https://wiki.expertiza.ncsu.edu/api.php?action=feedcontributions&feedformat=atom&user=GsdedeugExpertiza_Wiki - User contributions [en]2026-05-17T06:14:46ZUser contributionsMediaWiki 1.41.0https://wiki.expertiza.ncsu.edu/index.php?title=CSC_379:Week_5,_Group_5&diff=2135CSC 379:Week 5, Group 52007-08-04T22:32:22Z<p>Gsdedeug: /* What are some ethical concerns of assigning blame for accidents? */</p>
<hr />
<div>=Software Safety: Accident Models - Systems Theory vs. Chain of Events=<br />
'''Skim through the following paper (focus on sections 1, 2.3, and 3, skip figures and tables) entitled [http://sunnyday.mit.edu/papers/tdsc.pdf "A Systems-Theoretic Approach to Safety in Software-Intensive Systems"] by Nancy G. Leveson, a Professor of Aeronautics and Astronautics at MIT, then answer the following questions:'''<br />
<br />
The majority of the content you need to form an informed response to the above questions is included in the paper. Bring in outside resources and topics discussed in class lectures as appropriate to support your response.<br />
<br />
<br />
<br />
==What are some shortcomings of traditional methods of accident reporting when applied to complex systems like software systems?==<br />
*Event-chain models tend to stop once something to blame is found. "reports stopped after assigning blame—usually to the operators who interacted with the software—and never got to the root of why the accident occurred"<br />
*Event chain models were not designed to handle complex systems such as software. "in dealing with software in safety-critical systems is the result of inappropriately attempting to extend the techniques that were successful in simpler, electromechanical systems and were based on models of accident causation that no longer apply"<br />
**Software can be very complex<br />
<br />
==How does the STAMP model improve accident prevention efforts? Explain some general concepts of the model.==<br />
"Systems theory allows more complex relationships between events to be considered"<br />
<br />
"Accident models based on systems theory consider accidents as arising from the interactions among system components and usually do not specify single causal variables or factors"<br />
<br />
The STAMP model provides more information in terms of how to prevent future accidents rather then trying to place blame.<br />
<br />
Hazard analysis using STAMP rather then traditional methods can prevent accidents from happening in software based systems<br />
<br />
==Why was the Milstar satellite damaged although the components of the Inertial Navigation Unit (INU) operated correctly with respect to the instructions, including constraints, and data provided? Why would use of the STAMP model more thoroughly prevent problems such as those that occurred with the INU compared to traditional accident reporting?==<br />
<br />
==What are some appropriate applications of the STAMP model (both current and past)? Explain.==<br />
The STAMP model is especially useful in analyzing complex socio-technical and software-based systems where accidents can occur due to complex human decision making, component interaction rather than single component failure, and accidents that occur because slow shifts toward an accident prone environment.<br />
<br />
===Walkerton, Ontario: Water Contamination Accident===<br />
<br />
"The stage for the accident had been set over a large number of years by actions at all levels of the socio-technical system structure."[2]<br />
<br />
"Degradation in the water safety control structure had occurred over time, without any particular<br />
single decision to do so but simply as a series of decisions that moved the public water system<br />
slowly toward a state of high risk where any slight error or deviation from the normal could lead<br />
to a major accident. Degradation of the safety control structure may be related to asynchronous<br />
evolution, where one part of a system changes without the related necessary changes in other<br />
parts. Changes to subsystems may be carefully designed, but consideration of their effects on<br />
other parts of the system, including the control aspects, may be neglected or inadequate."[2]<br />
<br />
[http://archives.cnn.com/2000/HEALTH/05/26/canada.ecoli.01/ CNN Article on the Outbreak]<br />
<br />
===The Mars Polar Lander Loss===<br />
"The software did not adequately control the descent speed of the aircraft - it misinterpreted noise from a Hall effect sensor as an indication the spacecraft had reached the surface of the planet"[1]<br />
<br />
The components did not fail in terms of not satisfying their specified requirements, the failure occurred due to an unplanned effect of the system's interacting components.<br />
<br />
[http://www.cnn.com/TECH/space/9909/30/mars.metric.02/ CNN Article on the Mars Polar Lander Loss]<br />
<br />
===The Space Shuttle Challenger===<br />
The O-rings did not adequately control propellant gas release and there were inadequate controls in the launch-decision process. The failures occurred due to a complex socio-technical interaction.<br />
<br />
[http://history.nasa.gov/rogersrep/genindex.htm The Rogers Commission Report]<br />
<br />
==What are some ethical concerns of assigning blame for accidents?==<br />
An investigation into an accident has two main objectives: <br />
<br />
1. to assign blame/responsibility for the accident<br />
<br />
2. to prevent future accidents<br />
<br />
An ethical dillema may occur if, based on chain-of-event reasoning, blame is assigned to a "root cause" without taking into account for instance a situation that had become slowly unstable and anything could have set off an accident.<br />
<br />
==Outside Links==<br />
1. [http://sunnyday.mit.edu/papers/tdsc.pdf "A Systems-Theoretic Approach to Safety in Software-Intensive Systems"] - Nancy G. Leveson<br />
<br />
2. [http://shemesh.larc.nasa.gov/iria03/p13-leveson.pdf Applying STAMP in Accident Analysis] - Nancy Leveson, Mirna Daouk, Nicolas Dulac, and Karen Marais<br />
<br />
==Relevant Class Website Links==<br />
* [http://ethics.csc.ncsu.edu/risks/safety/ http://ethics.csc.ncsu.edu/risks/safety/]</div>Gsdedeughttps://wiki.expertiza.ncsu.edu/index.php?title=CSC_379:Week_5,_Group_5&diff=2134CSC 379:Week 5, Group 52007-08-04T22:28:13Z<p>Gsdedeug: /* What are some ethical concerns of assigning blame for accidents? */</p>
<hr />
<div>=Software Safety: Accident Models - Systems Theory vs. Chain of Events=<br />
'''Skim through the following paper (focus on sections 1, 2.3, and 3, skip figures and tables) entitled [http://sunnyday.mit.edu/papers/tdsc.pdf "A Systems-Theoretic Approach to Safety in Software-Intensive Systems"] by Nancy G. Leveson, a Professor of Aeronautics and Astronautics at MIT, then answer the following questions:'''<br />
<br />
The majority of the content you need to form an informed response to the above questions is included in the paper. Bring in outside resources and topics discussed in class lectures as appropriate to support your response.<br />
<br />
<br />
<br />
==What are some shortcomings of traditional methods of accident reporting when applied to complex systems like software systems?==<br />
*Event-chain models tend to stop once something to blame is found. "reports stopped after assigning blame—usually to the operators who interacted with the software—and never got to the root of why the accident occurred"<br />
*Event chain models were not designed to handle complex systems such as software. "in dealing with software in safety-critical systems is the result of inappropriately attempting to extend the techniques that were successful in simpler, electromechanical systems and were based on models of accident causation that no longer apply"<br />
**Software can be very complex<br />
<br />
==How does the STAMP model improve accident prevention efforts? Explain some general concepts of the model.==<br />
"Systems theory allows more complex relationships between events to be considered"<br />
<br />
"Accident models based on systems theory consider accidents as arising from the interactions among system components and usually do not specify single causal variables or factors"<br />
<br />
The STAMP model provides more information in terms of how to prevent future accidents rather then trying to place blame.<br />
<br />
Hazard analysis using STAMP rather then traditional methods can prevent accidents from happening in software based systems<br />
<br />
==Why was the Milstar satellite damaged although the components of the Inertial Navigation Unit (INU) operated correctly with respect to the instructions, including constraints, and data provided? Why would use of the STAMP model more thoroughly prevent problems such as those that occurred with the INU compared to traditional accident reporting?==<br />
<br />
==What are some appropriate applications of the STAMP model (both current and past)? Explain.==<br />
The STAMP model is especially useful in analyzing complex socio-technical and software-based systems where accidents can occur due to complex human decision making, component interaction rather than single component failure, and accidents that occur because slow shifts toward an accident prone environment.<br />
<br />
===Walkerton, Ontario: Water Contamination Accident===<br />
<br />
"The stage for the accident had been set over a large number of years by actions at all levels of the socio-technical system structure."[2]<br />
<br />
"Degradation in the water safety control structure had occurred over time, without any particular<br />
single decision to do so but simply as a series of decisions that moved the public water system<br />
slowly toward a state of high risk where any slight error or deviation from the normal could lead<br />
to a major accident. Degradation of the safety control structure may be related to asynchronous<br />
evolution, where one part of a system changes without the related necessary changes in other<br />
parts. Changes to subsystems may be carefully designed, but consideration of their effects on<br />
other parts of the system, including the control aspects, may be neglected or inadequate."[2]<br />
<br />
[http://archives.cnn.com/2000/HEALTH/05/26/canada.ecoli.01/ CNN Article on the Outbreak]<br />
<br />
===The Mars Polar Lander Loss===<br />
"The software did not adequately control the descent speed of the aircraft - it misinterpreted noise from a Hall effect sensor as an indication the spacecraft had reached the surface of the planet"[1]<br />
<br />
The components did not fail in terms of not satisfying their specified requirements, the failure occurred due to an unplanned effect of the system's interacting components.<br />
<br />
[http://www.cnn.com/TECH/space/9909/30/mars.metric.02/ CNN Article on the Mars Polar Lander Loss]<br />
<br />
===The Space Shuttle Challenger===<br />
The O-rings did not adequately control propellant gas release and there were inadequate controls in the launch-decision process. The failures occurred due to a complex socio-technical interaction.<br />
<br />
[http://history.nasa.gov/rogersrep/genindex.htm The Rogers Commission Report]<br />
<br />
==What are some ethical concerns of assigning blame for accidents?==<br />
An investigation into an accident has two main objectives: <br />
<br />
1. to assign blame/responsibility for the accident<br />
<br />
2. to prevent future accidents<br />
<br />
==Outside Links==<br />
1. [http://sunnyday.mit.edu/papers/tdsc.pdf "A Systems-Theoretic Approach to Safety in Software-Intensive Systems"] - Nancy G. Leveson<br />
<br />
2. [http://shemesh.larc.nasa.gov/iria03/p13-leveson.pdf Applying STAMP in Accident Analysis] - Nancy Leveson, Mirna Daouk, Nicolas Dulac, and Karen Marais<br />
<br />
==Relevant Class Website Links==<br />
* [http://ethics.csc.ncsu.edu/risks/safety/ http://ethics.csc.ncsu.edu/risks/safety/]</div>Gsdedeughttps://wiki.expertiza.ncsu.edu/index.php?title=CSC_379:Week_5,_Group_5&diff=2133CSC 379:Week 5, Group 52007-08-04T22:27:56Z<p>Gsdedeug: /* What are some ethical concerns of assigning blame for accidents? */</p>
<hr />
<div>=Software Safety: Accident Models - Systems Theory vs. Chain of Events=<br />
'''Skim through the following paper (focus on sections 1, 2.3, and 3, skip figures and tables) entitled [http://sunnyday.mit.edu/papers/tdsc.pdf "A Systems-Theoretic Approach to Safety in Software-Intensive Systems"] by Nancy G. Leveson, a Professor of Aeronautics and Astronautics at MIT, then answer the following questions:'''<br />
<br />
The majority of the content you need to form an informed response to the above questions is included in the paper. Bring in outside resources and topics discussed in class lectures as appropriate to support your response.<br />
<br />
<br />
<br />
==What are some shortcomings of traditional methods of accident reporting when applied to complex systems like software systems?==<br />
*Event-chain models tend to stop once something to blame is found. "reports stopped after assigning blame—usually to the operators who interacted with the software—and never got to the root of why the accident occurred"<br />
*Event chain models were not designed to handle complex systems such as software. "in dealing with software in safety-critical systems is the result of inappropriately attempting to extend the techniques that were successful in simpler, electromechanical systems and were based on models of accident causation that no longer apply"<br />
**Software can be very complex<br />
<br />
==How does the STAMP model improve accident prevention efforts? Explain some general concepts of the model.==<br />
"Systems theory allows more complex relationships between events to be considered"<br />
<br />
"Accident models based on systems theory consider accidents as arising from the interactions among system components and usually do not specify single causal variables or factors"<br />
<br />
The STAMP model provides more information in terms of how to prevent future accidents rather then trying to place blame.<br />
<br />
Hazard analysis using STAMP rather then traditional methods can prevent accidents from happening in software based systems<br />
<br />
==Why was the Milstar satellite damaged although the components of the Inertial Navigation Unit (INU) operated correctly with respect to the instructions, including constraints, and data provided? Why would use of the STAMP model more thoroughly prevent problems such as those that occurred with the INU compared to traditional accident reporting?==<br />
<br />
==What are some appropriate applications of the STAMP model (both current and past)? Explain.==<br />
The STAMP model is especially useful in analyzing complex socio-technical and software-based systems where accidents can occur due to complex human decision making, component interaction rather than single component failure, and accidents that occur because slow shifts toward an accident prone environment.<br />
<br />
===Walkerton, Ontario: Water Contamination Accident===<br />
<br />
"The stage for the accident had been set over a large number of years by actions at all levels of the socio-technical system structure."[2]<br />
<br />
"Degradation in the water safety control structure had occurred over time, without any particular<br />
single decision to do so but simply as a series of decisions that moved the public water system<br />
slowly toward a state of high risk where any slight error or deviation from the normal could lead<br />
to a major accident. Degradation of the safety control structure may be related to asynchronous<br />
evolution, where one part of a system changes without the related necessary changes in other<br />
parts. Changes to subsystems may be carefully designed, but consideration of their effects on<br />
other parts of the system, including the control aspects, may be neglected or inadequate."[2]<br />
<br />
[http://archives.cnn.com/2000/HEALTH/05/26/canada.ecoli.01/ CNN Article on the Outbreak]<br />
<br />
===The Mars Polar Lander Loss===<br />
"The software did not adequately control the descent speed of the aircraft - it misinterpreted noise from a Hall effect sensor as an indication the spacecraft had reached the surface of the planet"[1]<br />
<br />
The components did not fail in terms of not satisfying their specified requirements, the failure occurred due to an unplanned effect of the system's interacting components.<br />
<br />
[http://www.cnn.com/TECH/space/9909/30/mars.metric.02/ CNN Article on the Mars Polar Lander Loss]<br />
<br />
===The Space Shuttle Challenger===<br />
The O-rings did not adequately control propellant gas release and there were inadequate controls in the launch-decision process. The failures occurred due to a complex socio-technical interaction.<br />
<br />
[http://history.nasa.gov/rogersrep/genindex.htm The Rogers Commission Report]<br />
<br />
==What are some ethical concerns of assigning blame for accidents?==<br />
An investigation into an accident has two main objectives: <br />
<br />
1. to assign blame/responsibility for the accident<br />
2. to prevent future accidents<br />
<br />
==Outside Links==<br />
1. [http://sunnyday.mit.edu/papers/tdsc.pdf "A Systems-Theoretic Approach to Safety in Software-Intensive Systems"] - Nancy G. Leveson<br />
<br />
2. [http://shemesh.larc.nasa.gov/iria03/p13-leveson.pdf Applying STAMP in Accident Analysis] - Nancy Leveson, Mirna Daouk, Nicolas Dulac, and Karen Marais<br />
<br />
==Relevant Class Website Links==<br />
* [http://ethics.csc.ncsu.edu/risks/safety/ http://ethics.csc.ncsu.edu/risks/safety/]</div>Gsdedeughttps://wiki.expertiza.ncsu.edu/index.php?title=CSC_379:Week_5,_Group_5&diff=2132CSC 379:Week 5, Group 52007-08-04T22:11:20Z<p>Gsdedeug: /* Walkerton, Ontario: Water Contamination Accident */</p>
<hr />
<div>=Software Safety: Accident Models - Systems Theory vs. Chain of Events=<br />
'''Skim through the following paper (focus on sections 1, 2.3, and 3, skip figures and tables) entitled [http://sunnyday.mit.edu/papers/tdsc.pdf "A Systems-Theoretic Approach to Safety in Software-Intensive Systems"] by Nancy G. Leveson, a Professor of Aeronautics and Astronautics at MIT, then answer the following questions:'''<br />
<br />
The majority of the content you need to form an informed response to the above questions is included in the paper. Bring in outside resources and topics discussed in class lectures as appropriate to support your response.<br />
<br />
<br />
<br />
==What are some shortcomings of traditional methods of accident reporting when applied to complex systems like software systems?==<br />
*Event-chain models tend to stop once something to blame is found. "reports stopped after assigning blame—usually to the operators who interacted with the software—and never got to the root of why the accident occurred"<br />
*Event chain models were not designed to handle complex systems such as software. "in dealing with software in safety-critical systems is the result of inappropriately attempting to extend the techniques that were successful in simpler, electromechanical systems and were based on models of accident causation that no longer apply"<br />
**Software can be very complex<br />
<br />
==How does the STAMP model improve accident prevention efforts? Explain some general concepts of the model.==<br />
"Systems theory allows more complex relationships between events to be considered"<br />
<br />
"Accident models based on systems theory consider accidents as arising from the interactions among system components and usually do not specify single causal variables or factors"<br />
<br />
The STAMP model provides more information in terms of how to prevent future accidents rather then trying to place blame.<br />
<br />
Hazard analysis using STAMP rather then traditional methods can prevent accidents from happening in software based systems<br />
<br />
==Why was the Milstar satellite damaged although the components of the Inertial Navigation Unit (INU) operated correctly with respect to the instructions, including constraints, and data provided? Why would use of the STAMP model more thoroughly prevent problems such as those that occurred with the INU compared to traditional accident reporting?==<br />
<br />
==What are some appropriate applications of the STAMP model (both current and past)? Explain.==<br />
The STAMP model is especially useful in analyzing complex socio-technical and software-based systems where accidents can occur due to complex human decision making, component interaction rather than single component failure, and accidents that occur because slow shifts toward an accident prone environment.<br />
<br />
===Walkerton, Ontario: Water Contamination Accident===<br />
<br />
"The stage for the accident had been set over a large number of years by actions at all levels of the socio-technical system structure."[2]<br />
<br />
"Degradation in the water safety control structure had occurred over time, without any particular<br />
single decision to do so but simply as a series of decisions that moved the public water system<br />
slowly toward a state of high risk where any slight error or deviation from the normal could lead<br />
to a major accident. Degradation of the safety control structure may be related to asynchronous<br />
evolution, where one part of a system changes without the related necessary changes in other<br />
parts. Changes to subsystems may be carefully designed, but consideration of their effects on<br />
other parts of the system, including the control aspects, may be neglected or inadequate."[2]<br />
<br />
[http://archives.cnn.com/2000/HEALTH/05/26/canada.ecoli.01/ CNN Article on the Outbreak]<br />
<br />
===The Mars Polar Lander Loss===<br />
"The software did not adequately control the descent speed of the aircraft - it misinterpreted noise from a Hall effect sensor as an indication the spacecraft had reached the surface of the planet"[1]<br />
<br />
The components did not fail in terms of not satisfying their specified requirements, the failure occurred due to an unplanned effect of the system's interacting components.<br />
<br />
[http://www.cnn.com/TECH/space/9909/30/mars.metric.02/ CNN Article on the Mars Polar Lander Loss]<br />
<br />
===The Space Shuttle Challenger===<br />
The O-rings did not adequately control propellant gas release and there were inadequate controls in the launch-decision process. The failures occurred due to a complex socio-technical interaction.<br />
<br />
[http://history.nasa.gov/rogersrep/genindex.htm The Rogers Commission Report]<br />
<br />
