Please enable JavaScript.
Coggle requires JavaScript to display documents.
M2 Part F: Data Security and Risk Management p.149 (Data Security and…
M2 Part F: Data Security and Risk Management p.149
Data Security and Privacy p.149
Ethical, regulatory and legal issues
Richard and King:
privacy is key rule
right for private and confidential information
transparency to avoid abuse of power
data can compromise ability to define identity
Ethics and Data Security
Privacy, confidentiality, transparency, identity and free choice are important values
Internet Secuirty
Conectedness with others
exposure to threats, eg. data theft, malicious emails
Train staff in safe practices
Policies in place
Internet secuirty software
Website Security p. 154
Denial of service DoS Attack
Multiple frequent attacks to access site
Distributed denial of service DDoS Attack
Slave computers attack the website
Communication & Social Media
Good business processes
Phishing scams
Doxxing
Data Breach:
Loss in competitive advantage
Loss in reputation
Cloud Computing p. 157
Better security than onsite
Key Issues
Security
Location Jurisdiction, Ownership and privacy
Performance: auto scaling, duplicates of data base
Risk analysis
Security and Blockchain p. 161
Sybil attacks
Almost impossible for data to be altered
Outsourced Security p. 162
Protect and prevent technologies
Detect and respond technologies
European union GGPR
We own our data, not the companies
We control our own data
They have to tell us why our data is being kept and how long
We can request a copy of the data and can request our data to be deleted
We can request our data to be transferred to another organisation
We have the right contest any decision that arises from an algorithm
Internet Security
Multi factor authentication
Biometrics authentication
Advanced authentication