Legal and Regulatory Framework of Security



This course considers the interaction between law and technology. It aims at giving students an appreciation of the regulatory, legal and ethical issues surrounding the use of information systems with emphasis on security issues. Computer specialists are also becoming involved in legal issues such as privacy and data protection or cybercrime. The goal of this course is to help security specialists to understand and meet these emerging needs.

Upon completion of this course, the students will be able to:

  • Identify the key regulatory, legal and ethical issues related to information systems, and in particular to security, and to deal with them from a legal point of view.
  • Understand the adequacy and relevance of the existing law and the regulatory frameworks in information technology and identify possible weaknesses and deficiencies.
  • To understand and integrate their computer and security background into a general social, economic and institutional context.

Course Contents

  • Introduction to Law of Information Society. Context, Basic notions, principles and institutions.
  • Security – Confidentiality/Secrecy-Privacy and Data Protection. Legal aspects of information and systems security
  • Data Protection Law : European and National Regulatory Framework
  • Privacy Enhancing Technologies/ Privacy by design and Privacy by Default
  • Freedom of speech, rights and powers in the Information Society.
  • Cybercrime and Computer crime: ethical, social, legal and economic aspects. Penal law and Information and Communication Technologies. Computer/Internet Forensics
  • Intellectual property in the Information Society: software and database protection, open source, licenses, issues relating to peer to peer.
  • Identity and Authentication: Electronic signatures. Identity in Web- Domain names