==What are some ethical concerns of assigning blame for accidents?==<br />
<br />
==Outside Links==<br />
1. [http://sunnyday.mit.edu/papers/tdsc.pdf "A Systems-Theoretic Approach to Safety in Software-Intensive Systems"] - Nancy G. Leveson<br />
<br />
2. [http://shemesh.larc.nasa.gov/iria03/p13-leveson.pdf Applying STAMP in Accident Analysis] - Nancy Leveson, Mirna Daouk, Nicolas Dulac, and Karen Marais<br />
<br />
==Relevant Class Website Links==<br />
* [http://ethics.csc.ncsu.edu/risks/safety/ http://ethics.csc.ncsu.edu/risks/safety/]</div>Gsdedeughttps://wiki.expertiza.ncsu.edu/index.php?title=CSC_379:Week_5,_Group_5&diff=2131CSC 379:Week 5, Group 52007-08-04T22:11:07Z<p>Gsdedeug: /* Walkerton, Ontario: Water Contamination Accident */</p>
<hr />
<div>=Software Safety: Accident Models - Systems Theory vs. Chain of Events=<br />
'''Skim through the following paper (focus on sections 1, 2.3, and 3, skip figures and tables) entitled [http://sunnyday.mit.edu/papers/tdsc.pdf "A Systems-Theoretic Approach to Safety in Software-Intensive Systems"] by Nancy G. Leveson, a Professor of Aeronautics and Astronautics at MIT, then answer the following questions:'''<br />
<br />
The majority of the content you need to form an informed response to the above questions is included in the paper. Bring in outside resources and topics discussed in class lectures as appropriate to support your response.<br />
<br />
<br />
<br />
==What are some shortcomings of traditional methods of accident reporting when applied to complex systems like software systems?==<br />
*Event-chain models tend to stop once something to blame is found. "reports stopped after assigning blame—usually to the operators who interacted with the software—and never got to the root of why the accident occurred"<br />
*Event chain models were not designed to handle complex systems such as software. "in dealing with software in safety-critical systems is the result of inappropriately attempting to extend the techniques that were successful in simpler, electromechanical systems and were based on models of accident causation that no longer apply"<br />
**Software can be very complex<br />
<br />
==How does the STAMP model improve accident prevention efforts? Explain some general concepts of the model.==<br />
"Systems theory allows more complex relationships between events to be considered"<br />
<br />
"Accident models based on systems theory consider accidents as arising from the interactions among system components and usually do not specify single causal variables or factors"<br />
<br />
The STAMP model provides more information in terms of how to prevent future accidents rather then trying to place blame.<br />
<br />
Hazard analysis using STAMP rather then traditional methods can prevent accidents from happening in software based systems<br />
<br />
==Why was the Milstar satellite damaged although the components of the Inertial Navigation Unit (INU) operated correctly with respect to the instructions, including constraints, and data provided? Why would use of the STAMP model more thoroughly prevent problems such as those that occurred with the INU compared to traditional accident reporting?==<br />
<br />
==What are some appropriate applications of the STAMP model (both current and past)? Explain.==<br />
The STAMP model is especially useful in analyzing complex socio-technical and software-based systems where accidents can occur due to complex human decision making, component interaction rather than single component failure, and accidents that occur because slow shifts toward an accident prone environment.<br />
<br />
===Walkerton, Ontario: Water Contamination Accident===<br />
<br />
"The stage for the accident had been set over a large number of years by actions at all levels of the socio-technical system structure."[2]<br />
<br />
"Degradation in the water safety control structure had occurred over time, without any particular<br />
single decision to do so but simply as a series of decisions that moved the public water system<br />
slowly toward a state of high risk where any slight error or deviation from the normal could lead<br />
to a major accident. Degradation of the safety control structure may be related to asynchronous<br />
evolution, where one part of a system changes without the related necessary changes in other<br />
parts. Changes to subsystems may be carefully designed, but consideration of their effects on<br />
other parts of the system, including the control aspects, may be neglected or inadequate."[2]<br />
<br />
{http://archives.cnn.com/2000/HEALTH/05/26/canada.ecoli.01/ CNN Article on the Outbreak]<br />
<br />
===The Mars Polar Lander Loss===<br />
"The software did not adequately control the descent speed of the aircraft - it misinterpreted noise from a Hall effect sensor as an indication the spacecraft had reached the surface of the planet"[1]<br />
<br />
The components did not fail in terms of not satisfying their specified requirements, the failure occurred due to an unplanned effect of the system's interacting components.<br />
<br />
[http://www.cnn.com/TECH/space/9909/30/mars.metric.02/ CNN Article on the Mars Polar Lander Loss]<br />
<br />
===The Space Shuttle Challenger===<br />
The O-rings did not adequately control propellant gas release and there were inadequate controls in the launch-decision process. The failures occurred due to a complex socio-technical interaction.<br />
<br />
[http://history.nasa.gov/rogersrep/genindex.htm The Rogers Commission Report]<br />
<br />
==What are some ethical concerns of assigning blame for accidents?==<br />
<br />
==Outside Links==<br />
1. [http://sunnyday.mit.edu/papers/tdsc.pdf "A Systems-Theoretic Approach to Safety in Software-Intensive Systems"] - Nancy G. Leveson<br />
<br />
2. [http://shemesh.larc.nasa.gov/iria03/p13-leveson.pdf Applying STAMP in Accident Analysis] - Nancy Leveson, Mirna Daouk, Nicolas Dulac, and Karen Marais<br />
<br />
==Relevant Class Website Links==<br />
* [http://ethics.csc.ncsu.edu/risks/safety/ http://ethics.csc.ncsu.edu/risks/safety/]</div>Gsdedeughttps://wiki.expertiza.ncsu.edu/index.php?title=CSC_379:Week_5,_Group_5&diff=2130CSC 379:Week 5, Group 52007-08-04T22:09:08Z<p>Gsdedeug: /* Walkerton, Ontario: Water Contamination Accident */</p>
<hr />
<div>=Software Safety: Accident Models - Systems Theory vs. Chain of Events=<br />
'''Skim through the following paper (focus on sections 1, 2.3, and 3, skip figures and tables) entitled [http://sunnyday.mit.edu/papers/tdsc.pdf "A Systems-Theoretic Approach to Safety in Software-Intensive Systems"] by Nancy G. Leveson, a Professor of Aeronautics and Astronautics at MIT, then answer the following questions:'''<br />
<br />
The majority of the content you need to form an informed response to the above questions is included in the paper. Bring in outside resources and topics discussed in class lectures as appropriate to support your response.<br />
<br />
<br />
<br />
==What are some shortcomings of traditional methods of accident reporting when applied to complex systems like software systems?==<br />
*Event-chain models tend to stop once something to blame is found. "reports stopped after assigning blame—usually to the operators who interacted with the software—and never got to the root of why the accident occurred"<br />
*Event chain models were not designed to handle complex systems such as software. "in dealing with software in safety-critical systems is the result of inappropriately attempting to extend the techniques that were successful in simpler, electromechanical systems and were based on models of accident causation that no longer apply"<br />
**Software can be very complex<br />
<br />
==How does the STAMP model improve accident prevention efforts? Explain some general concepts of the model.==<br />
"Systems theory allows more complex relationships between events to be considered"<br />
<br />
"Accident models based on systems theory consider accidents as arising from the interactions among system components and usually do not specify single causal variables or factors"<br />
<br />
The STAMP model provides more information in terms of how to prevent future accidents rather then trying to place blame.<br />
<br />
Hazard analysis using STAMP rather then traditional methods can prevent accidents from happening in software based systems<br />
<br />
==Why was the Milstar satellite damaged although the components of the Inertial Navigation Unit (INU) operated correctly with respect to the instructions, including constraints, and data provided? Why would use of the STAMP model more thoroughly prevent problems such as those that occurred with the INU compared to traditional accident reporting?==<br />
<br />
==What are some appropriate applications of the STAMP model (both current and past)? Explain.==<br />
The STAMP model is especially useful in analyzing complex socio-technical and software-based systems where accidents can occur due to complex human decision making, component interaction rather than single component failure, and accidents that occur because slow shifts toward an accident prone environment.<br />
<br />
===Walkerton, Ontario: Water Contamination Accident===<br />
<br />
"The stage for the accident had been set over a large number of years by actions at all levels of the socio-technical system structure."[2]<br />
<br />
"Degradation in the water safety control structure had occurred over time, without any particular<br />
single decision to do so but simply as a series of decisions that moved the public water system<br />
slowly toward a state of high risk where any slight error or deviation from the normal could lead<br />
to a major accident. Degradation of the safety control structure may be related to asynchronous<br />
evolution, where one part of a system changes without the related necessary changes in other<br />
parts. Changes to subsystems may be carefully designed, but consideration of their effects on<br />
other parts of the system, including the control aspects, may be neglected or inadequate."[2]<br />
<br />
===The Mars Polar Lander Loss===<br />
"The software did not adequately control the descent speed of the aircraft - it misinterpreted noise from a Hall effect sensor as an indication the spacecraft had reached the surface of the planet"[1]<br />
<br />
The components did not fail in terms of not satisfying their specified requirements, the failure occurred due to an unplanned effect of the system's interacting components.<br />
<br />
[http://www.cnn.com/TECH/space/9909/30/mars.metric.02/ CNN Article on the Mars Polar Lander Loss]<br />
<br />
===The Space Shuttle Challenger===<br />
The O-rings did not adequately control propellant gas release and there were inadequate controls in the launch-decision process. The failures occurred due to a complex socio-technical interaction.<br />
<br />
[http://history.nasa.gov/rogersrep/genindex.htm The Rogers Commission Report]<br />
<br />
==What are some ethical concerns of assigning blame for accidents?==<br />
<br />
==Outside Links==<br />
1. [http://sunnyday.mit.edu/papers/tdsc.pdf "A Systems-Theoretic Approach to Safety in Software-Intensive Systems"] - Nancy G. Leveson<br />
<br />
2. [http://shemesh.larc.nasa.gov/iria03/p13-leveson.pdf Applying STAMP in Accident Analysis] - Nancy Leveson, Mirna Daouk, Nicolas Dulac, and Karen Marais<br />
<br />
==Relevant Class Website Links==<br />
* [http://ethics.csc.ncsu.edu/risks/safety/ http://ethics.csc.ncsu.edu/risks/safety/]</div>Gsdedeughttps://wiki.expertiza.ncsu.edu/index.php?title=CSC_379:Week_5,_Group_5&diff=2129CSC 379:Week 5, Group 52007-08-04T22:08:55Z<p>Gsdedeug: /* Walkerton, Ontario: Water Contamination Accident */</p>
<hr />
<div>=Software Safety: Accident Models - Systems Theory vs. Chain of Events=<br />
'''Skim through the following paper (focus on sections 1, 2.3, and 3, skip figures and tables) entitled [http://sunnyday.mit.edu/papers/tdsc.pdf "A Systems-Theoretic Approach to Safety in Software-Intensive Systems"] by Nancy G. Leveson, a Professor of Aeronautics and Astronautics at MIT, then answer the following questions:'''<br />
<br />
The majority of the content you need to form an informed response to the above questions is included in the paper. Bring in outside resources and topics discussed in class lectures as appropriate to support your response.<br />
<br />
<br />
<br />
==What are some shortcomings of traditional methods of accident reporting when applied to complex systems like software systems?==<br />
*Event-chain models tend to stop once something to blame is found. "reports stopped after assigning blame—usually to the operators who interacted with the software—and never got to the root of why the accident occurred"<br />
*Event chain models were not designed to handle complex systems such as software. "in dealing with software in safety-critical systems is the result of inappropriately attempting to extend the techniques that were successful in simpler, electromechanical systems and were based on models of accident causation that no longer apply"<br />
**Software can be very complex<br />
<br />
==How does the STAMP model improve accident prevention efforts? Explain some general concepts of the model.==<br />
"Systems theory allows more complex relationships between events to be considered"<br />
<br />
"Accident models based on systems theory consider accidents as arising from the interactions among system components and usually do not specify single causal variables or factors"<br />
<br />
The STAMP model provides more information in terms of how to prevent future accidents rather then trying to place blame.<br />
<br />
Hazard analysis using STAMP rather then traditional methods can prevent accidents from happening in software based systems<br />
<br />
==Why was the Milstar satellite damaged although the components of the Inertial Navigation Unit (INU) operated correctly with respect to the instructions, including constraints, and data provided? Why would use of the STAMP model more thoroughly prevent problems such as those that occurred with the INU compared to traditional accident reporting?==<br />
<br />
==What are some appropriate applications of the STAMP model (both current and past)? Explain.==<br />
The STAMP model is especially useful in analyzing complex socio-technical and software-based systems where accidents can occur due to complex human decision making, component interaction rather than single component failure, and accidents that occur because slow shifts toward an accident prone environment.<br />
<br />
===Walkerton, Ontario: Water Contamination Accident===<br />
<br />
"The stage for the accident had been set over a large number of years by actions at all levels of the socio-technical system structure."[2]<br />
<br />
"Degradation in the water safety control structure had occurred over time, without any particular<br />
single decision to do so but simply as a series of decisions that moved the public water system<br />
slowly toward a state of high risk where any slight error or deviation from the normal could lead<br />
to a major accident. Degradation of the safety control structure may be related to asynchronous<br />
evolution [5], where one part of a system changes without the related necessary changes in other<br />
parts. Changes to subsystems may be carefully designed, but consideration of their effects on<br />
other parts of the system, including the control aspects, may be neglected or inadequate."[2]<br />
<br />
===The Mars Polar Lander Loss===<br />
"The software did not adequately control the descent speed of the aircraft - it misinterpreted noise from a Hall effect sensor as an indication the spacecraft had reached the surface of the planet"[1]<br />
<br />
The components did not fail in terms of not satisfying their specified requirements, the failure occurred due to an unplanned effect of the system's interacting components.<br />
<br />
[http://www.cnn.com/TECH/space/9909/30/mars.metric.02/ CNN Article on the Mars Polar Lander Loss]<br />
<br />
===The Space Shuttle Challenger===<br />
The O-rings did not adequately control propellant gas release and there were inadequate controls in the launch-decision process. The failures occurred due to a complex socio-technical interaction.<br />
<br />
[http://history.nasa.gov/rogersrep/genindex.htm The Rogers Commission Report]<br />
<br />
==What are some ethical concerns of assigning blame for accidents?==<br />
<br />
==Outside Links==<br />
1. [http://sunnyday.mit.edu/papers/tdsc.pdf "A Systems-Theoretic Approach to Safety in Software-Intensive Systems"] - Nancy G. Leveson<br />
<br />
2. [http://shemesh.larc.nasa.gov/iria03/p13-leveson.pdf Applying STAMP in Accident Analysis] - Nancy Leveson, Mirna Daouk, Nicolas Dulac, and Karen Marais<br />
<br />
==Relevant Class Website Links==<br />
* [http://ethics.csc.ncsu.edu/risks/safety/ http://ethics.csc.ncsu.edu/risks/safety/]</div>Gsdedeughttps://wiki.expertiza.ncsu.edu/index.php?title=CSC_379:Week_5,_Group_5&diff=2128CSC 379:Week 5, Group 52007-08-04T22:08:27Z<p>Gsdedeug: /* The Mars Polar Lander Loss */</p>
<hr />
<div>=Software Safety: Accident Models - Systems Theory vs. Chain of Events=<br />
'''Skim through the following paper (focus on sections 1, 2.3, and 3, skip figures and tables) entitled [http://sunnyday.mit.edu/papers/tdsc.pdf "A Systems-Theoretic Approach to Safety in Software-Intensive Systems"] by Nancy G. Leveson, a Professor of Aeronautics and Astronautics at MIT, then answer the following questions:'''<br />
<br />
The majority of the content you need to form an informed response to the above questions is included in the paper. Bring in outside resources and topics discussed in class lectures as appropriate to support your response.<br />
<br />
<br />
<br />
==What are some shortcomings of traditional methods of accident reporting when applied to complex systems like software systems?==<br />
*Event-chain models tend to stop once something to blame is found. "reports stopped after assigning blame—usually to the operators who interacted with the software—and never got to the root of why the accident occurred"<br />
*Event chain models were not designed to handle complex systems such as software. "in dealing with software in safety-critical systems is the result of inappropriately attempting to extend the techniques that were successful in simpler, electromechanical systems and were based on models of accident causation that no longer apply"<br />
**Software can be very complex<br />
<br />
==How does the STAMP model improve accident prevention efforts? Explain some general concepts of the model.==<br />
"Systems theory allows more complex relationships between events to be considered"<br />
<br />
"Accident models based on systems theory consider accidents as arising from the interactions among system components and usually do not specify single causal variables or factors"<br />
<br />
The STAMP model provides more information in terms of how to prevent future accidents rather then trying to place blame.<br />
<br />
Hazard analysis using STAMP rather then traditional methods can prevent accidents from happening in software based systems<br />
<br />
==Why was the Milstar satellite damaged although the components of the Inertial Navigation Unit (INU) operated correctly with respect to the instructions, including constraints, and data provided? Why would use of the STAMP model more thoroughly prevent problems such as those that occurred with the INU compared to traditional accident reporting?==<br />
<br />
==What are some appropriate applications of the STAMP model (both current and past)? Explain.==<br />
The STAMP model is especially useful in analyzing complex socio-technical and software-based systems where accidents can occur due to complex human decision making, component interaction rather than single component failure, and accidents that occur because slow shifts toward an accident prone environment.<br />
<br />
===Walkerton, Ontario: Water Contamination Accident===<br />
<br />
"The stage for the accident had been set over a large number of years by actions at all levels of the socio-technical system structure."<br />
<br />
"Degradation in the water safety control structure had occurred over time, without any particular<br />
single decision to do so but simply as a series of decisions that moved the public water system<br />
slowly toward a state of high risk where any slight error or deviation from the normal could lead<br />
to a major accident. Degradation of the safety control structure may be related to asynchronous<br />
evolution [5], where one part of a system changes without the related necessary changes in other<br />
parts. Changes to subsystems may be carefully designed, but consideration of their effects on<br />
other parts of the system, including the control aspects, may be neglected or inadequate."<br />
<br />
===The Mars Polar Lander Loss===<br />
"The software did not adequately control the descent speed of the aircraft - it misinterpreted noise from a Hall effect sensor as an indication the spacecraft had reached the surface of the planet"[1]<br />
<br />
The components did not fail in terms of not satisfying their specified requirements, the failure occurred due to an unplanned effect of the system's interacting components.<br />
<br />
[http://www.cnn.com/TECH/space/9909/30/mars.metric.02/ CNN Article on the Mars Polar Lander Loss]<br />
<br />
===The Space Shuttle Challenger===<br />
The O-rings did not adequately control propellant gas release and there were inadequate controls in the launch-decision process. The failures occurred due to a complex socio-technical interaction.<br />
<br />
[http://history.nasa.gov/rogersrep/genindex.htm The Rogers Commission Report]<br />
<br />
==What are some ethical concerns of assigning blame for accidents?==<br />
<br />
==Outside Links==<br />
1. [http://sunnyday.mit.edu/papers/tdsc.pdf "A Systems-Theoretic Approach to Safety in Software-Intensive Systems"] - Nancy G. Leveson<br />
<br />
2. [http://shemesh.larc.nasa.gov/iria03/p13-leveson.pdf Applying STAMP in Accident Analysis] - Nancy Leveson, Mirna Daouk, Nicolas Dulac, and Karen Marais<br />
<br />
==Relevant Class Website Links==<br />
* [http://ethics.csc.ncsu.edu/risks/safety/ http://ethics.csc.ncsu.edu/risks/safety/]</div>Gsdedeughttps://wiki.expertiza.ncsu.edu/index.php?title=CSC_379:Week_5,_Group_5&diff=2127CSC 379:Week 5, Group 52007-08-04T22:08:08Z<p>Gsdedeug: /* Outside Links */</p>
<hr />
<div>=Software Safety: Accident Models - Systems Theory vs. Chain of Events=<br />
