[Next] [Prev] [Contents]


Introduction


The purpose of this article is to introduce some of the principal legal and ethical questions related to cryptography and information security. The focus will be on international cryptography infrastructure, electronic commerce, and digital copyright issues. This paper is prepared for the Network Security Seminar at the Helsinki University of Technology.

In addition to legal and ethical aspects, many of these issues have social implications. Should the encryption standards be imposed in a top-down manner? How to create flexible and global environment for electronic business? Who has the right to monitor and revoke user privileges and access rights? Who protects individual's rights in cyberspace?

There are many other important issues that are not covered in this paper. The wide range of problems related with anonymity and privacy are handled in another presentation of the seminar. It is important to recognise that we will be increasingly hindered in our ability to take advantage of network technologies unless there is adequate accountability for user actions and abilities. Lack of authentication and accountability may greatly reduce the integrity of our computer systems, but high level of surveillance also restricts our privacy. The balance between security and privacy rights is very delicate.

Safeguarding networked information systems and questions regarding unauthorised use of computer resources (break-ins, viruses, computer crime etc.) are out of the scope of this study.


[Next] [Prev] [Contents]


mtu@cs.hut.fi - 04 DEC 95