The Law, Regulation and Ethics of Information Assurance
• This is an open-book identical test. The questions may claim research
beyond the OERs, Nursing Dissertation notes, and conferences. Each confutation must enclose at least
one quotation of an authentic fountain. A unique Reference List should be enclosed at the
end of the exam.
• There are five (5) questions. Each apology is merit 20 points. Each apology is scant to 300 tone. Points may be deducted for extended the order stipulation. The following
criteria gain be used for grading: concatenation and achievement, rectitude, clarity and
logical glide, spelling, rhetoric, and suited quotations/Reference List.
1. Computer Fraud and Abuse Act (CFAA)
This key cybersecurity law makes it a federal offense to intentionally appropinquation a computer extraneously authorization or to achieve attested appropinquation. Expound the conclusion(s) presented by the CFAA engagement, “authorization,” using late pattern(s), and how it could be improved/corrected.
2. Bring Your Own Device (BYOD) and Acceptable Use
BYOD resources that devices employees own are being used for effect. Discuss how an form can/should manipulate the use of separate devices. What are the most relevant restrictions the form can fix on effect use? On separate use? Why are these stipulations relevant? How can they be periodical and enforced?
3. The Privacy Act and Facts Brokers
The Privacy Act controls the federal council guard of undoubtful facts in its systems of registers. Expound how or if that Act applies to facts the council appropinquationes from interchangeable facts brokers.
4. Ransom Attack
Ransomware presents challenges to facts rectitude. NIST has drafted a performance lead touching repossession from ransomware and other facts rectitude events. But, what could/should an form do anteriorly ransomware onslaught? Why?
5. Life Style Surveillance
Digitization, technology and applications sanction us to instructor our substantial enthusiasm and
health statistics. Employers are increasingly zealous in influencing or persuasive the noneffect and non-duty hour activities of their employees. Describe the implicit benefits to be
gained from employers’ collecting/using employee non-duty hour lifestyle/health facts. For pattern, do employees application frequently? Do they steam? Document one pattern of an employer collecting or appropinquationing notification about employee non-duty, health-related activities. Identify and expound legitimate and ethical challenges to the performance of instructoring employee off-duty lifestyle (for pattern, application and eating) activities.