahead of time. Then, if they deem the company is not taking them seriously, and malicious hackers will exploit the threat, they post it on a forum. Though acting in good faith, the ethics of full disclosure of security holes are in debate, including: how full disclosure can cause more harm then good, how long vendors should be allowed to fix the problem, and liabilities for posting on the internet.

Issue 1: Full disclosure of security-related information can inflict more damage than good. You are showing people how to break into systems.

The debate about vulnerability-disclosure policies involves two main parties. Researchers at security companies say they want to get their latest findings out quickly to hasten software makers' response to bugs. Software makers, on the other hand, say they aren't given enough time to deal with a problem, and that publicizing it simply alerts malicious hackers to an opportunity.

There are super hackers out there who find security vulnerabilities, then write a script up on the internet, with one or two l...

... middle of paper ...

...on't publish code, 17 Oct. 2001, CNet News.com, 11 Mar. 2004, <http://news.com.com/2100-1001_3-274577.html?tag=st_rn>

6. Lemos, Robert, Microsoft developers feel Windows pain, 7 Feb 2002, CNet News.com, 12 Mar. 2004, < http://news.com.com/2100-1001_3-832048.html>

7. Lemos, Robert, When is Hacking a Crime? 26 Sept 2002, ZDNetNews, 15 Mar. 2004, <http://www.frame4.com/php/printout88.html>

8. Fried, Ina, Attack concerns slow Microsoft's pace, 16 Mar. 2004, CNet News.com, 16 March 2004, <http://zdnet.com.com/2100-1104_2-5173575.html>

9. Shankland, Stephen, Governements to See Windows Code, 14 Jan 2003, CNet News.com, 14 March 2004, <http://news.com.com/2100-1001-980666.html?tag=nl>

10. Lemos, Robert, New laws make hacking a black-and-white choice, 23 Sept 2002, CNet News.com, 14 March 2004, <http://news.com.com/2009-1001_3-958129.html>

Show More
Related

  • The Use of Hacking to Identify Weaknesses in Computer Security

    1406 Words  | 3 Pages

    The use of hacking to identify weaknesses in computer security has become an increasingly controversial issue in recent years. Awareness of this issue is important, because our ever increasing reliance on technology means that breaches in computer security have the potential to have wide-ranging and devastating consequences to society, worldwide. This essay will begin by clearly defining the term ‘hacking’ and will examine the type of people who hack and for what reasons. There will then follow a discussion of the moral argument on hacking before examining a few brief examples. The essay will then conclude by arguing against the use of hacking as a means of identifying weaknesses in computer security.

    Read More

  • HIPAA, CIA, and Safeguards

    1633 Words  | 4 Pages

    Whitman, M., & Mattord, H. (2011). Reading & cases in information security: law & ethics. (2011 custom ed., p. 264). Boston, MA: Cengage Learning.

    Read More

  • What Is Human Trafficking Essay

    952 Words  | 2 Pages

    Human trafficking is a global problem that affects the lives of millions of people in almost every country of the world, and which deprives them of their human dignity. As one of the most infamous crimes in the world, human trafficking misleads and turns women, men and children to fall victims from all corners of the world every day. It also leads to their exploitation. Although best known form of human trafficking is sexual exploitation, hundreds of thousands of victims are also trafficked for forced labor, forced labor as domestic servants, child begging, or the removal of organs. Basically, human trafficking means to displace individuals and force them to provide a service against their will.

    Read More

  • The Mexican-American War: Was Manifest Destiny Justified?

    692 Words  | 2 Pages

    At the time before the outbreak of the war, Mexico was given two options; give into the United States and sign over much of their land to the U.S, forever branding Mexico as cowards, or to do whatever was necessary to defend their land and their people. This ultimatum gave Mexico no fair choice, ultimately forcing them into the war. This angered many people including Americans at the time, and is still used as a key argument today.

