7-1 ETHICS IN INFORMATION TECHNOLOGY

Society continues to raise questions about what is and is not ethical in the information technology arena. A code of ethics provides direction for IT professionals and users so they can apply computer technology responsibly.

Green computing, an important IT ethics topic, adopts a more environmentally sound position with respect to the use, manufacture, and disposal of computing hardware. The EPA's Energy Star guidelines are being used to standardize energy usage for hardware. Good green computing includes sending e-mail (rather than paper), purchasing recycled paper, buying reconditioned components, and telecommuting once or twice a week.

Individuals and companies should adopt a product stewardship policy that encourages recycling and the proper handling of obsolete PCs and computer hardware.

7-2 WORKPLACE ETHICS: HEALTHY COMPUTING

Today, corporate executives are more sensitive to workplace ethics. Human factors engineers are applying the principles of ergonomic design to ensure that the interface between knowledge worker and workplace is safe, comfortable, effective, and efficient. The knowledge worker's workplace should be designed with enough flexibility to enable it to be custom-fitted to its worker. Attention to the overall environment (lighting, noise, and ventilation) can reduce stress and increase worker performance.

Problems associated with extended use of a terminal or PC are referred to as video operator's distress syndrome, or VODS. As the number of repetitive-stress injuries (RSIs) increased for knowledge workers, workstation ergonomics became an increasingly important issue for corporate productivity. A poorly designed workplace has the potential to cause cumulative trauma disorder (CTD), a condition that can lead to a permanent disability of motor skills.

The PC can be an invaluable tool in the workplace or it can be a serious diversion. These diversions may include sending and receiving frivolous e-mail, engaging in nonbusiness Internet browsing, gaming on company time, and toying with the technology.

7-3 THE PRIVACY OF PERSONAL INFORMATION

Thousands of public- and private-sector organizations maintain data on individuals, including tax, education, medical, driver and crime, census, insurance, lifestyle, credit, Web, employment, financial, and other data.

The dominant ethical issue is the privacy of personal information. As automation continues to enrich our lives, it also opens the door for abuses of personal information. Personal information has become the product of a growing industry. Not only are the people involved not asked for permission to use their data, they seldom are told that their personal information is being sold. The mere fact that personal information is so readily available has opened the door for many new applications of information technology. For example, companies examine and evaluate personal data to create a surprisingly comprehensive personal profile. This process is called profiling. Cookies containing personal information are passed freely around the Internet. Computer monitoring enables the ongoing monitoring of worker activities and the measurement of worker performance.

The ethical questions surrounding the privacy of personal information are complex and difficult to resolve.

7-4 COMPUTER AND IT CRIME

Computer and IT crime, called cybercrime, is a relatively recent phenomenon. Therefore, laws governing information technology are few, and those that do exist are subject to a variety of interpretations.

Crimes that create havoc inside a computer include computer viruses, such as those that result in denial of service. A Trojan horse is any seemingly useful program that hides a computer virus or a logic bomb, which is a set of instructions that is executed when a set of conditions are met. The primary sources of computer viruses are the Internet (e-mail and downloads), common interchangeable disks, and computer networks. Antivirus programs exist to help fight viruses.

Most computer crimes fall under the umbrella of fraud and embezzlement. Fraud involves intentional deception for the purpose of personal gain. Embezzlement concerns the misappropriation of funds or theft. The salami technique and data diddling are used for fraud and embezzlement.

In computer matching, separate databases are examined and individuals common to both are identified

Negligence or incompetence can be just as bad for an organization as a premeditated crime. Such crimes usually are a result of poor input/output control.

Many computer and IT crimes involve unauthorized access to the Internet and networking. Overzealous hackers and crackers often leave evidence of unlawful entry called a footprint. One of the major motivators for unauthorized access is industrial espionage. The Internet's cybercops, the CERT/CC are ever vigilant in the fight against Internet crimes. Unauthorized entry to a computer network is achieved in several ways, including masquerading, tailgating, a trap door, scanning, and superzapping.

The Internet has become a tool for crime where con artists have updated traditional scams for use in the cyberworld and have created new technology-based crimes such as pumping and dumping and cyberstalking.

Identity theft, one of the fastest growing criminal activities, is a crime that involves the abuse of personal information.

Computers and IT are used in support of many criminal enterprises, including money laundering.

Crimes that involve the theft of software or intellectual property often leave evidence of the unlawful duplication of proprietary software, called software piracy, and pilferage. The sharing of copyrighted MP3 and movie files over the Internet is a crime.

There is a growing black market for PCs and computer parts and for data and information, especially that which can be used for identity theft.