'''Skim through the following paper (focus on sections 1, 2.3, and 3, skip figures and tables) entitled [http://sunnyday.mit.edu/papers/tdsc.pdf "A Systems-Theoretic Approach to Safety in Software-Intensive Systems"] by Nancy G. Leveson, a Professor of Aeronautics and Astronautics at MIT, then answer the following questions:'''<br />
<br />
The majority of the content you need to form an informed response to the above questions is included in the paper. Bring in outside resources and topics discussed in class lectures as appropriate to support your response.<br />
<br />
<br />
<br />
==What are some shortcomings of traditional methods of accident reporting when applied to complex systems like software systems?==<br />
*Event-chain models tend to stop once something to blame is found. "reports stopped after assigning blame—usually to the operators who interacted with the software—and never got to the root of why the accident occurred"<br />
*Event chain models were not designed to handle complex systems such as software. "in dealing with software in safety-critical systems is the result of inappropriately attempting to extend the techniques that were successful in simpler, electromechanical systems and were based on models of accident causation that no longer apply"<br />
**Software can be very complex<br />
<br />
==How does the STAMP model improve accident prevention efforts? Explain some general concepts of the model.==<br />
"Systems theory allows more complex relationships between events to be considered"<br />
<br />
"Accident models based on systems theory consider accidents as arising from the interactions among system components and usually do not specify single causal variables or factors"<br />
<br />
The STAMP model provides more information in terms of how to prevent future accidents rather then trying to place blame.<br />
<br />
Hazard analysis using STAMP rather then traditional methods can prevent accidents from happening in software based systems<br />
<br />
==Why was the Milstar satellite damaged although the components of the Inertial Navigation Unit (INU) operated correctly with respect to the instructions, including constraints, and data provided? Why would use of the STAMP model more thoroughly prevent problems such as those that occurred with the INU compared to traditional accident reporting?==<br />
<br />
==What are some appropriate applications of the STAMP model (both current and past)? Explain.==<br />
The STAMP model is especially useful in analyzing complex socio-technical and software-based systems where accidents can occur due to complex human decision making, component interaction rather than single component failure, and accidents that occur because slow shifts toward an accident prone environment.<br />
<br />
===Walkerton, Ontario: Water Contamination Accident===<br />
<br />
"The stage for the accident had been set over a large number of years by actions at all levels of the socio-technical system structure."<br />
<br />
"Degradation in the water safety control structure had occurred over time, without any particular<br />
single decision to do so but simply as a series of decisions that moved the public water system<br />
slowly toward a state of high risk where any slight error or deviation from the normal could lead<br />
to a major accident. Degradation of the safety control structure may be related to asynchronous<br />
evolution [5], where one part of a system changes without the related necessary changes in other<br />
parts. Changes to subsystems may be carefully designed, but consideration of their effects on<br />
other parts of the system, including the control aspects, may be neglected or inadequate."<br />
<br />
===The Mars Polar Lander Loss===<br />
"The software did not adequately control the descent speed of the aircraft - it misinterpreted noise from a Hall effect sensor as an indication the spacecraft had reached the surface of the planet"<br />
<br />
The components did not fail in terms of not satisfying their specified requirements, the failure occurred due to an unplanned effect of the system's interacting components.<br />
<br />
[http://www.cnn.com/TECH/space/9909/30/mars.metric.02/ CNN Article on the Mars Polar Lander Loss]<br />
<br />
===The Space Shuttle Challenger===<br />
The O-rings did not adequately control propellant gas release and there were inadequate controls in the launch-decision process. The failures occurred due to a complex socio-technical interaction.<br />
<br />
[http://history.nasa.gov/rogersrep/genindex.htm The Rogers Commission Report]<br />
<br />
==What are some ethical concerns of assigning blame for accidents?==<br />
<br />
==Outside Links==<br />
1. [http://sunnyday.mit.edu/papers/tdsc.pdf "A Systems-Theoretic Approach to Safety in Software-Intensive Systems"] - Nancy G. Leveson<br />
<br />
2. [http://shemesh.larc.nasa.gov/iria03/p13-leveson.pdf Applying STAMP in Accident Analysis] - Nancy Leveson, Mirna Daouk, Nicolas Dulac, and Karen Marais<br />
<br />
==Relevant Class Website Links==<br />
* [http://ethics.csc.ncsu.edu/risks/safety/ http://ethics.csc.ncsu.edu/risks/safety/]</div>Gsdedeughttps://wiki.expertiza.ncsu.edu/index.php?title=CSC_379:Week_5,_Group_5&diff=2126CSC 379:Week 5, Group 52007-08-04T22:07:54Z<p>Gsdedeug: /* Software Safety: Accident Models - Systems Theory vs. Chain of Events */</p>
<hr />
<div>=Software Safety: Accident Models - Systems Theory vs. Chain of Events=<br />
'''Skim through the following paper (focus on sections 1, 2.3, and 3, skip figures and tables) entitled [http://sunnyday.mit.edu/papers/tdsc.pdf "A Systems-Theoretic Approach to Safety in Software-Intensive Systems"] by Nancy G. Leveson, a Professor of Aeronautics and Astronautics at MIT, then answer the following questions:'''<br />
<br />
The majority of the content you need to form an informed response to the above questions is included in the paper. Bring in outside resources and topics discussed in class lectures as appropriate to support your response.<br />
<br />
<br />
<br />
==What are some shortcomings of traditional methods of accident reporting when applied to complex systems like software systems?==<br />
*Event-chain models tend to stop once something to blame is found. "reports stopped after assigning blame—usually to the operators who interacted with the software—and never got to the root of why the accident occurred"<br />
*Event chain models were not designed to handle complex systems such as software. "in dealing with software in safety-critical systems is the result of inappropriately attempting to extend the techniques that were successful in simpler, electromechanical systems and were based on models of accident causation that no longer apply"<br />
**Software can be very complex<br />
<br />
==How does the STAMP model improve accident prevention efforts? Explain some general concepts of the model.==<br />
"Systems theory allows more complex relationships between events to be considered"<br />
<br />
"Accident models based on systems theory consider accidents as arising from the interactions among system components and usually do not specify single causal variables or factors"<br />
<br />
The STAMP model provides more information in terms of how to prevent future accidents rather then trying to place blame.<br />
<br />
Hazard analysis using STAMP rather then traditional methods can prevent accidents from happening in software based systems<br />
<br />
==Why was the Milstar satellite damaged although the components of the Inertial Navigation Unit (INU) operated correctly with respect to the instructions, including constraints, and data provided? Why would use of the STAMP model more thoroughly prevent problems such as those that occurred with the INU compared to traditional accident reporting?==<br />
<br />
==What are some appropriate applications of the STAMP model (both current and past)? Explain.==<br />
The STAMP model is especially useful in analyzing complex socio-technical and software-based systems where accidents can occur due to complex human decision making, component interaction rather than single component failure, and accidents that occur because slow shifts toward an accident prone environment.<br />
<br />
===Walkerton, Ontario: Water Contamination Accident===<br />
<br />
"The stage for the accident had been set over a large number of years by actions at all levels of the socio-technical system structure."<br />
<br />
"Degradation in the water safety control structure had occurred over time, without any particular<br />
single decision to do so but simply as a series of decisions that moved the public water system<br />
slowly toward a state of high risk where any slight error or deviation from the normal could lead<br />
to a major accident. Degradation of the safety control structure may be related to asynchronous<br />
evolution [5], where one part of a system changes without the related necessary changes in other<br />
parts. Changes to subsystems may be carefully designed, but consideration of their effects on<br />
other parts of the system, including the control aspects, may be neglected or inadequate."<br />
<br />
===The Mars Polar Lander Loss===<br />
"The software did not adequately control the descent speed of the aircraft - it misinterpreted noise from a Hall effect sensor as an indication the spacecraft had reached the surface of the planet"<br />
<br />
The components did not fail in terms of not satisfying their specified requirements, the failure occurred due to an unplanned effect of the system's interacting components.<br />
<br />
[http://www.cnn.com/TECH/space/9909/30/mars.metric.02/ CNN Article on the Mars Polar Lander Loss]<br />
<br />
===The Space Shuttle Challenger===<br />
The O-rings did not adequately control propellant gas release and there were inadequate controls in the launch-decision process. The failures occurred due to a complex socio-technical interaction.<br />
<br />
[http://history.nasa.gov/rogersrep/genindex.htm The Rogers Commission Report]<br />
<br />
==What are some ethical concerns of assigning blame for accidents?==<br />
<br />
==Outside Links==<br />
1. [http://sunnyday.mit.edu/papers/tdsc.pdf "A Systems-Theoretic Approach to Safety in Software-Intensive Systems"] - Nancy G. Leveson<br />
2. [http://shemesh.larc.nasa.gov/iria03/p13-leveson.pdf Applying STAMP in Accident Analysis] - Nancy Leveson, Mirna Daouk, Nicolas Dulac, and Karen Marais<br />
<br />
==Relevant Class Website Links==<br />
* [http://ethics.csc.ncsu.edu/risks/safety/ http://ethics.csc.ncsu.edu/risks/safety/]</div>Gsdedeughttps://wiki.expertiza.ncsu.edu/index.php?title=CSC_379:Week_5,_Group_5&diff=2125CSC 379:Week 5, Group 52007-08-04T22:07:17Z<p>Gsdedeug: /* Outside Links */</p>
<hr />
<div>=Software Safety: Accident Models - Systems Theory vs. Chain of Events=<br />
'''Skim through the following paper (focus on sections 1, 2.3, and 3, skip figures and tables) entitled [http://sunnyday.mit.edu/papers/tdsc.pdf "A Systems-Theoretic Approach to Safety in Software-Intensive Systems"] by Nancy G. Leveson, a Professor of Aeronautics and Astronautics at MIT, then answer the following questions:'''<br />
<br />
The majority of the content you need to form an informed response to the above questions is included in the paper. Bring in outside resources and topics discussed in class lectures as appropriate to support your response.<br />
<br />
<br />
<br />
==What are some shortcomings of traditional methods of accident reporting when applied to complex systems like software systems?==<br />
*Event-chain models tend to stop once something to blame is found. "reports stopped after assigning blame—usually to the operators who interacted with the software—and never got to the root of why the accident occurred"<br />
*Event chain models were not designed to handle complex systems such as software. "in dealing with software in safety-critical systems is the result of inappropriately attempting to extend the techniques that were successful in simpler, electromechanical systems and were based on models of accident causation that no longer apply"<br />
**Software can be very complex<br />
<br />
==How does the STAMP model improve accident prevention efforts? Explain some general concepts of the model.==<br />
"Systems theory allows more complex relationships between events to be considered"<br />
<br />
"Accident models based on systems theory consider accidents as arising from the interactions among system components and usually do not specify single causal variables or factors"<br />
<br />
The STAMP model provides more information in terms of how to prevent future accidents rather then trying to place blame.<br />
<br />
Hazard analysis using STAMP rather then traditional methods can prevent accidents from happening in software based systems<br />
<br />
==Why was the Milstar satellite damaged although the components of the Inertial Navigation Unit (INU) operated correctly with respect to the instructions, including constraints, and data provided? Why would use of the STAMP model more thoroughly prevent problems such as those that occurred with the INU compared to traditional accident reporting?==<br />
<br />
==What are some appropriate applications of the STAMP model (both current and past)? Explain.==<br />
The STAMP model is especially useful in analyzing complex socio-technical and software-based systems where accidents can occur due to complex human decision making, component interaction rather than single component failure, and accidents that occur because slow shifts toward an accident prone environment.<br />
<br />
===Walkerton, Ontario: Water Contamination Accident===<br />
<br />
"The stage for the accident had been set over a large number of years by actions at all levels of the socio-technical system structure."<br />
<br />
"Degradation in the water safety control structure had occurred over time, without any particular<br />
single decision to do so but simply as a series of decisions that moved the public water system<br />
slowly toward a state of high risk where any slight error or deviation from the normal could lead<br />
to a major accident. Degradation of the safety control structure may be related to asynchronous<br />
evolution [5], where one part of a system changes without the related necessary changes in other<br />
parts. Changes to subsystems may be carefully designed, but consideration of their effects on<br />
other parts of the system, including the control aspects, may be neglected or inadequate."<br />
<br />
===The Mars Polar Lander Loss===<br />
"The software did not adequately control the descent speed of the aircraft - it misinterpreted noise from a Hall effect sensor as an indication the spacecraft had reached the surface of the planet"<br />
<br />
The components did not fail in terms of not satisfying their specified requirements, the failure occurred due to an unplanned effect of the system's interacting components.<br />
<br />
[http://www.cnn.com/TECH/space/9909/30/mars.metric.02/ CNN Article on the Mars Polar Lander Loss]<br />
<br />
===The Space Shuttle Challenger===<br />
The O-rings did not adequately control propellant gas release and there were inadequate controls in the launch-decision process. The failures occurred due to a complex socio-technical interaction.<br />
<br />
[http://history.nasa.gov/rogersrep/genindex.htm The Rogers Commission Report]<br />
<br />
==What are some ethical concerns of assigning blame for accidents?==<br />
<br />
==Outside Links==<br />
1.<br />
2. [http://shemesh.larc.nasa.gov/iria03/p13-leveson.pdf Applying STAMP in Accident Analysis] - Nancy Leveson, Mirna Daouk, Nicolas Dulac, and Karen Marais<br />
<br />
==Relevant Class Website Links==<br />
* [http://ethics.csc.ncsu.edu/risks/safety/ http://ethics.csc.ncsu.edu/risks/safety/]</div>Gsdedeughttps://wiki.expertiza.ncsu.edu/index.php?title=CSC_379:Week_5,_Group_5&diff=2124CSC 379:Week 5, Group 52007-08-04T22:06:12Z<p>Gsdedeug: /* Software Safety: Accident Models - Systems Theory vs. Chain of Events */</p>
<hr />
<div>=Software Safety: Accident Models - Systems Theory vs. Chain of Events=<br />
'''Skim through the following paper (focus on sections 1, 2.3, and 3, skip figures and tables) entitled [http://sunnyday.mit.edu/papers/tdsc.pdf "A Systems-Theoretic Approach to Safety in Software-Intensive Systems"] by Nancy G. Leveson, a Professor of Aeronautics and Astronautics at MIT, then answer the following questions:'''<br />
<br />
The majority of the content you need to form an informed response to the above questions is included in the paper. Bring in outside resources and topics discussed in class lectures as appropriate to support your response.<br />
<br />
<br />
<br />
==What are some shortcomings of traditional methods of accident reporting when applied to complex systems like software systems?==<br />
*Event-chain models tend to stop once something to blame is found. "reports stopped after assigning blame—usually to the operators who interacted with the software—and never got to the root of why the accident occurred"<br />
*Event chain models were not designed to handle complex systems such as software. "in dealing with software in safety-critical systems is the result of inappropriately attempting to extend the techniques that were successful in simpler, electromechanical systems and were based on models of accident causation that no longer apply"<br />
**Software can be very complex<br />
<br />
==How does the STAMP model improve accident prevention efforts? Explain some general concepts of the model.==<br />
"Systems theory allows more complex relationships between events to be considered"<br />
<br />
"Accident models based on systems theory consider accidents as arising from the interactions among system components and usually do not specify single causal variables or factors"<br />
<br />
The STAMP model provides more information in terms of how to prevent future accidents rather then trying to place blame.<br />
<br />
Hazard analysis using STAMP rather then traditional methods can prevent accidents from happening in software based systems<br />
<br />
==Why was the Milstar satellite damaged although the components of the Inertial Navigation Unit (INU) operated correctly with respect to the instructions, including constraints, and data provided? Why would use of the STAMP model more thoroughly prevent problems such as those that occurred with the INU compared to traditional accident reporting?==<br />
<br />
==What are some appropriate applications of the STAMP model (both current and past)? Explain.==<br />
The STAMP model is especially useful in analyzing complex socio-technical and software-based systems where accidents can occur due to complex human decision making, component interaction rather than single component failure, and accidents that occur because slow shifts toward an accident prone environment.<br />
<br />
===Walkerton, Ontario: Water Contamination Accident===<br />
<br />
"The stage for the accident had been set over a large number of years by actions at all levels of the socio-technical system structure."<br />
<br />
"Degradation in the water safety control structure had occurred over time, without any particular<br />
single decision to do so but simply as a series of decisions that moved the public water system<br />
slowly toward a state of high risk where any slight error or deviation from the normal could lead<br />
to a major accident. Degradation of the safety control structure may be related to asynchronous<br />
evolution [5], where one part of a system changes without the related necessary changes in other<br />
parts. Changes to subsystems may be carefully designed, but consideration of their effects on<br />
other parts of the system, including the control aspects, may be neglected or inadequate."<br />
<br />
===The Mars Polar Lander Loss===<br />
"The software did not adequately control the descent speed of the aircraft - it misinterpreted noise from a Hall effect sensor as an indication the spacecraft had reached the surface of the planet"<br />
<br />
The components did not fail in terms of not satisfying their specified requirements, the failure occurred due to an unplanned effect of the system's interacting components.<br />
<br />
[http://www.cnn.com/TECH/space/9909/30/mars.metric.02/ CNN Article on the Mars Polar Lander Loss]<br />
<br />
===The Space Shuttle Challenger===<br />
The O-rings did not adequately control propellant gas release and there were inadequate controls in the launch-decision process. The failures occurred due to a complex socio-technical interaction.<br />
<br />
[http://history.nasa.gov/rogersrep/genindex.htm The Rogers Commission Report]<br />
<br />
==What are some ethical concerns of assigning blame for accidents?==<br />
<br />
==Outside Links==<br />
[http://shemesh.larc.nasa.gov/iria03/p13-leveson.pdf Applying STAMP in Accident Analysis] - Nancy Leveson, Mirna Daouk, Nicolas Dulac, and Karen Marais<br />
<br />
==Relevant Class Website Links==<br />
* [http://ethics.csc.ncsu.edu/risks/safety/ http://ethics.csc.ncsu.edu/risks/safety/]</div>Gsdedeughttps://wiki.expertiza.ncsu.edu/index.php?title=CSC_379:Week_5,_Group_5&diff=2123CSC 379:Week 5, Group 52007-08-04T22:05:05Z<p>Gsdedeug: /* Walkerton, Ontario: Water Contamination Accident */</p>
<hr />
<div>=Software Safety: Accident Models - Systems Theory vs. Chain of Events=<br />
'''Skim through the following paper (focus on sections 1, 2.3, and 3, skip figures and tables) entitled [http://sunnyday.mit.edu/papers/tdsc.pdf "A Systems-Theoretic Approach to Safety in Software-Intensive Systems"] by Nancy G. Leveson, a Professor of Aeronautics and Astronautics at MIT, then answer the following questions:'''<br />
<br />
The majority of the content you need to form an informed response to the above questions is included in the paper. Bring in outside resources and topics discussed in class lectures as appropriate to support your response.<br />
<br />
<br />
<br />
==What are some shortcomings of traditional methods of accident reporting when applied to complex systems like software systems?==<br />
*Event-chain models tend to stop once something to blame is found. "reports stopped after assigning blame—usually to the operators who interacted with the software—and never got to the root of why the accident occurred"<br />
*Event chain models were not designed to handle complex systems such as software. "in dealing with software in safety-critical systems is the result of inappropriately attempting to extend the techniques that were successful in simpler, electromechanical systems and were based on models of accident causation that no longer apply"<br />