    Read More

  • Be The Change: Human Trafficking

    710 Words  | 2 Pages

    Human trafficking is a very big problem in the United States but there is not very much awareness for it, even with 100,000 children estimated to be in the sex trade in the United States each year. Human trafficking is a criminal industry that is driven based on the supply and demand. It is fueled by the need for cheap workers and commercial sex. A human trafficker is someone who victimizes others to make a profit. This market thrives because there is a low risk of getting in trouble, and has high profits. There are people who are willing to buy commercial sex and they are making the market. They make it profitable for the human traffickers. It is low risk because there is little awareness to the issue. People do not know how to deal with the problem when it happens. There is no help for the victims of the trafficking. Law enforcement is not investigating and prosecuting the crimes, so there is no reason for those who do it to not continue. Left unchecked, human trafficking will proceed to thrive in situations where traffickers can receive considerable financial increases with low danger of being caught. (Polaris Project)

    Read More

  • The Importance Of Gun Control

    1141 Words  | 3 Pages

    Will gun control stop harm or protect citizens? Today, the opinions of Americans vary on whether guns harm or protect citizens. However, gun control is not a new controversial issue. In 1924, U.S. Senator, Robert La Follete, said, “Our choice is not merely to support or oppose gun control but to decide who can own which guns under what conditions.” This proves that gun control has been a concern to Americans since the mid- twentieth century, and possibly even earlier than that. Even with the U.S. laws limiting the access of guns, it has not stopped the misuse of guns. Thirteen school shootings have been recorded in the United States within the first six weeks of 2014. Gun control is an effort to stop crimes by limiting who can access guns. Guns are very powerful weapons that have a great impact on society. They can change a family’s life forever. The destruction they cause cannot be reversed or taken back, and one trigger could take a person’s life away. For these reasons, government interference is needed to restrict the harm guns can cause. The U.S. government should place more limitations on guns because of the carelessness and misuse of guns, which has led to an increasing number of crimes and violent actions against the innocent.

    Read More

  • Fighting Fire with Fire

    547 Words  | 2 Pages

    Over the course of the past few years, mass killings have escalated in the United States, causing an immense uproar from the many American citizens demanding a solution. Due to the two conflicting sides regarding the solution, gun control; many are not able to come to an agreement. While some argue gun control is the only way to help stop the mass killings that are on the high rise, others argue that it is against the Constitution and against one’s rights to not be able to bear arms. Gun control, although portrayed as the only solution to the mindless killing, is not the answer to today’s violence; in fact many believe that stricter gun control enables more mass shootings to take place (Statistics show mass shootings more frequent with strict gun control). The problem is not gun ownership, it is the increasing tendency towards violence in the United States (Stone).

    Read More

  • Human Trafficking: Modern Day Slavery

    2082 Words  | 5 Pages

    Human trafficking is the third most profitable and fastest growing criminal activity in the world, after guns and ammunition and drugs. Roughly 2.5 million people are trafficked every year, they are recruited through some form of coercion or deception and exploited, mainly for forced labor or sexual exploitation. The market value of human trafficking is approximately $32 billion per year. (Polaris Project.) “This is a global problem, no country is spared.” (Slavery Today). About three out of every 1,000 persons worldwide are trafficked at any given point in time. Women and children are the primary targets, but men are also trafficked. Forced labor claims 20.9 million victims, of whom 90% are exploited in the private economy (Slavery Today).

    Read More

  • Penetration Testing

    3197 Words  | 7 Pages

    As electronic commerce, online business-to-business operations, and global connectivity have become vital components of a successful business strategy, enterprises have adopted security processes and practices to protect information assets. But if you look at today's computing environments, system security is a horrible game of numbers: there are currently over 9,223 publicly released vulnerabilities covering known security holes in a massive range of applications from popular Operating Systems through to obscure and relatively unknown web applications. [01] Over 300 new vulnerabilities are being discovered and released each month. Most companies work diligently to maintain an efficient, effective security policy, implementing the latest products and services to prevent fraud, vandalism, sabotage, and denial of service attacks. But the fact is you have to patch every hole of your system, but an attacker need find only one to get into your environment. Whilst many organisations subscribe to major vendor's security alerts, these are just the tip of the security iceberg and even these are often ignored. For example, the patch for the Code Red worm was available some weeks before the worm was released. [02]

    Read More

  • Argumentative Essay On Human Trafficking

    970 Words  | 2 Pages

    One reason why human trafficking is a serious crime that many people are unaware of is because it secretly takes place in the United States. Between 2007 and 2012, there were reports of 9,298 different cases of human trafficking (Polaris Project). An example of how unknown this topic is is that 41% of sex trafficking cases and 20% of labor trafficking cases were proven to have United States citizens as victims (Polaris Project). And this is only what we know so far. There are thousands of cases that we don’t know about. Many people also don’t know that men, women, and even children are also taken hostage by human traffickers. An example of this would be that out of those 9,298 cases that were reported, women were victims of sex trafficking in 85% of those cases. Men were victims of labor trafficking in 40% of those cases (Polaris Project). Approximately 300,000 children are at risk of being prostituted in the United States (U.S. Department of Justice). Children are even more under the radar than we know about. On average, one in three teenagers on the street will be lured toward prostitution within 48 hours of leaving their home (National Runaway Hotline). For example, two female friends who were minors ran away from home and were prom...

