Computing-related legislation

Question 1

What is the purpose of the Data Protection Act 1998

Answer 1

Sets out the requirements for the collection, processing and storage of data about individuals

Question 2

What are the eight printables covered in the Data Protection Act 1998

Answer 2

• Data should be processed fairly and lawfully
• data should be only used for the purpose specified (should not be disclosed to other parties)
• Data should be relevant and not excessive
• Data should be accurate and kept up to date
• Data should only be kept for as long as necessary
  -people have the right to access data kept about them
• Security must be set in place to prevent unauthorised access
• Data must not transferred out of the EU

Question 3

What are the exceptions of the Data Protection Act 1998

Answer 3

• National security and crime
• Taxation: data used to assist with the collection of taxes
• Domestic purposes: any data used solely for the individual, family or household

Question 4

Outline the GDPR (general data protection regulation) updates to the DPA, 2018

Answer 4

• lawfullness, fairness and transparency
• Purpose limitation
• Data minimisation
• Accuracy
• Storage limitation
• Security
• Accountability

Question 5

Describe lawfullness, fairness and transparency (DPA,2018)

Answer 5

• Valid reasons for collecting personal data
• Data not used to break other laws
• Personal data used fairly
• The person/ organisation collecting the data must be open and honest

Question 6

Describe purpose limitation (DPA,2018)

Answer 6

• The purpose for collecting data must be clear from the start
• Purpose must be specified and documented
• Data must not used for a new purpose (if so additional consent must be obtained)

Question 7

Describe data minimisation (DPA,2018)

Answer 7

• Data being processed must be adequate, relevant and limited to what is necessary

Question 8

Describe accuracy (DPA,2018)

Answer 8

• Data must not be incorrect or misleading
• Data must be kept up to date
• Incorrect/misleading data must be corrected or erased

Question 9

Describe storage limitations (DPA,2018)

Answer 9

• Data must not be kept for longer than necessary
• How long data is kept must be specified in a statement
• There must be a periodic review of data held, no longer required data is erased
• Individuals have the right to have data erased
• Data can be kept for longer if it is only kept for public interest archives(i.e. historical research)

Question 10

Describe security (DPA, 2018)

Answer 10

There must be adequate security measures to protect data held

Question 11

Describe accountability (DPA,2018)

Answer 11

The data controller, and all staff within the organisation, must take responsibility for how the data is used and for compliance with the other principles

Question 12

What is The Computer Misuse Act 1990

Answer 12

This makes unauthorised access to computer systems illegal

Question 13

how does the computer misuse act provide protection to users

Answer 13

Under the provision of the Act the following are criminal offences

• unauthorised access to computer materials (hacking)
• unauthorised access with intent to commit or facilitate further offences (stealing money)
• unauthorised access with intent to harm or break a computer system (distributing viruses)

Question 14

Describe the different types of hackers

Answer 14

Black hat hackers - Intent on causing damage (criminal activity/illegal)

White hat hackers - ethical hackers often employed by service holders to seek vulnerabilities so they can be fixed (legal)

Grey hat hackers - seek out vulnerabilities in a system in order to report them to the system owner for a fee. non-payment may lead them to exploit the vulnerability (illegal)

Question 15

What are the five features used to minimise the threat of hackers

Answer 15

• Digital signatures
• Secure Sockets Layer (SSL)
• User IDs, passwords and access rights
• Anti-malware software
• Firewalls

Question 16

What is a digital signature

Answer 16

A digital code that is attached to an electronically transmitted document to verify the its contents and the sender’s identity

Question 17

What is a Secure Sockets Layer

Answer 17

A security technology for establishing an encrypted link between a serve and a client.

Question 18

What is a firewall

Answer 18

Software application or hardware that sit between the system and external networks to prevent certain types of data and users accessing the system.
- They can also be a set to simply deny access to all external users

Question 19

What is Denial of Service (DoS)

Answer 19

An attack meant to shut down a machine or network by overwhelming it with requests, making it inaccessible to its intended users
- Firewalls are the principal defence against this

Question 20

What is the Copyright, Design and patents Act 1988

Answer 20

Protects the intellectual property of an individual or organisation

Question 21

What is outlined under the Copyright, Design and Patents Act 1988

Answer 21

• Copyright refers to the automatic protection given to different types of intellectual property
• Under the Act it is illegal to copy, modify or distribute any copyright
  material, without the relevant permission.
• The Act also covers patents, which is the intellectual property associated
  with new inventions/ products
• Unlike copyright, patents have to be applied for and are not automatic.

Question 22

what is peer-to-peer streaming

Answer 22

Allows data to be shared directly between lots of different users/clients rather than downloading from a central server

Question 23

What is proprietary software

Answer 23

The owner of the copyright material retains intellectual property rights
- The source code of the software is kept secret and is protected by copyright law

Question 24

What is open source software

Answer 24

The original source code is made freely available and may be redistributed and modified
- Developed under open standards

Question 25

Outline the features of open source software

Answer 25

• Access to the source code
• May be free of charge or very cheap
• Users can modify the software
• Can be installed on as many computer as necessary
• No one is responsible for any problems with the software
• Usually only community support
• Often very high quality because of the community of highly skilled developers

Question 26

Outline the features of proprietary software

Answer 26

• No access to source code
• Almost always some cost involved
• Copyright law means users cannot modify the software
• Extra licences must normally be obtained before installing on additional computers
• Full support from the software developer - fully tested before release, regular updates to fix bugs and improve features, faulty software replaced
• Commercial and community support available
• High- quality software because a lot of money is spent developing it

Question 27

What are creative commons licences

Answer 27

An organisation that are less restrictive than proprietary licences. For example:
- public domain : which has no restrictions on use for any purpose
- attribution : where the work can be freely reproduced but the original creator must be credited
- attribution non-commercial : where the work can only be used for non-commercial purposes

Question 29

Examples of the powers the certain public bodies have

Answer 29

• Demand internet service providers provide access to a customer’s communications
• Allows mass surveillance of communications
• demand ISPs fit equipment to facilitate surveillance
• demand access be granted to protected info
• allow monitoring of an individual’s internet activities