Ethics and Information Technology 6 (2):93-110 (2004)
Modern software is infested with flaws having information security aspects. Pervasive computing has made us and our society vulnerable. However, software developers do not fully comprehend what is at stake when faulty software is produced and flaws causing security vulnerabilites are discovered. To address this problem, the main actors involved with software vulnerability processes and the relevant roles inside these groups are identified. This categorisation is illustrated through a fictional case study, which is scrutinised in the light of ethical codes of professional software engineers and common principles of responsibility attribution. The focus of our analysis is on the acute handling of discovered vulnerabilities in software, including reporting, correcting and disclosing these vulnerabilities. We recognise a need for guidelines and mechanisms to facilitate further improvement in resolving processes leading to and in handling software vulnerabilities. In the spirit of disclosive ethics we call for further studies of the complex issues involved.
|Keywords||information security professional ethics security evaluation software development software testing software vulnerability|
|Categories||categorize this paper)|
References found in this work BETA
Method in Computer Ethics: Towards a Multi-Level Interdisciplinary Approach. [REVIEW]Philip Brey - 2000 - Ethics and Information Technology 2 (2):125-129.
Accountability of Internet Access and Service Providers – Strict Liability Entering Ethics?Anton Vedder - 2001 - Ethics and Information Technology 3 (1):67-74.
Citations of this work BETA
Software Vulnerability Due to Practical Drift.Christian V. Lundestad & Anique Hommels - 2007 - Ethics and Information Technology 9 (2):89-100.
Ethical EU eJustice: Elusive or Illusionary?Juliet Lodge - 2006 - Journal of Information, Communication and Ethics in Society 4 (3):131-144.
Similar books and articles
The Freedoms of Software and its Ethical Uses.Samir Chopra & Scott Dexter - 2009 - Ethics and Information Technology 11 (4):287-297.
An Action Selection Mechanism for "Conscious" Software Agents.Aregahegn S. Negatu & Stan Franklin - 2002 - Cognitive Science Quarterly. Special Issue 2 (3):362-384.
Ethical Education in Software Engineering: Responsibility in the Production of Complex Systems.Gonzalo Génova, M. Rosario González & Anabel Fraga - 2007 - Science and Engineering Ethics 13 (4):505-522.
Ethical Responsibilities of Software Developers in Developing Simulations.William Spees - 2001 - International Journal of Applied Philosophy 15 (1):59-64.
Free Software and the Economics of Information Justice.S. Chopra & S. Dexter - 2011 - Ethics and Information Technology 13 (3):173-184.
Informatics and Professional Responsibility.Donald Gotterbarn - 2001 - Science and Engineering Ethics 7 (2):221-230.
Not All Codes Are Created Equal: The Software Engineering Code of Ethics, a Success Story. [REVIEW]Don Gotterbarn - 1999 - Journal of Business Ethics 22 (1):81 - 89.
Toward a Profile of Student Software Piraters.Ronald R. Sims, Hsing K. Cheng & Hildy Teegen - 1996 - Journal of Business Ethics 15 (8):839 - 849.
Ethical Issues in Empirical Studies of Software Engineering.Janice A. Singer & Norman G. Vinson - forthcoming - Philosophical Explorations.
Added to index2009-01-28
Total downloads19 ( #249,327 of 2,146,925 )
Recent downloads (6 months)1 ( #385,507 of 2,146,925 )
How can I increase my downloads?
There are no threads in this forum
Nothing in this forum yet.