**Software can be very complex<br />
<br />
==How does the STAMP model improve accident prevention efforts? Explain some general concepts of the model.==<br />
"Systems theory allows more complex relationships between events to be considered"<br />
<br />
"Accident models based on systems theory consider accidents as arising from the interactions among system components and usually do not specify single causal variables or factors"<br />
<br />
The STAMP model provides more information in terms of how to prevent future accidents rather then trying to place blame.<br />
<br />
Hazard analysis using STAMP rather then traditional methods can prevent accidents from happening in software based systems<br />
<br />
==Why was the Milstar satellite damaged although the components of the Inertial Navigation Unit (INU) operated correctly with respect to the instructions, including constraints, and data provided? Why would use of the STAMP model more thoroughly prevent problems such as those that occurred with the INU compared to traditional accident reporting?==<br />
<br />
==What are some appropriate applications of the STAMP model (both current and past)? Explain.==<br />
The STAMP model is especially useful in analyzing complex socio-technical and software-based systems where accidents can occur due to complex human decision making, component interaction rather than single component failure, and accidents that occur because slow shifts toward an accident prone environment.<br />
<br />
===Walkerton, Ontario: Water Contamination Accident===<br />
<br />
"The stage for the accident had been set over a large number of years by actions at all levels of the socio-technical system structure."<br />
<br />
"Degradation in the water safety control structure had occurred over time, without any particular<br />
single decision to do so but simply as a series of decisions that moved the public water system<br />
slowly toward a state of high risk where any slight error or deviation from the normal could lead<br />
to a major accident. Degradation of the safety control structure may be related to asynchronous<br />
evolution [5], where one part of a system changes without the related necessary changes in other<br />
parts. Changes to subsystems may be carefully designed, but consideration of their effects on<br />
other parts of the system, including the control aspects, may be neglected or inadequate."<br />
<br />
===The Mars Polar Lander Loss===<br />
"The software did not adequately control the descent speed of the aircraft - it misinterpreted noise from a Hall effect sensor as an indication the spacecraft had reached the surface of the planet"<br />
<br />
The components did not fail in terms of not satisfying their specified requirements, the failure occurred due to an unplanned effect of the system's interacting components.<br />
<br />
[http://www.cnn.com/TECH/space/9909/30/mars.metric.02/ CNN Article on the Mars Polar Lander Loss]<br />
<br />
===The Space Shuttle Challenger===<br />
The O-rings did not adequately control propellant gas release and there were inadequate controls in the launch-decision process. The failures occurred due to a complex socio-technical interaction.<br />
<br />
[http://history.nasa.gov/rogersrep/genindex.htm The Rogers Commission Report]<br />
<br />
==What are some ethical concerns of assigning blame for accidents?==<br />
<br />
==Outside Links==<br />
[http://shemesh.larc.nasa.gov/iria03/p13-leveson.pdf Applying STAMP in Accident Analysis]<br />
<br />
==Relevant Class Website Links==<br />
* [http://ethics.csc.ncsu.edu/risks/safety/ http://ethics.csc.ncsu.edu/risks/safety/]</div>Gsdedeughttps://wiki.expertiza.ncsu.edu/index.php?title=CSC_379:Week_5,_Group_5&diff=2122CSC 379:Week 5, Group 52007-08-04T22:03:26Z<p>Gsdedeug: /* Walkerton, Ontario: Water Contamination Accident */</p>
<hr />
<div>=Software Safety: Accident Models - Systems Theory vs. Chain of Events=<br />
'''Skim through the following paper (focus on sections 1, 2.3, and 3, skip figures and tables) entitled [http://sunnyday.mit.edu/papers/tdsc.pdf "A Systems-Theoretic Approach to Safety in Software-Intensive Systems"] by Nancy G. Leveson, a Professor of Aeronautics and Astronautics at MIT, then answer the following questions:'''<br />
<br />
The majority of the content you need to form an informed response to the above questions is included in the paper. Bring in outside resources and topics discussed in class lectures as appropriate to support your response.<br />
<br />
<br />
<br />
==What are some shortcomings of traditional methods of accident reporting when applied to complex systems like software systems?==<br />
*Event-chain models tend to stop once something to blame is found. "reports stopped after assigning blame—usually to the operators who interacted with the software—and never got to the root of why the accident occurred"<br />
*Event chain models were not designed to handle complex systems such as software. "in dealing with software in safety-critical systems is the result of inappropriately attempting to extend the techniques that were successful in simpler, electromechanical systems and were based on models of accident causation that no longer apply"<br />
**Software can be very complex<br />
<br />
==How does the STAMP model improve accident prevention efforts? Explain some general concepts of the model.==<br />
"Systems theory allows more complex relationships between events to be considered"<br />
<br />
"Accident models based on systems theory consider accidents as arising from the interactions among system components and usually do not specify single causal variables or factors"<br />
<br />
The STAMP model provides more information in terms of how to prevent future accidents rather then trying to place blame.<br />
<br />
Hazard analysis using STAMP rather then traditional methods can prevent accidents from happening in software based systems<br />
<br />
==Why was the Milstar satellite damaged although the components of the Inertial Navigation Unit (INU) operated correctly with respect to the instructions, including constraints, and data provided? Why would use of the STAMP model more thoroughly prevent problems such as those that occurred with the INU compared to traditional accident reporting?==<br />
<br />
==What are some appropriate applications of the STAMP model (both current and past)? Explain.==<br />
The STAMP model is especially useful in analyzing complex socio-technical and software-based systems where accidents can occur due to complex human decision making, component interaction rather than single component failure, and accidents that occur because slow shifts toward an accident prone environment.<br />
<br />
===Walkerton, Ontario: Water Contamination Accident===<br />
<br />
"The stage for the accident had been set over a large number of years by actions at all levels of the socio-technical system structure."<br />
<br />
===The Mars Polar Lander Loss===<br />
"The software did not adequately control the descent speed of the aircraft - it misinterpreted noise from a Hall effect sensor as an indication the spacecraft had reached the surface of the planet"<br />
<br />
The components did not fail in terms of not satisfying their specified requirements, the failure occurred due to an unplanned effect of the system's interacting components.<br />
<br />
[http://www.cnn.com/TECH/space/9909/30/mars.metric.02/ CNN Article on the Mars Polar Lander Loss]<br />
<br />
===The Space Shuttle Challenger===<br />
The O-rings did not adequately control propellant gas release and there were inadequate controls in the launch-decision process. The failures occurred due to a complex socio-technical interaction.<br />
<br />
[http://history.nasa.gov/rogersrep/genindex.htm The Rogers Commission Report]<br />
<br />
==What are some ethical concerns of assigning blame for accidents?==<br />
<br />
==Outside Links==<br />
[http://shemesh.larc.nasa.gov/iria03/p13-leveson.pdf Applying STAMP in Accident Analysis]<br />
<br />
==Relevant Class Website Links==<br />
* [http://ethics.csc.ncsu.edu/risks/safety/ http://ethics.csc.ncsu.edu/risks/safety/]</div>Gsdedeughttps://wiki.expertiza.ncsu.edu/index.php?title=CSC_379:Week_5,_Group_5&diff=2121CSC 379:Week 5, Group 52007-08-04T22:02:30Z<p>Gsdedeug: /* Walkerton, Ontario Water Contamination Accident */</p>
<hr />
<div>=Software Safety: Accident Models - Systems Theory vs. Chain of Events=<br />
'''Skim through the following paper (focus on sections 1, 2.3, and 3, skip figures and tables) entitled [http://sunnyday.mit.edu/papers/tdsc.pdf "A Systems-Theoretic Approach to Safety in Software-Intensive Systems"] by Nancy G. Leveson, a Professor of Aeronautics and Astronautics at MIT, then answer the following questions:'''<br />
<br />
The majority of the content you need to form an informed response to the above questions is included in the paper. Bring in outside resources and topics discussed in class lectures as appropriate to support your response.<br />
<br />
<br />
<br />
==What are some shortcomings of traditional methods of accident reporting when applied to complex systems like software systems?==<br />
*Event-chain models tend to stop once something to blame is found. "reports stopped after assigning blame—usually to the operators who interacted with the software—and never got to the root of why the accident occurred"<br />
*Event chain models were not designed to handle complex systems such as software. "in dealing with software in safety-critical systems is the result of inappropriately attempting to extend the techniques that were successful in simpler, electromechanical systems and were based on models of accident causation that no longer apply"<br />
**Software can be very complex<br />
<br />
==How does the STAMP model improve accident prevention efforts? Explain some general concepts of the model.==<br />
"Systems theory allows more complex relationships between events to be considered"<br />
<br />
"Accident models based on systems theory consider accidents as arising from the interactions among system components and usually do not specify single causal variables or factors"<br />
<br />
The STAMP model provides more information in terms of how to prevent future accidents rather then trying to place blame.<br />
<br />
Hazard analysis using STAMP rather then traditional methods can prevent accidents from happening in software based systems<br />
<br />
==Why was the Milstar satellite damaged although the components of the Inertial Navigation Unit (INU) operated correctly with respect to the instructions, including constraints, and data provided? Why would use of the STAMP model more thoroughly prevent problems such as those that occurred with the INU compared to traditional accident reporting?==<br />
<br />
==What are some appropriate applications of the STAMP model (both current and past)? Explain.==<br />
The STAMP model is especially useful in analyzing complex socio-technical and software-based systems where accidents can occur due to complex human decision making, component interaction rather than single component failure, and accidents that occur because slow shifts toward an accident prone environment.<br />
<br />
===Walkerton, Ontario: Water Contamination Accident===<br />
<br />
===The Mars Polar Lander Loss===<br />
"The software did not adequately control the descent speed of the aircraft - it misinterpreted noise from a Hall effect sensor as an indication the spacecraft had reached the surface of the planet"<br />
<br />
The components did not fail in terms of not satisfying their specified requirements, the failure occurred due to an unplanned effect of the system's interacting components.<br />
<br />
[http://www.cnn.com/TECH/space/9909/30/mars.metric.02/ CNN Article on the Mars Polar Lander Loss]<br />
<br />
===The Space Shuttle Challenger===<br />
The O-rings did not adequately control propellant gas release and there were inadequate controls in the launch-decision process. The failures occurred due to a complex socio-technical interaction.<br />
<br />
[http://history.nasa.gov/rogersrep/genindex.htm The Rogers Commission Report]<br />
<br />
==What are some ethical concerns of assigning blame for accidents?==<br />
<br />
==Outside Links==<br />
[http://shemesh.larc.nasa.gov/iria03/p13-leveson.pdf Applying STAMP in Accident Analysis]<br />
<br />
==Relevant Class Website Links==<br />
* [http://ethics.csc.ncsu.edu/risks/safety/ http://ethics.csc.ncsu.edu/risks/safety/]</div>Gsdedeughttps://wiki.expertiza.ncsu.edu/index.php?title=CSC_379:Week_5,_Group_5&diff=2120CSC 379:Week 5, Group 52007-08-04T22:02:10Z<p>Gsdedeug: /* What are some appropriate applications of the STAMP model (both current and past)? Explain. */</p>
<hr />
<div>=Software Safety: Accident Models - Systems Theory vs. Chain of Events=<br />
'''Skim through the following paper (focus on sections 1, 2.3, and 3, skip figures and tables) entitled [http://sunnyday.mit.edu/papers/tdsc.pdf "A Systems-Theoretic Approach to Safety in Software-Intensive Systems"] by Nancy G. Leveson, a Professor of Aeronautics and Astronautics at MIT, then answer the following questions:'''<br />
<br />
The majority of the content you need to form an informed response to the above questions is included in the paper. Bring in outside resources and topics discussed in class lectures as appropriate to support your response.<br />
<br />
<br />
<br />
==What are some shortcomings of traditional methods of accident reporting when applied to complex systems like software systems?==<br />
*Event-chain models tend to stop once something to blame is found. "reports stopped after assigning blame—usually to the operators who interacted with the software—and never got to the root of why the accident occurred"<br />
*Event chain models were not designed to handle complex systems such as software. "in dealing with software in safety-critical systems is the result of inappropriately attempting to extend the techniques that were successful in simpler, electromechanical systems and were based on models of accident causation that no longer apply"<br />
**Software can be very complex<br />
<br />
==How does the STAMP model improve accident prevention efforts? Explain some general concepts of the model.==<br />
"Systems theory allows more complex relationships between events to be considered"<br />
<br />
"Accident models based on systems theory consider accidents as arising from the interactions among system components and usually do not specify single causal variables or factors"<br />
<br />
The STAMP model provides more information in terms of how to prevent future accidents rather then trying to place blame.<br />
<br />
Hazard analysis using STAMP rather then traditional methods can prevent accidents from happening in software based systems<br />
<br />
==Why was the Milstar satellite damaged although the components of the Inertial Navigation Unit (INU) operated correctly with respect to the instructions, including constraints, and data provided? Why would use of the STAMP model more thoroughly prevent problems such as those that occurred with the INU compared to traditional accident reporting?==<br />
<br />
==What are some appropriate applications of the STAMP model (both current and past)? Explain.==<br />
The STAMP model is especially useful in analyzing complex socio-technical and software-based systems where accidents can occur due to complex human decision making, component interaction rather than single component failure, and accidents that occur because slow shifts toward an accident prone environment.<br />
<br />
===Walkerton, Ontario Water Contamination Accident===<br />
<br />
===The Mars Polar Lander Loss===<br />
"The software did not adequately control the descent speed of the aircraft - it misinterpreted noise from a Hall effect sensor as an indication the spacecraft had reached the surface of the planet"<br />
<br />
The components did not fail in terms of not satisfying their specified requirements, the failure occurred due to an unplanned effect of the system's interacting components.<br />
<br />
[http://www.cnn.com/TECH/space/9909/30/mars.metric.02/ CNN Article on the Mars Polar Lander Loss]<br />
<br />
===The Space Shuttle Challenger===<br />
The O-rings did not adequately control propellant gas release and there were inadequate controls in the launch-decision process. The failures occurred due to a complex socio-technical interaction.<br />
<br />
[http://history.nasa.gov/rogersrep/genindex.htm The Rogers Commission Report]<br />
<br />
==What are some ethical concerns of assigning blame for accidents?==<br />
<br />
==Outside Links==<br />
[http://shemesh.larc.nasa.gov/iria03/p13-leveson.pdf Applying STAMP in Accident Analysis]<br />
<br />
==Relevant Class Website Links==<br />
* [http://ethics.csc.ncsu.edu/risks/safety/ http://ethics.csc.ncsu.edu/risks/safety/]</div>Gsdedeughttps://wiki.expertiza.ncsu.edu/index.php?title=CSC_379:Week_5,_Group_5&diff=2119CSC 379:Week 5, Group 52007-08-04T21:58:36Z<p>Gsdedeug: /* The Space Shuttle Challenger */</p>
<hr />
<div>=Software Safety: Accident Models - Systems Theory vs. Chain of Events=<br />
'''Skim through the following paper (focus on sections 1, 2.3, and 3, skip figures and tables) entitled [http://sunnyday.mit.edu/papers/tdsc.pdf "A Systems-Theoretic Approach to Safety in Software-Intensive Systems"] by Nancy G. Leveson, a Professor of Aeronautics and Astronautics at MIT, then answer the following questions:'''<br />
<br />
The majority of the content you need to form an informed response to the above questions is included in the paper. Bring in outside resources and topics discussed in class lectures as appropriate to support your response.<br />
<br />
<br />
<br />
==What are some shortcomings of traditional methods of accident reporting when applied to complex systems like software systems?==<br />
*Event-chain models tend to stop once something to blame is found. "reports stopped after assigning blame—usually to the operators who interacted with the software—and never got to the root of why the accident occurred"<br />
*Event chain models were not designed to handle complex systems such as software. "in dealing with software in safety-critical systems is the result of inappropriately attempting to extend the techniques that were successful in simpler, electromechanical systems and were based on models of accident causation that no longer apply"<br />
**Software can be very complex<br />
<br />
==How does the STAMP model improve accident prevention efforts? Explain some general concepts of the model.==<br />
"Systems theory allows more complex relationships between events to be considered"<br />
<br />
"Accident models based on systems theory consider accidents as arising from the interactions among system components and usually do not specify single causal variables or factors"<br />
<br />
The STAMP model provides more information in terms of how to prevent future accidents rather then trying to place blame.<br />
<br />
Hazard analysis using STAMP rather then traditional methods can prevent accidents from happening in software based systems<br />
<br />
==Why was the Milstar satellite damaged although the components of the Inertial Navigation Unit (INU) operated correctly with respect to the instructions, including constraints, and data provided? Why would use of the STAMP model more thoroughly prevent problems such as those that occurred with the INU compared to traditional accident reporting?==<br />
<br />
==What are some appropriate applications of the STAMP model (both current and past)? Explain.==<br />
The STAMP model is especially useful in analyzing complex socio-technical and software-based systems where accidents can occur due to complex human decision making, component interaction rather than single component failure, and accidents that occur because slow shifts toward an accident prone environment.<br />
<br />
===The Mars Polar Lander Loss===<br />
"The software did not adequately control the descent speed of the aircraft - it misinterpreted noise from a Hall effect sensor as an indication the spacecraft had reached the surface of the planet"<br />
<br />
The components did not fail in terms of not satisfying their specified requirements, the failure occurred due to an unplanned effect of the system's interacting components.<br />
<br />
[http://www.cnn.com/TECH/space/9909/30/mars.metric.02/ CNN Article on the Mars Polar Lander Loss]<br />
<br />
===The Space Shuttle Challenger===<br />
The O-rings did not adequately control propellant gas release and there were inadequate controls in the launch-decision process. The failures occurred due to a complex socio-technical interaction.<br />
<br />
[http://history.nasa.gov/rogersrep/genindex.htm The Rogers Commission Report]<br />
<br />
==What are some ethical concerns of assigning blame for accidents?==<br />
<br />
==Outside Links==<br />
[http://shemesh.larc.nasa.gov/iria03/p13-leveson.pdf Applying STAMP in Accident Analysis]<br />
<br />
==Relevant Class Website Links==<br />
* [http://ethics.csc.ncsu.edu/risks/safety/ http://ethics.csc.ncsu.edu/risks/safety/]</div>Gsdedeughttps://wiki.expertiza.ncsu.edu/index.php?title=CSC_379:Week_5,_Group_5&diff=2118CSC 379:Week 5, Group 52007-08-04T21:58:03Z<p>Gsdedeug: /* The Space Shuttle Challenger */</p>
<hr />
<div>=Software Safety: Accident Models - Systems Theory vs. Chain of Events=<br />
'''Skim through the following paper (focus on sections 1, 2.3, and 3, skip figures and tables) entitled [http://sunnyday.mit.edu/papers/tdsc.pdf "A Systems-Theoretic Approach to Safety in Software-Intensive Systems"] by Nancy G. Leveson, a Professor of Aeronautics and Astronautics at MIT, then answer the following questions:'''<br />
<br />
The majority of the content you need to form an informed response to the above questions is included in the paper. Bring in outside resources and topics discussed in class lectures as appropriate to support your response.<br />
<br />
<br />
<br />
==What are some shortcomings of traditional methods of accident reporting when applied to complex systems like software systems?==<br />
*Event-chain models tend to stop once something to blame is found. "reports stopped after assigning blame—usually to the operators who interacted with the software—and never got to the root of why the accident occurred"<br />
