Home

Computer Security Research with Human Subjects: Risks, Benefits and Informed Consent

Maritza Lupe Johnson; Steven Michael Bellovin; Angelos D. Keromytis

Title:
Computer Security Research with Human Subjects: Risks, Benefits and Informed Consent
Author(s):
Johnson, Maritza Lupe
Bellovin, Steven Michael
Keromytis, Angelos D.
Date:
Type:
Articles
Department:
Computer Science
Permanent URL:
Part Number:
7126
Book/Journal Title:
Financial Cryptography and Data Security: FC 2011 Workshops, RLCPS and WECSR 2011, Rodney Bay, St. Lucia, February 28 - March 4, 2011: Revised Selected Papers
Book Author:
Danezis, George
Publisher:
Springer
Publisher Location:
New York
Abstract:
Computer security research frequently entails studying real computer systems and their users; studying deployed systems is critical to understanding real world problems, so is having would-be users test a proposed solution. In this paper we focus on three key concepts in regard to ethics: risks, benefits, and informed consent. Many researchers are required by law to obtain the approval of an ethics committee for research with human subjects, a process which includes addressing the three concepts focused on in this paper. Computer security researchers who conduct human subjects research should be concerned with these aspects of their methodology regardless of whether they are required to by law, it is our ethical responsibility as professionals in this field. We augment previous discourse on the ethics of computer security research by sparking the discussion of how the nature of security research may complicate determining how to treat human subjects ethically. We conclude by suggesting ways the community can move forward.
Subject(s):
Computer science
Publisher DOI:
http://dx.doi.org/10.1007/978-3-642-29889-9_11
Item views:
110
Metadata:
text | xml

In Partnership with the Center for Digital Research and Scholarship at Columbia University Libraries/Information Services | Terms of Use