Cryptographers Have an Ethics Problem (MIT Review)

Cryptographers Have an Ethics Problem (MIT Review)


Cryptographers Have an Ethics Problem (MIT Review)

Posted: 16 Sep 2013 06:44 AM PDT

Eugene Spafford, executive director of the CERIAS institute at Purdue University and an officer of the ACM, cautioned me against reaching simplistic ethical judgments. He said if a person is hacking computers and stealing messages to prevent a terrorist attack, they're not necessarily in violation of the society's code, which allows for "varying interpretations." More information »

Prof. Spafford Receives Lifetime Achievement Award

Posted: 16 Sep 2013 06:40 AM PDT

Press Release - 09/13/2013 (ISC) Security Congress 2013 – Chicago, IL, September 25, 2013 — (ISC) ("ISC-squared"), the world's largest not-for-profit information security professional body and administrators of the CISSP®, announced today that its Board of Directors has selected Dr. Eugene H. Spafford, Ph.D., CISSP, Fellow of the ACM, the AAAS, the IEEE and (ISC)2 and Distinguished Fellow of ISSA, as the recipient of the 2013 (ISC)2 Harold F. Tipton Lifetime Achievement Award, and Diana-Lynn Contesti, CISSP-ISSAP, ISSMP, CSSLP, SSCP, for the 2013 James R. Wade (ISC)2 Service Award. The prestigious Harold F. Tipton Lifetime Achievement Award recognizes an individual for lifelong contributions to the advancement of the information security profession. Named after Harold F. Tipton, CISSP, an industry pioneer and (ISC)2 co-founder, the award is given annually to recognize those who have dedicated themselves to carrying on Mr. Tipton's legacy of passionately promoting and enhancing the information security profession. An innovator and advocate for both technology and professionalism, Dr. Eugene H. Spafford has more than 30 years of experience in computing as a student, researcher consultant and professor, including 26 years as a professor of Computer Sciences at Purdue University. He is also the founder and Executive Director of the Center for Education and Research in Information Assurance and Security. Some of his work is at the foundation of current security practice, including intrusion detection – such as the first free, over the Internet intrusion detection system - Tripwire®, firewalls, and whitelisting. His most recent work has been in cyber security policy, forensics, and future threats. In 2012, he was named as one of Purdue's inaugural Morrill Professors — the university's highest award for the combination of scholarship, teaching, and service. Among many other activities, he is currently the chair of the Public Policy Council of ACM (USACM), is a member of the EPIC Advisory Board, and is editor-in-chief of the journal Computers & Security. In addition to being the selected as this year's Harold F. Tipton Award recipient, Dr. Spafford was just inducted to the National Cyber Security Hall of Fame. "Dr. Spafford's innovations and advocacy have shaped the information security industry, and we are proud to recognize him for his body of work and lifelong service to our field," commented Board Awards Committee chair Prof. Corey Schou, Fellow of (ISC)2, CSSLP. "From being the first to analyze the Morris worm to having a prominent role in the Usenet backbone cabal, his work has propelled us light years ahead of where we would be without his contributions." "I am honored to receive this prestigious and respected award," said Dr. Spafford. "Organizations like (ISC)2 remind us of the evolution the information security industry has seen over the last 30 years. I hope my work continues to contribute to that evolution and serves to bring greater awareness of the essential role information security plays in our society." The annual James R. Wade (ISC)2 Service Award recognizes volunteers who have made a sustained and valuable contribution to (ISC)2. The award's namesake was instrumental in shaping (ISC)2 and the information security profession through his active and tireless volunteerism. With over 25 years of experience in information security, Diana-Lynn Contesti is the Chief Information Security Officer (CISO) for a Global Fortune 100 company headquartered in Luxembourg. In this role, Diana provides oversight on the information security program and develops standards and guidelines that are used internationally. Prior to joining the global staff, she provided Information security best practices to the local organization, including developing policies, security awareness, forensic investigations, and data classification schemas. Diana has delivered many presentations on the security related to SCADA systems, as well as APT, UNIX security and securing Active Directory and is a published author of the Official (ISC)2 Guide to the SSCP® CBK® (first edition). An active (ISC)2 volunteer for 15 years, Ms. Contesti is a former Chair and current member of the (ISC)2 Board of Directors, serves on the (ISC)2 Application Security Advisory Board (ASAB) and recently championed the formation of the (ISC)2 Women in Security initiative, aimed at providing greater support for women in security and increasing awareness of information security as a career option for women at all stages of their lives. Additionally, Ms. Contesti has been a member of the item writing team for the past seventeen years and is an outgoing member of the North American Advisory Board (NAAB). "I knew Mr. Wade personally for many years, and I saw the change he inspired in our organization and the impact he had on the profession," reflected Ms. Contesti. "The honor I feel for being selected to receive this award in his namesake is indescribable. I am grateful to have the opportunity to give back to an industry and an organization that has given me so much." "Ms. Contesti's passion for the mission of (ISC)2 is an inspiration," added Schou. "This award does not begin to demonstrate our gratitude for her contributions, both to the organization and the members we serve. "Both Dr. Spafford's and Ms. Contesti's are inspiring examples for established and aspiring information security professionals alike. We applaud them for their achievements and devotion to furthering the information security profession and to inspiring a safe and secure cyber world for all." For more information on (ISC)2's awards programs, please visit www.isc2.org/awards. About (ISC)2 (ISC)2 is the largest not-for-profit membership body of certified information and software security professionals worldwide, with over 90,000 members in more than 135 countries. Globally recognized as the Gold Standard, (ISC)2 issues the Certified Information Systems Security Professional (CISSP) and related concentrations, as well as the Certified Secure Software Lifecycle Professional (CSSLP), the Certified Cyber Forensics Professional (CCFPSM), Certified Authorization Professional (CAP), and Systems Security Certified Practitioner (SSCP) credentials to qualifying candidates. (ISC)2's certifications are among the first information technology credentials to meet the stringent requirements of ISO/IEC Standard 17024, a global benchmark for assessing and certifying personnel. (ISC)2 also offers education programs and services based on its CBK®, a compendium of information and software security topics. More information is available at www.isc2.org.

0 comments:

Post a Comment