*Event chain models were not designed to handle complex systems such as software. "in dealing with software in safety-critical systems is the result of inappropriately attempting to extend the techniques that were successful in simpler, electromechanical systems and were based on models of accident causation that no longer apply"<br />
**Software can be very complex<br />
<br />
==How does the STAMP model improve accident prevention efforts? Explain some general concepts of the model.==<br />
"Systems theory allows more complex relationships between events to be considered"<br />
<br />
"Accident models based on systems theory consider accidents as arising from the interactions among system components and usually do not specify single causal variables or factors"<br />
<br />
The STAMP model provides more information in terms of how to prevent future accidents rather then trying to place blame.<br />
<br />
Hazard analysis using STAMP rather then traditional methods can prevent accidents from happening in software based systems<br />
<br />
==Why was the Milstar satellite damaged although the components of the Inertial Navigation Unit (INU) operated correctly with respect to the instructions, including constraints, and data provided? Why would use of the STAMP model more thoroughly prevent problems such as those that occurred with the INU compared to traditional accident reporting?==<br />
<br />
==What are some appropriate applications of the STAMP model (both current and past)? Explain.==<br />
The STAMP model is especially useful in analyzing complex socio-technical and software-based systems where accidents can occur due to complex human decision making, component interaction rather than single component failure, and accidents that occur because slow shifts toward an accident prone environment.<br />
<br />
===The Mars Polar Lander Loss===<br />
"The software did not adequately control the descent speed of the aircraft - it misinterpreted noise from a Hall effect sensor as an indication the spacecraft had reached the surface of the planet"<br />
<br />
The components did not fail in terms of not satisfying their specified requirements, the failure occurred due to an unplanned effect of the system's interacting components.<br />
<br />
[http://www.cnn.com/TECH/space/9909/30/mars.metric.02/ CNN Article on the Mars Polar Lander Loss]<br />
<br />
===The Space Shuttle Challenger===<br />
The O-rings did not adequately control propellant gas release and there were inadequate controls in the launch-decision process. The failures occurred due to a complex socio-technical interaction.<br />
[http://history.nasa.gov/rogersrep/genindex.htm The Rogers Commission Report]<br />
<br />
==What are some ethical concerns of assigning blame for accidents?==<br />
<br />
==Outside Links==<br />
[http://shemesh.larc.nasa.gov/iria03/p13-leveson.pdf Applying STAMP in Accident Analysis]<br />
<br />
==Relevant Class Website Links==<br />
* [http://ethics.csc.ncsu.edu/risks/safety/ http://ethics.csc.ncsu.edu/risks/safety/]</div>Gsdedeughttps://wiki.expertiza.ncsu.edu/index.php?title=CSC_379:Week_5,_Group_5&diff=2117CSC 379:Week 5, Group 52007-08-04T21:53:51Z<p>Gsdedeug: /* Software Safety: Accident Models - Systems Theory vs. Chain of Events */</p>
<hr />
<div>=Software Safety: Accident Models - Systems Theory vs. Chain of Events=<br />
'''Skim through the following paper (focus on sections 1, 2.3, and 3, skip figures and tables) entitled [http://sunnyday.mit.edu/papers/tdsc.pdf "A Systems-Theoretic Approach to Safety in Software-Intensive Systems"] by Nancy G. Leveson, a Professor of Aeronautics and Astronautics at MIT, then answer the following questions:'''<br />
<br />
The majority of the content you need to form an informed response to the above questions is included in the paper. Bring in outside resources and topics discussed in class lectures as appropriate to support your response.<br />
<br />
<br />
<br />
==What are some shortcomings of traditional methods of accident reporting when applied to complex systems like software systems?==<br />
*Event-chain models tend to stop once something to blame is found. "reports stopped after assigning blame—usually to the operators who interacted with the software—and never got to the root of why the accident occurred"<br />
*Event chain models were not designed to handle complex systems such as software. "in dealing with software in safety-critical systems is the result of inappropriately attempting to extend the techniques that were successful in simpler, electromechanical systems and were based on models of accident causation that no longer apply"<br />
**Software can be very complex<br />
<br />
==How does the STAMP model improve accident prevention efforts? Explain some general concepts of the model.==<br />
"Systems theory allows more complex relationships between events to be considered"<br />
<br />
"Accident models based on systems theory consider accidents as arising from the interactions among system components and usually do not specify single causal variables or factors"<br />
<br />
The STAMP model provides more information in terms of how to prevent future accidents rather then trying to place blame.<br />
<br />
Hazard analysis using STAMP rather then traditional methods can prevent accidents from happening in software based systems<br />
<br />
==Why was the Milstar satellite damaged although the components of the Inertial Navigation Unit (INU) operated correctly with respect to the instructions, including constraints, and data provided? Why would use of the STAMP model more thoroughly prevent problems such as those that occurred with the INU compared to traditional accident reporting?==<br />
<br />
==What are some appropriate applications of the STAMP model (both current and past)? Explain.==<br />
The STAMP model is especially useful in analyzing complex socio-technical and software-based systems where accidents can occur due to complex human decision making, component interaction rather than single component failure, and accidents that occur because slow shifts toward an accident prone environment.<br />
<br />
===The Mars Polar Lander Loss===<br />
"The software did not adequately control the descent speed of the aircraft - it misinterpreted noise from a Hall effect sensor as an indication the spacecraft had reached the surface of the planet"<br />
<br />
The components did not fail in terms of not satisfying their specified requirements, the failure occurred due to an unplanned effect of the system's interacting components.<br />
<br />
[http://www.cnn.com/TECH/space/9909/30/mars.metric.02/ CNN Article on the Mars Polar Lander Loss]<br />
<br />
===The Space Shuttle Challenger===<br />
The O-rings did not adequately control propellant gas release and there were inadequate controls in the launch-decision process. The failures occurred due to a complex socio-technical interaction.<br />
<br />
==What are some ethical concerns of assigning blame for accidents?==<br />
<br />
==Outside Links==<br />
[http://shemesh.larc.nasa.gov/iria03/p13-leveson.pdf Applying STAMP in Accident Analysis]<br />
<br />
==Relevant Class Website Links==<br />
* [http://ethics.csc.ncsu.edu/risks/safety/ http://ethics.csc.ncsu.edu/risks/safety/]</div>Gsdedeughttps://wiki.expertiza.ncsu.edu/index.php?title=CSC_379:Week_5,_Group_5&diff=2116CSC 379:Week 5, Group 52007-08-04T21:53:25Z<p>Gsdedeug: /* Software Safety: Accident Models - Systems Theory vs. Chain of Events */</p>
<hr />
<div>=Software Safety: Accident Models - Systems Theory vs. Chain of Events=<br />
'''Skim through the following paper (focus on sections 1, 2.3, and 3, skip figures and tables) entitled [http://sunnyday.mit.edu/papers/tdsc.pdf "A Systems-Theoretic Approach to Safety in Software-Intensive Systems"] by Nancy G. Leveson, a Professor of Aeronautics and Astronautics at MIT, then answer the following questions:'''<br />
<br />
The majority of the content you need to form an informed response to the above questions is included in the paper. Bring in outside resources and topics discussed in class lectures as appropriate to support your response.<br />
<br />
<br />
<br />
==What are some shortcomings of traditional methods of accident reporting when applied to complex systems like software systems?==<br />
*Event-chain models tend to stop once something to blame is found. "reports stopped after assigning blame—usually to the operators who interacted with the software—and never got to the root of why the accident occurred"<br />
*Event chain models were not designed to handle complex systems such as software. "in dealing with software in safety-critical systems is the result of inappropriately attempting to extend the techniques that were successful in simpler, electromechanical systems and were based on models of accident causation that no longer apply"<br />
**Software can be very complex<br />
<br />
==How does the STAMP model improve accident prevention efforts? Explain some general concepts of the model.==<br />
"Systems theory allows more complex relationships between events to be considered"<br />
<br />
"Accident models based on systems theory consider accidents as arising from the interactions among system components and usually do not specify single causal variables or factors"<br />
<br />
The STAMP model provides more information in terms of how to prevent future accidents rather then trying to place blame.<br />
<br />
Hazard analysis using STAMP rather then traditional methods can prevent accidents from happening in software based systems<br />
<br />
==Why was the Milstar satellite damaged although the components of the Inertial Navigation Unit (INU) operated correctly with respect to the instructions, including constraints, and data provided? Why would use of the STAMP model more thoroughly prevent problems such as those that occurred with the INU compared to traditional accident reporting?==<br />
<br />
==What are some appropriate applications of the STAMP model (both current and past)? Explain.==<br />
The STAMP model is especially useful in analyzing complex socio-technical and software-based systems where accidents can occur due to complex human decision making, component interaction rather than single component failure, and accidents that occur because slow shifts toward an accident prone environment.<br />
<br />
===The Mars Polar Lander Loss===<br />
"The software did not adequately control the descent speed of the aircraft - it misinterpreted noise from a Hall effect sensor as an indication the spacecraft had reached the surface of the planet"<br />
<br />
The components did not fail in terms of not satisfying their specified requirements, the failure occurred due to an unplanned effect of the system's interacting components.<br />
<br />
[http://www.cnn.com/TECH/space/9909/30/mars.metric.02/ CNN Article on the Mars Polar Lander Loss]<br />
<br />
===The Space Shuttle Challenger===<br />
The O-rings did not adequately control propellant gas release and there were inadequate controls in the launch-decision process. The failures occurred due to a complex socio-technical interaction.<br />
<br />
==What are some ethical concerns of assigning blame for accidents?==<br />
<br />
==Relevant Class Website Links==<br />
* [http://ethics.csc.ncsu.edu/risks/safety/ http://ethics.csc.ncsu.edu/risks/safety/]</div>Gsdedeughttps://wiki.expertiza.ncsu.edu/index.php?title=CSC_379:Week_5,_Group_5&diff=2115CSC 379:Week 5, Group 52007-08-04T21:51:42Z<p>Gsdedeug: /* Software Safety: Accident Models - Systems Theory vs. Chain of Events */</p>
<hr />
<div>=Software Safety: Accident Models - Systems Theory vs. Chain of Events=<br />
'''Skim through the following paper (focus on sections 1, 2.3, and 3, skip figures and tables) entitled [http://sunnyday.mit.edu/papers/tdsc.pdf "A Systems-Theoretic Approach to Safety in Software-Intensive Systems"] by Nancy G. Leveson, a Professor of Aeronautics and Astronautics at MIT, then answer the following questions:'''<br />
<br />
The majority of the content you need to form an informed response to the above questions is included in the paper. Bring in outside resources and topics discussed in class lectures as appropriate to support your response.<br />
<br />
[http://shemesh.larc.nasa.gov/iria03/p13-leveson.pdf Applying STAMP in Accident Analysis]<br />
<br />
<br />
==What are some shortcomings of traditional methods of accident reporting when applied to complex systems like software systems?==<br />
*Event-chain models tend to stop once something to blame is found. "reports stopped after assigning blame—usually to the operators who interacted with the software—and never got to the root of why the accident occurred"<br />
*Event chain models were not designed to handle complex systems such as software. "in dealing with software in safety-critical systems is the result of inappropriately attempting to extend the techniques that were successful in simpler, electromechanical systems and were based on models of accident causation that no longer apply"<br />
**Software can be very complex<br />
<br />
==How does the STAMP model improve accident prevention efforts? Explain some general concepts of the model.==<br />
"Systems theory allows more complex relationships between events to be considered"<br />
<br />
"Accident models based on systems theory consider accidents as arising from the interactions among system components and usually do not specify single causal variables or factors"<br />
<br />
The STAMP model provides more information in terms of how to prevent future accidents rather then trying to place blame.<br />
<br />
Hazard analysis using STAMP rather then traditional methods can prevent accidents from happening in software based systems<br />
<br />
==Why was the Milstar satellite damaged although the components of the Inertial Navigation Unit (INU) operated correctly with respect to the instructions, including constraints, and data provided? Why would use of the STAMP model more thoroughly prevent problems such as those that occurred with the INU compared to traditional accident reporting?==<br />
<br />
==What are some appropriate applications of the STAMP model (both current and past)? Explain.==<br />
The STAMP model is especially useful in analyzing complex socio-technical and software-based systems where accidents can occur due to complex human decision making, component interaction rather than single component failure, and accidents that occur because slow shifts toward an accident prone environment.<br />
<br />
===The Mars Polar Lander Loss===<br />
"The software did not adequately control the descent speed of the aircraft - it misinterpreted noise from a Hall effect sensor as an indication the spacecraft had reached the surface of the planet"<br />
<br />
The components did not fail in terms of not satisfying their specified requirements, the failure occurred due to an unplanned effect of the system's interacting components.<br />
<br />
[http://www.cnn.com/TECH/space/9909/30/mars.metric.02/ CNN Article on the Mars Polar Lander Loss]<br />
<br />
===The Space Shuttle Challenger===<br />
The O-rings did not adequately control propellant gas release and there were inadequate controls in the launch-decision process. The failures occurred due to a complex socio-technical interaction.<br />
<br />
==What are some ethical concerns of assigning blame for accidents?==<br />
<br />
==Relevant Class Website Links==<br />
* [http://ethics.csc.ncsu.edu/risks/safety/ http://ethics.csc.ncsu.edu/risks/safety/]</div>Gsdedeughttps://wiki.expertiza.ncsu.edu/index.php?title=CSC_379:Week_5,_Group_5&diff=2114CSC 379:Week 5, Group 52007-08-04T21:50:44Z<p>Gsdedeug: /* Software Safety: Accident Models - Systems Theory vs. Chain of Events */</p>
<hr />
<div>=Software Safety: Accident Models - Systems Theory vs. Chain of Events=<br />
'''Skim through the following paper (focus on sections 1, 2.3, and 3, skip figures and tables) entitled [http://sunnyday.mit.edu/papers/tdsc.pdf "A Systems-Theoretic Approach to Safety in Software-Intensive Systems"] by Nancy G. Leveson, a Professor of Aeronautics and Astronautics at MIT, then answer the following questions:'''<br />
<br />
The majority of the content you need to form an informed response to the above questions is included in the paper. Bring in outside resources and topics discussed in class lectures as appropriate to support your response.<br />
<br />
<br />
==What are some shortcomings of traditional methods of accident reporting when applied to complex systems like software systems?==<br />
*Event-chain models tend to stop once something to blame is found. "reports stopped after assigning blame—usually to the operators who interacted with the software—and never got to the root of why the accident occurred"<br />
*Event chain models were not designed to handle complex systems such as software. "in dealing with software in safety-critical systems is the result of inappropriately attempting to extend the techniques that were successful in simpler, electromechanical systems and were based on models of accident causation that no longer apply"<br />
**Software can be very complex<br />
<br />
==How does the STAMP model improve accident prevention efforts? Explain some general concepts of the model.==<br />
"Systems theory allows more complex relationships between events to be considered"<br />
<br />
"Accident models based on systems theory consider accidents as arising from the interactions among system components and usually do not specify single causal variables or factors"<br />
<br />
The STAMP model provides more information in terms of how to prevent future accidents rather then trying to place blame.<br />
<br />
Hazard analysis using STAMP rather then traditional methods can prevent accidents from happening in software based systems<br />
<br />
==Why was the Milstar satellite damaged although the components of the Inertial Navigation Unit (INU) operated correctly with respect to the instructions, including constraints, and data provided? Why would use of the STAMP model more thoroughly prevent problems such as those that occurred with the INU compared to traditional accident reporting?==<br />
<br />
==What are some appropriate applications of the STAMP model (both current and past)? Explain.==<br />
The STAMP model is especially useful in analyzing complex socio-technical and software-based systems where accidents can occur due to complex human decision making, component interaction rather than single component failure, and accidents that occur because slow shifts toward an accident prone environment.<br />
<br />
===The Mars Polar Lander Loss===<br />
"The software did not adequately control the descent speed of the aircraft - it misinterpreted noise from a Hall effect sensor as an indication the spacecraft had reached the surface of the planet"<br />
<br />
The components did not fail in terms of not satisfying their specified requirements, the failure occurred due to an unplanned effect of the system's interacting components.<br />
<br />
[http://www.cnn.com/TECH/space/9909/30/mars.metric.02/ CNN Article on the Mars Polar Lander Loss]<br />
<br />
===The Space Shuttle Challenger===<br />
The O-rings did not adequately control propellant gas release and there were inadequate controls in the launch-decision process. The failures occurred due to a complex socio-technical interaction.<br />
<br />
==What are some ethical concerns of assigning blame for accidents?==<br />
<br />
==Relevant Class Website Links==<br />
* [http://ethics.csc.ncsu.edu/risks/safety/ http://ethics.csc.ncsu.edu/risks/safety/]</div>Gsdedeughttps://wiki.expertiza.ncsu.edu/index.php?title=CSC_379:Week_5,_Group_5&diff=2113CSC 379:Week 5, Group 52007-08-04T21:48:37Z<p>Gsdedeug: /* The Space Shuttle Challenger */</p>
<hr />
<div>=Software Safety: Accident Models - Systems Theory vs. Chain of Events=<br />
'''Skim through the following paper (focus on sections 1, 2.3, and 3, skip figures and tables) entitled [http://sunnyday.mit.edu/papers/tdsc.pdf "A Systems-Theoretic Approach to Safety in Software-Intensive Systems"] by Nancy G. Leveson, a Professor of Aeronautics and Astronautics at MIT, then answer the following questions:'''<br />
<br />
The majority of the content you need to form an informed response to the above questions is included in the paper. Bring in outside resources and topics discussed in class lectures as appropriate to support your response.<br />
<br />
<br />
==What are some shortcomings of traditional methods of accident reporting when applied to complex systems like software systems?==<br />
*Event-chain models tend to stop once something to blame is found. "reports stopped after assigning blame—usually to the operators who interacted with the software—and never got to the root of why the accident occurred"<br />
*Event chain models were not designed to handle complex systems such as software. "in dealing with software in safety-critical systems is the result of inappropriately attempting to extend the techniques that were successful in simpler, electromechanical systems and were based on models of accident causation that no longer apply"<br />
**Software can be very complex<br />
<br />
==How does the STAMP model improve accident prevention efforts? Explain some general concepts of the model.==<br />
"Systems theory allows more complex relationships between events to be considered"<br />
<br />
"Accident models based on systems theory consider accidents as arising from the interactions among system components and usually do not specify single causal variables or factors"<br />
<br />
The STAMP model provides more information in terms of how to prevent future accidents rather then trying to place blame.<br />
<br />
Hazard analysis using STAMP rather then traditional methods can prevent accidents from happening in software based systems<br />
<br />
==Why was the Milstar satellite damaged although the components of the Inertial Navigation Unit (INU) operated correctly with respect to the instructions, including constraints, and data provided? Why would use of the STAMP model more thoroughly prevent problems such as those that occurred with the INU compared to traditional accident reporting?==<br />
<br />
==What are some appropriate applications of the STAMP model (both current and past)? Explain.==<br />
The STAMP model is especially useful in analyzing complex socio-technical and software-based systems where accidents can occur due to complex human decision making, component interaction rather than single component failure, and accidents that occur because slow shifts toward an accident prone environment.<br />