    Read More

  • Hacking sweeps the nation

    2071 Words  | 5 Pages

    In the early days, many hackers were individuals, looking out for their own personal gains. Student hackers were able to expand computers, and they to made them play music and video games. In 1971, the programmer John Draper discovered that a little whistle that comes in a Captain Crunch cereal box had the same frequency as Phone Company’s used to send calls. His findings allowed him to make free phone calls anywhere in the world. (Clemmit, 767) When the 1980s began, younger hackers actually became professionals in breaching computer networks, this started and uproar of cyber crime incidents in the 1990s. From the 1990s to the 2000s, hackers started to really be recognized as a threat as they hacked into many federal government websites and large companies. This brought great controversy about what approach to take in stopping computer crimes. In the 2000s, hackers managed to make a huge name for themselves and became a main attraction to the public they were able to shut down a nuclear power plant in Ohio by unleashing a worm that disabled important safety systems. (Clemmit, 767)

    Read More

  • Is Hacking Ethical Or Ethical Essay

    868 Words  | 2 Pages

    Hacking was a term established in the 1960s. This word is the concept of unauthorised intrusion of a computer or network with malicious intentions behind them. This includes any technical effort of manipulating or damaging the normal behaviour of network connections/systems or stealing information. In this generation, hacking has become evidently significant and the debate of hacking being considered ethical or unethical arises. Therefore, will hacking ever be justified? The justification (reasonableness) of hacking has become a disputation of mixed opinions and emotions amongst society. These opinions range from hacking being considered immoral due to it being illegal activity and the vast negative impact it has on people. This includes the affirmative opinions on hacking; such as hacking being considered ethical due to the “white hat” hackers.

    Read More

  • Human Trafficking Violates Human Rights

    1834 Words  | 4 Pages

    Human trafficking is a topic that is not discussed very often in society. Many people fail to realize that human trafficking still exists today. Human trafficking violates basic human rights. It takes away the freedom and security of men, women, and children world wide. The diversity and widespread execution of human trafficking make it difficult to regulate and prosecute.

    Read More

  • Argumentative Essay On Human Trafficking

    942 Words  | 2 Pages

    Human Trafficking is trading human beings for sex, labor, or any other force trade. It is known as modern day slavery. Many people in the United States believe that slavery was abolished long ago, but the truth is slavery exist more now than it ever has before. People are being trafficked all around us. Victims of human trafficking range in age, gender, ethnicity, and socioeconomic status. Typically victims share one thing in common, they become isolated from either their country of origin or their families in hope of a better life. Nearly 100,000 children in the United States are currently exploited through commercial sex trade. Over 27 million people worldwide are trapped in human trafficking. Many people are negligent of the fact that millions of people are currently living enslaved in the sex industry. The statistic remains that there is a battle going on worldwide. Ending any form of human slavery will never happen, but becoming aware of the problem and creating ways to stop the numbers from rising or even getting the numbers to decrease should be important. People are not property and no one human being should own another human being. Battles are fought all over the world for people who are oppressed, why is there not a bigger battle for the millions of people being bought and sold right now? It is injustice. Although this global crime is a huge problem that seems way too big to begin solving. There is a way to become aware, speak out, and stop sitting on the sidelines. Even though many people picture slavery as a thing of the past, it never ended. Even though many citizens of the United States see slavery in their mind as something in some far off country and brush the notion aside, t...

    Read More

  • CyberCrime: Preventing the Horrific Crimes on the Internet

    1424 Words  | 3 Pages

    Harvey, Brian."Computer Hacking and Ethics." Ed. Paul Goodman, P.G. Electrical Engineering and Computer Sciences. U of California, Berkeley, n.d. Web. 25 Jan. 2014.

    Read More

More about Ethics of Full Disclosure of Security Holes

Open Document