<br />
===The Mars Polar Lander Loss===<br />
"The software did not adequately control the descent speed of the aircraft - it misinterpreted noise from a Hall effect sensor as an indication the spacecraft had reached the surface of the planet"<br />
<br />
The components did not fail in terms of not satisfying their specified requirements, the failure occurred due to an unplanned effect of the system's interacting components.<br />
<br />
===The Space Shuttle Challenger===<br />
The O-rings did not adequately control propellant gas release and there were inadequate controls in the launch-decision process. The failures occurred due to a complex socio-technical interaction.<br />
<br />
==What are some ethical concerns of assigning blame for accidents?==<br />
<br />
==Relevant Class Website Links==<br />
* [http://ethics.csc.ncsu.edu/risks/safety/ http://ethics.csc.ncsu.edu/risks/safety/]</div>Gsdedeughttps://wiki.expertiza.ncsu.edu/index.php?title=CSC_379:Week_5,_Group_5&diff=2112CSC 379:Week 5, Group 52007-08-04T21:47:10Z<p>Gsdedeug: /* The Mars Polar Lander Loss */</p>
<hr />
<div>=Software Safety: Accident Models - Systems Theory vs. Chain of Events=<br />
'''Skim through the following paper (focus on sections 1, 2.3, and 3, skip figures and tables) entitled [http://sunnyday.mit.edu/papers/tdsc.pdf "A Systems-Theoretic Approach to Safety in Software-Intensive Systems"] by Nancy G. Leveson, a Professor of Aeronautics and Astronautics at MIT, then answer the following questions:'''<br />
<br />
The majority of the content you need to form an informed response to the above questions is included in the paper. Bring in outside resources and topics discussed in class lectures as appropriate to support your response.<br />
<br />
<br />
==What are some shortcomings of traditional methods of accident reporting when applied to complex systems like software systems?==<br />
*Event-chain models tend to stop once something to blame is found. "reports stopped after assigning blame—usually to the operators who interacted with the software—and never got to the root of why the accident occurred"<br />
*Event chain models were not designed to handle complex systems such as software. "in dealing with software in safety-critical systems is the result of inappropriately attempting to extend the techniques that were successful in simpler, electromechanical systems and were based on models of accident causation that no longer apply"<br />
**Software can be very complex<br />
<br />
==How does the STAMP model improve accident prevention efforts? Explain some general concepts of the model.==<br />
"Systems theory allows more complex relationships between events to be considered"<br />
<br />
"Accident models based on systems theory consider accidents as arising from the interactions among system components and usually do not specify single causal variables or factors"<br />
<br />
The STAMP model provides more information in terms of how to prevent future accidents rather then trying to place blame.<br />
<br />
Hazard analysis using STAMP rather then traditional methods can prevent accidents from happening in software based systems<br />
<br />
==Why was the Milstar satellite damaged although the components of the Inertial Navigation Unit (INU) operated correctly with respect to the instructions, including constraints, and data provided? Why would use of the STAMP model more thoroughly prevent problems such as those that occurred with the INU compared to traditional accident reporting?==<br />
<br />
==What are some appropriate applications of the STAMP model (both current and past)? Explain.==<br />
The STAMP model is especially useful in analyzing complex socio-technical and software-based systems where accidents can occur due to complex human decision making, component interaction rather than single component failure, and accidents that occur because slow shifts toward an accident prone environment.<br />
<br />
===The Mars Polar Lander Loss===<br />
"The software did not adequately control the descent speed of the aircraft - it misinterpreted noise from a Hall effect sensor as an indication the spacecraft had reached the surface of the planet"<br />
<br />
The components did not fail in terms of not satisfying their specified requirements, the failure occurred due to an unplanned effect of the system's interacting components.<br />
<br />
===The Space Shuttle Challenger===<br />
The O-rings did not adequately control propellant gas release and there were inadequate controls in the launch-decision process.<br />
<br />
==What are some ethical concerns of assigning blame for accidents?==<br />
<br />
==Relevant Class Website Links==<br />
* [http://ethics.csc.ncsu.edu/risks/safety/ http://ethics.csc.ncsu.edu/risks/safety/]</div>Gsdedeughttps://wiki.expertiza.ncsu.edu/index.php?title=CSC_379:Week_5,_Group_5&diff=2111CSC 379:Week 5, Group 52007-08-04T21:42:16Z<p>Gsdedeug: /* The Space Shuttle Challenger */</p>
<hr />
<div>=Software Safety: Accident Models - Systems Theory vs. Chain of Events=<br />
'''Skim through the following paper (focus on sections 1, 2.3, and 3, skip figures and tables) entitled [http://sunnyday.mit.edu/papers/tdsc.pdf "A Systems-Theoretic Approach to Safety in Software-Intensive Systems"] by Nancy G. Leveson, a Professor of Aeronautics and Astronautics at MIT, then answer the following questions:'''<br />
<br />
The majority of the content you need to form an informed response to the above questions is included in the paper. Bring in outside resources and topics discussed in class lectures as appropriate to support your response.<br />
<br />
<br />
==What are some shortcomings of traditional methods of accident reporting when applied to complex systems like software systems?==<br />
*Event-chain models tend to stop once something to blame is found. "reports stopped after assigning blame—usually to the operators who interacted with the software—and never got to the root of why the accident occurred"<br />
*Event chain models were not designed to handle complex systems such as software. "in dealing with software in safety-critical systems is the result of inappropriately attempting to extend the techniques that were successful in simpler, electromechanical systems and were based on models of accident causation that no longer apply"<br />
**Software can be very complex<br />
<br />
==How does the STAMP model improve accident prevention efforts? Explain some general concepts of the model.==<br />
"Systems theory allows more complex relationships between events to be considered"<br />
<br />
"Accident models based on systems theory consider accidents as arising from the interactions among system components and usually do not specify single causal variables or factors"<br />
<br />
The STAMP model provides more information in terms of how to prevent future accidents rather then trying to place blame.<br />
<br />
Hazard analysis using STAMP rather then traditional methods can prevent accidents from happening in software based systems<br />
<br />
==Why was the Milstar satellite damaged although the components of the Inertial Navigation Unit (INU) operated correctly with respect to the instructions, including constraints, and data provided? Why would use of the STAMP model more thoroughly prevent problems such as those that occurred with the INU compared to traditional accident reporting?==<br />
<br />
==What are some appropriate applications of the STAMP model (both current and past)? Explain.==<br />
The STAMP model is especially useful in analyzing complex socio-technical and software-based systems where accidents can occur due to complex human decision making, component interaction rather than single component failure, and accidents that occur because slow shifts toward an accident prone environment.<br />
<br />
===The Mars Polar Lander Loss===<br />
===The Space Shuttle Challenger===<br />
The O-rings did not adequately control propellant gas release and there were inadequate controls in the launch-decision process.<br />
<br />
==What are some ethical concerns of assigning blame for accidents?==<br />
<br />
==Relevant Class Website Links==<br />
* [http://ethics.csc.ncsu.edu/risks/safety/ http://ethics.csc.ncsu.edu/risks/safety/]</div>Gsdedeughttps://wiki.expertiza.ncsu.edu/index.php?title=CSC_379:Week_5,_Group_5&diff=2110CSC 379:Week 5, Group 52007-08-04T21:38:17Z<p>Gsdedeug: /* What are some appropriate applications of the STAMP model (both current and past)? Explain. */</p>
<hr />
<div>=Software Safety: Accident Models - Systems Theory vs. Chain of Events=<br />
'''Skim through the following paper (focus on sections 1, 2.3, and 3, skip figures and tables) entitled [http://sunnyday.mit.edu/papers/tdsc.pdf "A Systems-Theoretic Approach to Safety in Software-Intensive Systems"] by Nancy G. Leveson, a Professor of Aeronautics and Astronautics at MIT, then answer the following questions:'''<br />
<br />
The majority of the content you need to form an informed response to the above questions is included in the paper. Bring in outside resources and topics discussed in class lectures as appropriate to support your response.<br />
<br />
<br />
==What are some shortcomings of traditional methods of accident reporting when applied to complex systems like software systems?==<br />
*Event-chain models tend to stop once something to blame is found. "reports stopped after assigning blame—usually to the operators who interacted with the software—and never got to the root of why the accident occurred"<br />
*Event chain models were not designed to handle complex systems such as software. "in dealing with software in safety-critical systems is the result of inappropriately attempting to extend the techniques that were successful in simpler, electromechanical systems and were based on models of accident causation that no longer apply"<br />
**Software can be very complex<br />
<br />
==How does the STAMP model improve accident prevention efforts? Explain some general concepts of the model.==<br />
"Systems theory allows more complex relationships between events to be considered"<br />
<br />
"Accident models based on systems theory consider accidents as arising from the interactions among system components and usually do not specify single causal variables or factors"<br />
<br />
The STAMP model provides more information in terms of how to prevent future accidents rather then trying to place blame.<br />
<br />
Hazard analysis using STAMP rather then traditional methods can prevent accidents from happening in software based systems<br />
<br />
==Why was the Milstar satellite damaged although the components of the Inertial Navigation Unit (INU) operated correctly with respect to the instructions, including constraints, and data provided? Why would use of the STAMP model more thoroughly prevent problems such as those that occurred with the INU compared to traditional accident reporting?==<br />
<br />
==What are some appropriate applications of the STAMP model (both current and past)? Explain.==<br />
The STAMP model is especially useful in analyzing complex socio-technical and software-based systems where accidents can occur due to complex human decision making, component interaction rather than single component failure, and accidents that occur because slow shifts toward an accident prone environment.<br />
<br />
===The Mars Polar Lander Loss===<br />
===The Space Shuttle Challenger===<br />
<br />
==What are some ethical concerns of assigning blame for accidents?==<br />
<br />
==Relevant Class Website Links==<br />
* [http://ethics.csc.ncsu.edu/risks/safety/ http://ethics.csc.ncsu.edu/risks/safety/]</div>Gsdedeughttps://wiki.expertiza.ncsu.edu/index.php?title=CSC_379:Week_5,_Group_5&diff=2109CSC 379:Week 5, Group 52007-08-04T21:37:41Z<p>Gsdedeug: /* What are some appropriate applications of the STAMP model (both current and past)? Explain. */</p>
<hr />
<div>=Software Safety: Accident Models - Systems Theory vs. Chain of Events=<br />
'''Skim through the following paper (focus on sections 1, 2.3, and 3, skip figures and tables) entitled [http://sunnyday.mit.edu/papers/tdsc.pdf "A Systems-Theoretic Approach to Safety in Software-Intensive Systems"] by Nancy G. Leveson, a Professor of Aeronautics and Astronautics at MIT, then answer the following questions:'''<br />
<br />
The majority of the content you need to form an informed response to the above questions is included in the paper. Bring in outside resources and topics discussed in class lectures as appropriate to support your response.<br />
<br />
<br />
==What are some shortcomings of traditional methods of accident reporting when applied to complex systems like software systems?==<br />
*Event-chain models tend to stop once something to blame is found. "reports stopped after assigning blame—usually to the operators who interacted with the software—and never got to the root of why the accident occurred"<br />
*Event chain models were not designed to handle complex systems such as software. "in dealing with software in safety-critical systems is the result of inappropriately attempting to extend the techniques that were successful in simpler, electromechanical systems and were based on models of accident causation that no longer apply"<br />
**Software can be very complex<br />
<br />
==How does the STAMP model improve accident prevention efforts? Explain some general concepts of the model.==<br />
"Systems theory allows more complex relationships between events to be considered"<br />
<br />
"Accident models based on systems theory consider accidents as arising from the interactions among system components and usually do not specify single causal variables or factors"<br />
<br />
The STAMP model provides more information in terms of how to prevent future accidents rather then trying to place blame.<br />
<br />
Hazard analysis using STAMP rather then traditional methods can prevent accidents from happening in software based systems<br />
<br />
==Why was the Milstar satellite damaged although the components of the Inertial Navigation Unit (INU) operated correctly with respect to the instructions, including constraints, and data provided? Why would use of the STAMP model more thoroughly prevent problems such as those that occurred with the INU compared to traditional accident reporting?==<br />
<br />
==What are some appropriate applications of the STAMP model (both current and past)? Explain.==<br />
The STAMP model is especially useful in analyzing complex socio-technical and software-based systems where accidents can occur due to complex human decision making, component interaction rather than single component failure, and accidents that occur because slow shifts toward an accident prone environment.<br />
<br />
===The Mars Polar Lander Loss===<br />
<br />
==What are some ethical concerns of assigning blame for accidents?==<br />
<br />
==Relevant Class Website Links==<br />
* [http://ethics.csc.ncsu.edu/risks/safety/ http://ethics.csc.ncsu.edu/risks/safety/]</div>Gsdedeughttps://wiki.expertiza.ncsu.edu/index.php?title=CSC_379:Week_5,_Group_5&diff=2108CSC 379:Week 5, Group 52007-08-04T21:35:45Z<p>Gsdedeug: /* What are some appropriate applications of the STAMP model (both current and past)? Explain. */</p>
<hr />
<div>=Software Safety: Accident Models - Systems Theory vs. Chain of Events=<br />
'''Skim through the following paper (focus on sections 1, 2.3, and 3, skip figures and tables) entitled [http://sunnyday.mit.edu/papers/tdsc.pdf "A Systems-Theoretic Approach to Safety in Software-Intensive Systems"] by Nancy G. Leveson, a Professor of Aeronautics and Astronautics at MIT, then answer the following questions:'''<br />
<br />
The majority of the content you need to form an informed response to the above questions is included in the paper. Bring in outside resources and topics discussed in class lectures as appropriate to support your response.<br />
<br />
<br />
==What are some shortcomings of traditional methods of accident reporting when applied to complex systems like software systems?==<br />
*Event-chain models tend to stop once something to blame is found. "reports stopped after assigning blame—usually to the operators who interacted with the software—and never got to the root of why the accident occurred"<br />
*Event chain models were not designed to handle complex systems such as software. "in dealing with software in safety-critical systems is the result of inappropriately attempting to extend the techniques that were successful in simpler, electromechanical systems and were based on models of accident causation that no longer apply"<br />
**Software can be very complex<br />
<br />
==How does the STAMP model improve accident prevention efforts? Explain some general concepts of the model.==<br />
"Systems theory allows more complex relationships between events to be considered"<br />
<br />
"Accident models based on systems theory consider accidents as arising from the interactions among system components and usually do not specify single causal variables or factors"<br />
<br />
The STAMP model provides more information in terms of how to prevent future accidents rather then trying to place blame.<br />
<br />
Hazard analysis using STAMP rather then traditional methods can prevent accidents from happening in software based systems<br />
<br />
==Why was the Milstar satellite damaged although the components of the Inertial Navigation Unit (INU) operated correctly with respect to the instructions, including constraints, and data provided? Why would use of the STAMP model more thoroughly prevent problems such as those that occurred with the INU compared to traditional accident reporting?==<br />
<br />
==What are some appropriate applications of the STAMP model (both current and past)? Explain.==<br />
The STAMP model is especially useful in analyzing complex socio-technical and software-based systems where accidents can occur due to complex human decision making, component interaction rather than single component failure, and accidents that occur because slow shifts toward an accident prone environment.<br />
<br />
==What are some ethical concerns of assigning blame for accidents?==<br />
<br />
==Relevant Class Website Links==<br />
* [http://ethics.csc.ncsu.edu/risks/safety/ http://ethics.csc.ncsu.edu/risks/safety/]</div>Gsdedeughttps://wiki.expertiza.ncsu.edu/index.php?title=CSC_379:Week_5,_Group_5&diff=2107CSC 379:Week 5, Group 52007-08-04T21:30:14Z<p>Gsdedeug: /* What are some appropriate applications of the STAMP model (both current and past)? Explain. */</p>
<hr />
<div>=Software Safety: Accident Models - Systems Theory vs. Chain of Events=<br />
'''Skim through the following paper (focus on sections 1, 2.3, and 3, skip figures and tables) entitled [http://sunnyday.mit.edu/papers/tdsc.pdf "A Systems-Theoretic Approach to Safety in Software-Intensive Systems"] by Nancy G. Leveson, a Professor of Aeronautics and Astronautics at MIT, then answer the following questions:'''<br />
<br />
The majority of the content you need to form an informed response to the above questions is included in the paper. Bring in outside resources and topics discussed in class lectures as appropriate to support your response.<br />
<br />
<br />
==What are some shortcomings of traditional methods of accident reporting when applied to complex systems like software systems?==<br />
*Event-chain models tend to stop once something to blame is found. "reports stopped after assigning blame—usually to the operators who interacted with the software—and never got to the root of why the accident occurred"<br />
*Event chain models were not designed to handle complex systems such as software. "in dealing with software in safety-critical systems is the result of inappropriately attempting to extend the techniques that were successful in simpler, electromechanical systems and were based on models of accident causation that no longer apply"<br />
**Software can be very complex<br />
<br />
==How does the STAMP model improve accident prevention efforts? Explain some general concepts of the model.==<br />
"Systems theory allows more complex relationships between events to be considered"<br />
<br />
"Accident models based on systems theory consider accidents as arising from the interactions among system components and usually do not specify single causal variables or factors"<br />
<br />
The STAMP model provides more information in terms of how to prevent future accidents rather then trying to place blame.<br />
<br />
Hazard analysis using STAMP rather then traditional methods can prevent accidents from happening in software based systems<br />
<br />
==Why was the Milstar satellite damaged although the components of the Inertial Navigation Unit (INU) operated correctly with respect to the instructions, including constraints, and data provided? Why would use of the STAMP model more thoroughly prevent problems such as those that occurred with the INU compared to traditional accident reporting?==<br />
<br />
==What are some appropriate applications of the STAMP model (both current and past)? Explain.==<br />
The STAMP model is especially useful in analyzing complex socio-technical systems and systems which are more software-intensive.<br />
<br />
==What are some ethical concerns of assigning blame for accidents?==<br />
<br />
==Relevant Class Website Links==<br />
* [http://ethics.csc.ncsu.edu/risks/safety/ http://ethics.csc.ncsu.edu/risks/safety/]</div>Gsdedeughttps://wiki.expertiza.ncsu.edu/index.php?title=CSC_379:Week_4,_Group_3&diff=2053CSC 379:Week 4, Group 32007-08-02T20:42:07Z<p>Gsdedeug: </p>
<hr />
<div>=Privacy of Search Content / Search Engines both Local (Desktop Search) and Internet=<br />
A recent proof-of-concept [http://www.hacker.co.il/security/ie/css_import.html exploit] of Internet Explorer allowed for the running of a search through Google Desktop for passwords on a user’s computer upon visiting a website containing the exploit script. Operating systems, browsers, and other software like desktop searches keep a written history of user activities, of which many users are unaware of. This poses a privacy threat to users as computers with content collected through the use of a variety of programs remains recoverable, even when thought to be deleted. Many business and government agencies implement technologies designed to obscure information on hard drives prior to allowing old computers out of their inventory. However for many non-tech-savvy consumers, such technologies are not implemented, or are impractical (as the case when a computer is disabled and needs repaired). In such cases, private information can be exposed, now ever more easily and thoroughly through the use of desktop search technologies.<br />
<br />
Internet search engines also pose a threat to privacy through maintenance of search logs as it may be possible for the government to use subpoenas to acquire normally private user search logs. Google has responded by shortening the length of time it maintains search data, and other search engines have precautions in place as well to protect user privacy. <br />
<br />
==Privacy Concerns (Internet Search Engines)==<br />
===Introduction===<br />
Most internet users are not aware that what they type into seemingly benign search engines is being stored in a database. Though the the tracking methodologies differ across search engines the data is often associated by an ip address or name or both, depending on how much information you've shared with the search engine. This information is very valuable to online advertisers and marketers who can use it to focus and target their campaigns and leverage what people search for (revealing their curiosities, anxieties, fears, and personal dilemmas) in order to increase their profits.<br />
===Regulations===<br />
Since Google's acquisition of DoubleClick, it has been under investigation by several regulatory bodies (FTC, Congress, and EU) for privacy concerns (as well as unfair business practices). This led to Google announcing that it would "make anonymous" all searches after a period of 18 months. This consists of eliminating any association of a search with an ip address as well as forcing cookies to expire after 2 years. Many [http://news.zdnet.co.uk/security/0,1000000189,39288141,00.htm critics do not feel that this is enough privacy.] They point out that the 18 month limit goes into effect only after you stop using Google which seems rather unlikely given it's position in the world of search engines. Attempting to use the privacy issue to get an edge over Google, [http://www.iht.com/articles/2007/07/23/business/search.php Microsoft announced similar in-house regulations of their data], [http://www.computerworld.com/action/article.do?command=viewArticleBasic&articleId=9027924 as did Yahoo.] Ask.com [http://searchengineland.com/070719-173648.php went further.] In addition to severing identifying links to an IP address it allows for a search which is erased immediately. Though critics point out that too much privacy can allow internet predators to go undetected.<br />
<br />
<br />
==Privacy Concerns (Desktop Search)==<br />
<br />
===Introduction===<br />
<br />
Desktop Search is the name given to a tool that performs searches in a user's local system. Current desktop search applications can search from text files, to music files, to images, to e-mail and chat files. Desktop Search tools use an indexing system, which lets them perform searches in big hard drives at a great speed. Newer versions of desktop searching tools also allow for searching files throughout networks and other computers. Most of the desktop search tools out there can search for the content of files with Microsoft formats, such as word, excel, power point, etc. as well as of locally stored websites. Some others support more formats such as PDF, MP3, JPG, GIF, AIM, etc. Some of the most known desktop search tools out there are [http://desktop.yahoo.com X1 Yahoo! Desktop Search], http://www.microsoft.com/windows/desktopsearch/hp1.mspx Windows Desktop Search], [http://desktop.google.com/ Google Desktop], [http://sp.ask.com/en/docs/desktop/overview.shtml Ask Jeeves Desktop Search], [http://www.copernic.com/ Copernic Desktop Search], etc. <br />
<br />
===The Good of Desktop Search===<br />
<br />
Desktop Search tools can index emails, email attachments, files, messenger contacts, notes, web searches, etc. and uses these indexes to find these targets, based on specified keywords in a few seconds. In some cases, such as with Google Desktop and Yahoo Desktop Search, these applications are mereged with their corresponding search engines by letting the user search their computer and the web, at the same time, from the search engines web site. In other cases, such as Copernic's case, the tool is a stand alone application, which allows for better security. Copernic is an application that is specially good for audio, and image files, as it searches comments and other factors that allow the application to scan their content. In some other cases, the desktop search tool, like the Google tool, caches search results, which allows the user to look at older versions these. <br />
<br />
===Security Issues of Desktop Search===<br />
<br />
One of the main concerns with desktop searches has to do with the retrieval of web history. The Google Desktop client was specially drawing attention, because it could index secure cached websites. This gave unrestricted access to anyone who would perform a search, and though this feature could be disabled, it is a <br />
very critical issue to keep in mind. The problem lies in the fact that these are features rather than bugs. It would make sense to have this functionality in a secure personal computer. However, the perspective changes when we have this type of functionality in public or enterprise computers, as confidential information could be easily disclosed. It is essential for companies to research these types of vulnerabilities before using this type of software. There is another issue, which is concerned with indexing in a <br />
network or on remote computers. In this case, cached files are stored in a central server, which may make such information vulnerable for others to see, specially the government. <br />
<br />
===Articles===<br />
<br />
====''Introduction''====<br />
*[http://www.consumersearch.com/www/software/desktop-search-engines/review.html Desktop Search Engines] Consumer Search <br />
*[http://searchenginewatch.com/showPage.html?page=3421651 Google Desktop Search Launched] ''Danny Sullivan'' SearchEngineWatch.com<br />
<br />
====''Advantages''====<br />
*[http://www.microsoft.com/windows/desktopsearch/search/default.mspx Windows Desktop Search: Best in Class Search Tool] Windows Desktop Search<br />
*[http://netsecurity.about.com/od/secureyourcomputer/a/aa102904_2.htm Desktop Search Tools] ''Tony Bradley'' About.com<br />
<br />
====''Security''====<br />
*[http://www.infoworld.com/article/07/03/07/HNgoogledesktopsearch_1.html Google updates desktop search tool] ''James Niccolai'' InfoWorld<br />
*[http://google.blognewschannel.com/archives/2006/02/09/privacy-experts-advice-against-google-desktop-3 Privacy Experts Advise Against Google Desktop 3] ''Nathan Weinberg'' Blog News Chanel<br />
*[http://www.gartner.com/DisplayDocument?doc_cd=137896 Manage Google's Desktop Search Now or Lock It Out] Gartner<br />
*[http://www.eweek.com/article2/0,1895,1735099,00.asp Desktop Search: The Ultimate Security Hole?] ''Matthew Hicks'' eWeek.com<br />
*[http://desktop.google.com/privacypolicy.html Privacy Policy] ''Privacy Matters'' Google Desktop<br />
*[http://searchenginewatch.com/showPage.html?page=3421621 A Closer Look At Privacy & Desktop Search] ''Danny Sullivan'' SearchEngineWatch.com<br />
<br />
==Resources==<br />
===Relevant External Links:===<br />
* [http://en.wikipedia.org/wiki/AOL_search_data_scandal Wikipedia - AOL Search Data Scandal]<br />
* [http://www.nytimes.com/2006/08/09/technology/09aol.html?ex=1312776000en=f6f61949c6da4d38ei=5090 New York Times - "A Face Is Exposed for AOL Searcher No. 4417749"]<br />
===Relevant Class Website Links:===<br />
* [http://ethics.csc.ncsu.edu/abuse/wvt/ http://ethics.csc.ncsu.edu/abuse/wvt/]</div>Gsdedeughttps://wiki.expertiza.ncsu.edu/index.php?title=CSC_379:Week_4,_Group_3&diff=2048CSC 379:Week 4, Group 32007-08-02T20:38:08Z<p>Gsdedeug: </p>
<hr />
<div>=Privacy of Search Content / Search Engines both Local (Desktop Search) and Internet=<br />
A recent proof-of-concept [http://www.hacker.co.il/security/ie/css_import.html exploit] of Internet Explorer allowed for the running of a search through Google Desktop for passwords on a user’s computer upon visiting a website containing the exploit script. Operating systems, browsers, and other software like desktop searches keep a written history of user activities, of which many users are unaware of. This poses a privacy threat to users as computers with content collected through the use of a variety of programs remains recoverable, even when thought to be deleted. Many business and government agencies implement technologies designed to obscure information on hard drives prior to allowing old computers out of their inventory. However for many non-tech-savvy consumers, such technologies are not implemented, or are impractical (as the case when a computer is disabled and needs repaired). In such cases, private information can be exposed, now ever more easily and thoroughly through the use of desktop search technologies.<br />
<br />
Internet search engines also pose a threat to privacy through maintenance of search logs as it may be possible for the government to use subpoenas to acquire normally private user search logs. Google has responded by shortening the length of time it maintains search data, and other search engines have precautions in place as well to protect user privacy. <br />
<br />
==Privacy Concerns (Internet Search Engines)==<br />
===Introduction===<br />
Most internet users are not aware that what they type into seemingly benign search engines is being stored in a database. Though the the tracking methodologies differ across search engines the data is often associated by an ip address or name or both, depending on how much information you've shared with the search engine. This information is very valuable to online advertisers and marketers who can use it to focus and target their campaigns and leverage what people search for (revealing their curiosities, anxieties, fears, and personal dilemmas) in order to increase their profits.<br />
===Regulations===<br />
Since Google's acquisition of DoubleClick, it has been under investigation by several regulatory bodies (FTC, Congress, and EU) for privacy concerns (as well as unfair business practices). This led to Google announcing that it would "make anonymous" all searches after a period of 18 months. This consists of eliminating any association of a search with an ip address as well as forcing cookies to expire after 2 years. Many [http://news.zdnet.co.uk/security/0,1000000189,39288141,00.htm critics do not feel that this is enough privacy.] They point out that the 18 month limit goes into effect only after you stop using Google which seems rather unlikely given it's position in the world of search engines.Keeping step, Microsoft announced similar in-house regulations of their data, [http://www.computerworld.com/action/article.do?command=viewArticleBasic&articleId=9027924 as did Yahoo.] Ask.com [http://searchengineland.com/070719-173648.php went further.] In addition to severing identifying links to an IP address it allows for a search which is erased immediately. Though critics point out that too much privacy can allow internet predators to go undetected.<br />
<br />
<br />
==Privacy Concerns (Desktop Search)==<br />
<br />
===Introduction===<br />
<br />
Desktop Search is the name given to a tool that performs searches in a user's local system. Current desktop search applications can search from text files, to music files, to images, to e-mail and chat files. Desktop Search tools use an indexing system, which lets them perform searches in big hard drives at a great speed. Newer versions of desktop searching tools also allow for searching files throughout networks and other computers. Most of the desktop search tools out there can search for the content of files with Microsoft formats, such as word, excel, power point, etc. as well as of locally stored websites. Some others support more formats such as PDF, MP3, JPG, GIF, AIM, etc. Some of the most known desktop search tools out there are [http://desktop.yahoo.com X1 Yahoo! Desktop Search], http://www.microsoft.com/windows/desktopsearch/hp1.mspx Windows Desktop Search], [http://desktop.google.com/ Google Desktop], [http://sp.ask.com/en/docs/desktop/overview.shtml Ask Jeeves Desktop Search], [http://www.copernic.com/ Copernic Desktop Search], etc. <br />
<br />
===The Good of Desktop Search===<br />
<br />
Desktop Search tools can index emails, email attachments, files, messenger contacts, notes, web searches, etc. and uses these indexes to find these targets, based on specified keywords in a few seconds. In some cases, such as with Google Desktop and Yahoo Desktop Search, these applications are mereged with their corresponding search engines by letting the user search their computer and the web, at the same time, from the search engines web site. In other cases, such as Copernic's case, the tool is a stand alone application, which allows for better security. Copernic is an application that is specially good for audio, and image files, as it searches comments and other factors that allow the application to scan their content. In some other cases, the desktop search tool, like the Google tool, caches search results, which allows the user to look at older versions these. <br />
<br />
===Security Issues of Desktop Search===<br />
<br />
One of the main concerns with desktop searches has to do with the retrieval of web history. The Google Desktop client was specially drawing attention, because it could index secure cached websites. This gave unrestricted access to anyone who would perform a search, and though this feature could be disabled, it is a <br />
very critical issue to keep in mind. The problem lies in the fact that these are features rather than bugs. It would make sense to have this functionality in a secure personal computer. However, the perspective changes when we have this type of functionality in public or enterprise computers, as confidential information could be easily disclosed. It is essential for companies to research these types of vulnerabilities before using this type of software. There is another issue, which is concerned with indexing in a <br />
network or on remote computers. In this case, cached files are stored in a central server, which may make such information vulnerable for others to see, specially the government. <br />
<br />
===Articles===<br />
<br />
====''Introduction''====<br />
*[http://www.consumersearch.com/www/software/desktop-search-engines/review.html Desktop Search Engines] Consumer Search <br />
*[http://searchenginewatch.com/showPage.html?page=3421651 Google Desktop Search Launched] ''Danny Sullivan'' SearchEngineWatch.com<br />
<br />
====''Advantages''====<br />
*[http://www.microsoft.com/windows/desktopsearch/search/default.mspx Windows Desktop Search: Best in Class Search Tool] Windows Desktop Search<br />
*[http://netsecurity.about.com/od/secureyourcomputer/a/aa102904_2.htm Desktop Search Tools] ''Tony Bradley'' About.com<br />
<br />
====''Security''====<br />
*[http://www.infoworld.com/article/07/03/07/HNgoogledesktopsearch_1.html Google updates desktop search tool] ''James Niccolai'' InfoWorld<br />
*[http://google.blognewschannel.com/archives/2006/02/09/privacy-experts-advice-against-google-desktop-3 Privacy Experts Advise Against Google Desktop 3] ''Nathan Weinberg'' Blog News Chanel<br />
*[http://www.gartner.com/DisplayDocument?doc_cd=137896 Manage Google's Desktop Search Now or Lock It Out] Gartner<br />
*[http://www.eweek.com/article2/0,1895,1735099,00.asp Desktop Search: The Ultimate Security Hole?] ''Matthew Hicks'' eWeek.com<br />
*[http://desktop.google.com/privacypolicy.html Privacy Policy] ''Privacy Matters'' Google Desktop<br />
*[http://searchenginewatch.com/showPage.html?page=3421621 A Closer Look At Privacy & Desktop Search] ''Danny Sullivan'' SearchEngineWatch.com<br />
<br />
==Resources==<br />
===Relevant External Links:===<br />
* [http://en.wikipedia.org/wiki/AOL_search_data_scandal Wikipedia - AOL Search Data Scandal]<br />
* [http://www.nytimes.com/2006/08/09/technology/09aol.html?ex=1312776000en=f6f61949c6da4d38ei=5090 New York Times - "A Face Is Exposed for AOL Searcher No. 4417749"]<br />
===Relevant Class Website Links:===<br />
* [http://ethics.csc.ncsu.edu/abuse/wvt/ http://ethics.csc.ncsu.edu/abuse/wvt/]</div>Gsdedeughttps://wiki.expertiza.ncsu.edu/index.php?title=CSC_379:Week_4,_Group_3&diff=2046CSC 379:Week 4, Group 32007-08-02T20:33:26Z<p>Gsdedeug: </p>
<hr />
<div>=Privacy of Search Content / Search Engines both Local (Desktop Search) and Internet=<br />
A recent proof-of-concept [http://www.hacker.co.il/security/ie/css_import.html exploit] of Internet Explorer allowed for the running of a search through Google Desktop for passwords on a user’s computer upon visiting a website containing the exploit script. Operating systems, browsers, and other software like desktop searches keep a written history of user activities, of which many users are unaware of. This poses a privacy threat to users as computers with content collected through the use of a variety of programs remains recoverable, even when thought to be deleted. Many business and government agencies implement technologies designed to obscure information on hard drives prior to allowing old computers out of their inventory. However for many non-tech-savvy consumers, such technologies are not implemented, or are impractical (as the case when a computer is disabled and needs repaired). In such cases, private information can be exposed, now ever more easily and thoroughly through the use of desktop search technologies.<br />
<br />
Internet search engines also pose a threat to privacy through maintenance of search logs as it may be possible for the government to use subpoenas to acquire normally private user search logs. Google has responded by shortening the length of time it maintains search data, and other search engines have precautions in place as well to protect user privacy. <br />
<br />
==Privacy Concerns (Internet Search Engines)==<br />
===Introduction===<br />
Most internet users are not aware that what they type into seemingly benign search engines is being stored in a database. Though the the tracking methodologies differ across search engines the data is often associated by an ip address or name or both, depending on how much information you've shared with the search engine. This information is very valuable to online advertisers and marketers who can use it to focus and target their campaigns and leverage what people search for (revealing their curiosities, anxieties, fears, and personal dilemmas) in order to increase their profits.<br />
===Regulations===<br />
Since Google's acquisition of DoubleClick, it has been under investigation by several regulatory bodies (FTC, Congress, and EU) for privacy concerns (as well as unfair business practices). This led to Google announcing that it would "make anonymous" all searches after a period of 18 months. This consists of eliminating any association of a search with an ip address as well as forcing cookies to expire after 2 years. Keeping step, Microsoft announced similar in-house regulations of their data, [http://www.computerworld.com/action/article.do?command=viewArticleBasic&articleId=9027924 as did Yahoo.] Ask.com [http://searchengineland.com/070719-173648.php went further.] In addition to severing identifying links to an IP address it allows for a search which is erased immediately. Though critics point out that too much privacy can allow internet predators to go undetected.<br />
<br />
<br />
==Privacy Concerns (Desktop Search)==<br />
<br />
===Introduction===<br />
<br />
Desktop Search is the name given to a tool that performs searches in a user's local system. Current desktop search applications can search from text files, to music files, to images, to e-mail and chat files. Desktop Search tools use an indexing system, which lets them perform searches in big hard drives at a great speed. Newer versions of desktop searching tools also allow for searching files throughout networks and other computers. Most of the desktop search tools out there can search for the content of files with Microsoft formats, such as word, excel, power point, etc. as well as of locally stored websites. Some others support more formats such as PDF, MP3, JPG, GIF, AIM, etc. Some of the most known desktop search tools out there are [http://desktop.yahoo.com X1 Yahoo! Desktop Search], http://www.microsoft.com/windows/desktopsearch/hp1.mspx Windows Desktop Search], [http://desktop.google.com/ Google Desktop], [http://sp.ask.com/en/docs/desktop/overview.shtml Ask Jeeves Desktop Search], [http://www.copernic.com/ Copernic Desktop Search], etc. <br />
<br />
===The Good of Desktop Search===<br />
<br />
Desktop Search tools can index emails, email attachments, files, messenger contacts, notes, web searches, etc. and uses these indexes to find these targets, based on specified keywords in a few seconds. In some cases, such as with Google Desktop and Yahoo Desktop Search, these applications are mereged with their corresponding search engines by letting the user search their computer and the web, at the same time, from the search engines web site. In other cases, such as Copernic's case, the tool is a stand alone application, which allows for better security. Copernic is an application that is specially good for audio, and image files, as it searches comments and other factors that allow the application to scan their content. In some other cases, the desktop search tool, like the Google tool, caches search results, which allows the user to look at older versions these. <br />
<br />
===Security Issues of Desktop Search===<br />
<br />
One of the main concerns with desktop searches has to do with the retrieval of web history. The Google Desktop client was specially drawing attention, because it could index secure cached websites. This gave unrestricted access to anyone who would perform a search, and though this feature could be disabled, it is a <br />
very critical issue to keep in mind. The problem lies in the fact that these are features rather than bugs. It would make sense to have this functionality in a secure personal computer. However, the perspective changes when we have this type of functionality in public or enterprise computers, as confidential information could be easily disclosed. It is essential for companies to research these types of vulnerabilities before using this type of software. There is another issue, which is concerned with indexing in a <br />
network or on remote computers. In this case, cached files are stored in a central server, which may make such information vulnerable for others to see, specially the government. <br />
<br />
===Articles===<br />
<br />
====''Introduction''====<br />
*[http://www.consumersearch.com/www/software/desktop-search-engines/review.html Desktop Search Engines] Consumer Search <br />
*[http://searchenginewatch.com/showPage.html?page=3421651 Google Desktop Search Launched] ''Danny Sullivan'' SearchEngineWatch.com<br />
<br />
====''Advantages''====<br />
*[http://www.microsoft.com/windows/desktopsearch/search/default.mspx Windows Desktop Search: Best in Class Search Tool] Windows Desktop Search<br />
*[http://netsecurity.about.com/od/secureyourcomputer/a/aa102904_2.htm Desktop Search Tools] ''Tony Bradley'' About.com<br />
<br />
====''Security''====<br />
*[http://www.infoworld.com/article/07/03/07/HNgoogledesktopsearch_1.html Google updates desktop search tool] ''James Niccolai'' InfoWorld<br />
*[http://google.blognewschannel.com/archives/2006/02/09/privacy-experts-advice-against-google-desktop-3 Privacy Experts Advise Against Google Desktop 3] ''Nathan Weinberg'' Blog News Chanel<br />
*[http://www.gartner.com/DisplayDocument?doc_cd=137896 Manage Google's Desktop Search Now or Lock It Out] Gartner<br />
*[http://www.eweek.com/article2/0,1895,1735099,00.asp Desktop Search: The Ultimate Security Hole?] ''Matthew Hicks'' eWeek.com<br />
*[http://desktop.google.com/privacypolicy.html Privacy Policy] ''Privacy Matters'' Google Desktop<br />
*[http://searchenginewatch.com/showPage.html?page=3421621 A Closer Look At Privacy & Desktop Search] ''Danny Sullivan'' SearchEngineWatch.com<br />
<br />
==Resources==<br />
===Relevant External Links:===<br />
* [http://en.wikipedia.org/wiki/AOL_search_data_scandal Wikipedia - AOL Search Data Scandal]<br />
* [http://www.nytimes.com/2006/08/09/technology/09aol.html?ex=1312776000en=f6f61949c6da4d38ei=5090 New York Times - "A Face Is Exposed for AOL Searcher No. 4417749"]<br />
===Relevant Class Website Links:===<br />
* [http://ethics.csc.ncsu.edu/abuse/wvt/ http://ethics.csc.ncsu.edu/abuse/wvt/]</div>Gsdedeughttps://wiki.expertiza.ncsu.edu/index.php?title=CSC_379:Week_4,_Group_3&diff=2045CSC 379:Week 4, Group 32007-08-02T20:31:14Z<p>Gsdedeug: </p>
<hr />
<div>=Privacy of Search Content / Search Engines both Local (Desktop Search) and Internet=<br />
A recent proof-of-concept [http://www.hacker.co.il/security/ie/css_import.html exploit] of Internet Explorer allowed for the running of a search through Google Desktop for passwords on a user’s computer upon visiting a website containing the exploit script. Operating systems, browsers, and other software like desktop searches keep a written history of user activities, of which many users are unaware of. This poses a privacy threat to users as computers with content collected through the use of a variety of programs remains recoverable, even when thought to be deleted. Many business and government agencies implement technologies designed to obscure information on hard drives prior to allowing old computers out of their inventory. However for many non-tech-savvy consumers, such technologies are not implemented, or are impractical (as the case when a computer is disabled and needs repaired). In such cases, private information can be exposed, now ever more easily and thoroughly through the use of desktop search technologies.<br />
<br />
Internet search engines also pose a threat to privacy through maintenance of search logs as it may be possible for the government to use subpoenas to acquire normally private user search logs. Google has responded by shortening the length of time it maintains search data, and other search engines have precautions in place as well to protect user privacy. <br />
<br />
==Privacy Concerns (Internet Search Engines)==<br />
===Introduction===<br />
Most internet users are not aware that what they type into seemingly benign search engines is being stored in a database. Though the the tracking methodologies differ across search engines the data is often associated by an ip address or name or both, depending on how much information you've shared with the search engine. This information is very valuable to online advertisers and marketers who can use it to focus and target their campaigns and leverage what people search for (revealing their curiosities, anxieties, fears, and personal dilemmas) in order to increase their profits.<br />
===Regulations===<br />
Since Google's acquisition of DoubleClick, it has been under investigation by several regulatory bodies (FTC, Congress, and EU) for privacy concerns (as well as unfair business practices). This led to Google announcing that it would "make anonymous" all searches after a period of 18 months. This consists of eliminating any association of a search with an ip address as well as forcing cookies to expire after 2 years. Keeping step, Microsoft announced similar in-house regulations of their data, as did Yahoo. Ask.com [http://searchengineland.com/070719-173648.php went further.] In addition to severing identifying links to an IP address it allows for a search which is erased immediately. Though critics point out that too much privacy can allow internet predators to go undetected.<br />
<br />
<br />
==Privacy Concerns (Desktop Search)==<br />
<br />
===Introduction===<br />
<br />
Desktop Search is the name given to a tool that performs searches in a user's local system. Current desktop search applications can search from text files, to music files, to images, to e-mail and chat files. Desktop Search tools use an indexing system, which lets them perform searches in big hard drives at a great speed. Newer versions of desktop searching tools also allow for searching files throughout networks and other computers. Most of the desktop search tools out there can search for the content of files with Microsoft formats, such as word, excel, power point, etc. as well as of locally stored websites. Some others support more formats such as PDF, MP3, JPG, GIF, AIM, etc. Some of the most known desktop search tools out there are [http://desktop.yahoo.com X1 Yahoo! Desktop Search], http://www.microsoft.com/windows/desktopsearch/hp1.mspx Windows Desktop Search], [http://desktop.google.com/ Google Desktop], [http://sp.ask.com/en/docs/desktop/overview.shtml Ask Jeeves Desktop Search], [http://www.copernic.com/ Copernic Desktop Search], etc. <br />
<br />
===The Good of Desktop Search===<br />
<br />
Desktop Search tools can index emails, email attachments, files, messenger contacts, notes, web searches, etc. and uses these indexes to find these targets, based on specified keywords in a few seconds. In some cases, such as with Google Desktop and Yahoo Desktop Search, these applications are mereged with their corresponding search engines by letting the user search their computer and the web, at the same time, from the search engines web site. In other cases, such as Copernic's case, the tool is a stand alone application, which allows for better security. Copernic is an application that is specially good for audio, and image files, as it searches comments and other factors that allow the application to scan their content. In some other cases, the desktop search tool, like the Google tool, caches search results, which allows the user to look at older versions these. <br />
<br />
===Security Issues of Desktop Search===<br />
<br />
One of the main concerns with desktop searches has to do with the retrieval of web history. The Google Desktop client was specially drawing attention, because it could index secure cached websites. This gave unrestricted access to anyone who would perform a search, and though this feature could be disabled, it is a <br />
very critical issue to keep in mind. The problem lies in the fact that these are features rather than bugs. It would make sense to have this functionality in a secure personal computer. However, the perspective changes when we have this type of functionality in public or enterprise computers, as confidential information could be easily disclosed. It is essential for companies to research these types of vulnerabilities before using this type of software. There is another issue, which is concerned with indexing in a <br />
network or on remote computers. In this case, cached files are stored in a central server, which may make such information vulnerable for others to see, specially the government. <br />
<br />
===Articles===<br />
<br />
====''Introduction''====<br />
*[http://www.consumersearch.com/www/software/desktop-search-engines/review.html Desktop Search Engines] Consumer Search <br />
*[http://searchenginewatch.com/showPage.html?page=3421651 Google Desktop Search Launched] ''Danny Sullivan'' SearchEngineWatch.com<br />
<br />
====''Advantages''====<br />
*[http://www.microsoft.com/windows/desktopsearch/search/default.mspx Windows Desktop Search: Best in Class Search Tool] Windows Desktop Search<br />
*[http://netsecurity.about.com/od/secureyourcomputer/a/aa102904_2.htm Desktop Search Tools] ''Tony Bradley'' About.com<br />
<br />
====''Security''====<br />
*[http://www.infoworld.com/article/07/03/07/HNgoogledesktopsearch_1.html Google updates desktop search tool] ''James Niccolai'' InfoWorld<br />
*[http://google.blognewschannel.com/archives/2006/02/09/privacy-experts-advice-against-google-desktop-3 Privacy Experts Advise Against Google Desktop 3] ''Nathan Weinberg'' Blog News Chanel<br />
*[http://www.gartner.com/DisplayDocument?doc_cd=137896 Manage Google's Desktop Search Now or Lock It Out] Gartner<br />
*[http://www.eweek.com/article2/0,1895,1735099,00.asp Desktop Search: The Ultimate Security Hole?] ''Matthew Hicks'' eWeek.com<br />
*[http://desktop.google.com/privacypolicy.html Privacy Policy] ''Privacy Matters'' Google Desktop<br />
*[http://searchenginewatch.com/showPage.html?page=3421621 A Closer Look At Privacy & Desktop Search] ''Danny Sullivan'' SearchEngineWatch.com<br />
<br />
==Resources==<br />
===Relevant External Links:===<br />
* [http://en.wikipedia.org/wiki/AOL_search_data_scandal Wikipedia - AOL Search Data Scandal]<br />
* [http://www.nytimes.com/2006/08/09/technology/09aol.html?ex=1312776000en=f6f61949c6da4d38ei=5090 New York Times - "A Face Is Exposed for AOL Searcher No. 4417749"]<br />
===Relevant Class Website Links:===<br />
* [http://ethics.csc.ncsu.edu/abuse/wvt/ http://ethics.csc.ncsu.edu/abuse/wvt/]</div>Gsdedeughttps://wiki.expertiza.ncsu.edu/index.php?title=CSC_379:Week_4,_Group_3&diff=2044CSC 379:Week 4, Group 32007-08-02T20:30:33Z<p>Gsdedeug: </p>
<hr />
<div>=Privacy of Search Content / Search Engines both Local (Desktop Search) and Internet=<br />
A recent proof-of-concept [http://www.hacker.co.il/security/ie/css_import.html exploit] of Internet Explorer allowed for the running of a search through Google Desktop for passwords on a user’s computer upon visiting a website containing the exploit script. Operating systems, browsers, and other software like desktop searches keep a written history of user activities, of which many users are unaware of. This poses a privacy threat to users as computers with content collected through the use of a variety of programs remains recoverable, even when thought to be deleted. Many business and government agencies implement technologies designed to obscure information on hard drives prior to allowing old computers out of their inventory. However for many non-tech-savvy consumers, such technologies are not implemented, or are impractical (as the case when a computer is disabled and needs repaired). In such cases, private information can be exposed, now ever more easily and thoroughly through the use of desktop search technologies.<br />
<br />
Internet search engines also pose a threat to privacy through maintenance of search logs as it may be possible for the government to use subpoenas to acquire normally private user search logs. Google has responded by shortening the length of time it maintains search data, and other search engines have precautions in place as well to protect user privacy. <br />
<br />
==Privacy Concerns (Internet Search Engines)==<br />
===Introduction===<br />
Most internet users are not aware that what they type into seemingly benign search engines is being stored in a database. Though the the tracking methodologies differ across search engines the data is often associated by an ip address or name or both, depending on how much information you've shared with the search engine. This information is very valuable to online advertisers and marketers who can use it to focus and target their campaigns and leverage what people search for (revealing their curiosities, anxieties, fears, and personal dilemmas) in order to increase their profits.<br />
===Regulations===<br />
Since Google's acquisition of DoubleClick, it has been under investigation by several regulatory bodies (FTC, Congress, and EU) for privacy concerns (as well as unfair business practices). This led to Google announcing that it would "make anonymous" all searches after a period of 18 months. This consists of eliminating any association of a search with an ip address as well as forcing cookies to expire after 2 years. Keeping step, Microsoft announced similar in-house regulations of their data, as did Yahoo. Ask.com *[http://searchengineland.com/070719-173648.php went further.] In addition to severing identifying links to an IP address it allows for a search which is erased immediately. Though critics point out that too much privacy can allow internet predators to go undetected.<br />
<br />
<br />
==Privacy Concerns (Desktop Search)==<br />
<br />
===Introduction===<br />
<br />
Desktop Search is the name given to a tool that performs searches in a user's local system. Current desktop search applications can search from text files, to music files, to images, to e-mail and chat files. Desktop Search tools use an indexing system, which lets them perform searches in big hard drives at a great speed. Newer versions of desktop searching tools also allow for searching files throughout networks and other computers. Most of the desktop search tools out there can search for the content of files with Microsoft formats, such as word, excel, power point, etc. as well as of locally stored websites. Some others support more formats such as PDF, MP3, JPG, GIF, AIM, etc. Some of the most known desktop search tools out there are [http://desktop.yahoo.com X1 Yahoo! Desktop Search], http://www.microsoft.com/windows/desktopsearch/hp1.mspx Windows Desktop Search], [http://desktop.google.com/ Google Desktop], [http://sp.ask.com/en/docs/desktop/overview.shtml Ask Jeeves Desktop Search], [http://www.copernic.com/ Copernic Desktop Search], etc. <br />
<br />
===The Good of Desktop Search===<br />
<br />
Desktop Search tools can index emails, email attachments, files, messenger contacts, notes, web searches, etc. and uses these indexes to find these targets, based on specified keywords in a few seconds. In some cases, such as with Google Desktop and Yahoo Desktop Search, these applications are mereged with their corresponding search engines by letting the user search their computer and the web, at the same time, from the search engines web site. In other cases, such as Copernic's case, the tool is a stand alone application, which allows for better security. Copernic is an application that is specially good for audio, and image files, as it searches comments and other factors that allow the application to scan their content. In some other cases, the desktop search tool, like the Google tool, caches search results, which allows the user to look at older versions these. <br />
<br />
===Security Issues of Desktop Search===<br />
<br />
One of the main concerns with desktop searches has to do with the retrieval of web history. The Google Desktop client was specially drawing attention, because it could index secure cached websites. This gave unrestricted access to anyone who would perform a search, and though this feature could be disabled, it is a <br />
very critical issue to keep in mind. The problem lies in the fact that these are features rather than bugs. It would make sense to have this functionality in a secure personal computer. However, the perspective changes when we have this type of functionality in public or enterprise computers, as confidential information could be easily disclosed. It is essential for companies to research these types of vulnerabilities before using this type of software. There is another issue, which is concerned with indexing in a <br />
network or on remote computers. In this case, cached files are stored in a central server, which may make such information vulnerable for others to see, specially the government. <br />
<br />
===Articles===<br />
<br />
====''Introduction''====<br />
*[http://www.consumersearch.com/www/software/desktop-search-engines/review.html Desktop Search Engines] Consumer Search <br />
*[http://searchenginewatch.com/showPage.html?page=3421651 Google Desktop Search Launched] ''Danny Sullivan'' SearchEngineWatch.com<br />
<br />
====''Advantages''====<br />
*[http://www.microsoft.com/windows/desktopsearch/search/default.mspx Windows Desktop Search: Best in Class Search Tool] Windows Desktop Search<br />
*[http://netsecurity.about.com/od/secureyourcomputer/a/aa102904_2.htm Desktop Search Tools] ''Tony Bradley'' About.com<br />
<br />
====''Security''====<br />
*[http://www.infoworld.com/article/07/03/07/HNgoogledesktopsearch_1.html Google updates desktop search tool] ''James Niccolai'' InfoWorld<br />
*[http://google.blognewschannel.com/archives/2006/02/09/privacy-experts-advice-against-google-desktop-3 Privacy Experts Advise Against Google Desktop 3] ''Nathan Weinberg'' Blog News Chanel<br />
*[http://www.gartner.com/DisplayDocument?doc_cd=137896 Manage Google's Desktop Search Now or Lock It Out] Gartner<br />
*[http://www.eweek.com/article2/0,1895,1735099,00.asp Desktop Search: The Ultimate Security Hole?] ''Matthew Hicks'' eWeek.com<br />
*[http://desktop.google.com/privacypolicy.html Privacy Policy] ''Privacy Matters'' Google Desktop<br />
*[http://searchenginewatch.com/showPage.html?page=3421621 A Closer Look At Privacy & Desktop Search] ''Danny Sullivan'' SearchEngineWatch.com<br />
<br />
==Resources==<br />
===Relevant External Links:===<br />
* [http://en.wikipedia.org/wiki/AOL_search_data_scandal Wikipedia - AOL Search Data Scandal]<br />
* [http://www.nytimes.com/2006/08/09/technology/09aol.html?ex=1312776000en=f6f61949c6da4d38ei=5090 New York Times - "A Face Is Exposed for AOL Searcher No. 4417749"]<br />
===Relevant Class Website Links:===<br />
* [http://ethics.csc.ncsu.edu/abuse/wvt/ http://ethics.csc.ncsu.edu/abuse/wvt/]</div>Gsdedeughttps://wiki.expertiza.ncsu.edu/index.php?title=CSC_379:Week_4,_Group_3&diff=2043CSC 379:Week 4, Group 32007-08-02T20:29:21Z<p>Gsdedeug: /* Privacy of Search Content / Search Engines both Local (Desktop Search) and Internet */</p>
<hr />
<div>=Privacy of Search Content / Search Engines both Local (Desktop Search) and Internet=<br />
A recent proof-of-concept [http://www.hacker.co.il/security/ie/css_import.html exploit] of Internet Explorer allowed for the running of a search through Google Desktop for passwords on a user’s computer upon visiting a website containing the exploit script. Operating systems, browsers, and other software like desktop searches keep a written history of user activities, of which many users are unaware of. This poses a privacy threat to users as computers with content collected through the use of a variety of programs remains recoverable, even when thought to be deleted. Many business and government agencies implement technologies designed to obscure information on hard drives prior to allowing old computers out of their inventory. However for many non-tech-savvy consumers, such technologies are not implemented, or are impractical (as the case when a computer is disabled and needs repaired). In such cases, private information can be exposed, now ever more easily and thoroughly through the use of desktop search technologies.<br />
<br />
Internet search engines also pose a threat to privacy through maintenance of search logs as it may be possible for the government to use subpoenas to acquire normally private user search logs. Google has responded by shortening the length of time it maintains search data, and other search engines have precautions in place as well to protect user privacy. <br />
<br />
==Privacy Concerns (Internet Search Engines)==<br />
===Introduction===<br />
Most internet users are not aware that what they type into seemingly benign search engines is being stored in a database. Though the the tracking methodologies differ across search engines the data is often associated by an ip address or name or both, depending on how much information you've shared with the search engine. This information is very valuable to online advertisers and marketers who can use it to focus and target their campaigns and leverage what people search for (revealing their curiosities, anxieties, fears, and personal dilemmas) in order to increase their profits.<br />
===Regulations===<br />
Since Google's acquisition of DoubleClick, it has been under investigation by several regulatory bodies (FTC, Congress, and EU) for privacy concerns (as well as unfair business practices). This led to Google announcing that it would "make anonymous" all searches after a period of 18 months. This consists of eliminating any association of a search with an ip address as well as forcing cookies to expire after 2 years. Keeping step, Microsoft announced similar in-house regulations of their data, as did Yahoo. Ask.com went further. In addition to severing identifying links to an IP address it allows for a search which is erased immediately. Though critics point out that too much privacy can allow internet predators to go undetected.<br />
<br />
<br />
==Privacy Concerns (Desktop Search)==<br />
<br />
===Introduction===<br />
<br />
Desktop Search is the name given to a tool that performs searches in a user's local system. Current desktop search applications can search from text files, to music files, to images, to e-mail and chat files. Desktop Search tools use an indexing system, which lets them perform searches in big hard drives at a great speed. Newer versions of desktop searching tools also allow for searching files throughout networks and other computers. Most of the desktop search tools out there can search for the content of files with Microsoft formats, such as word, excel, power point, etc. as well as of locally stored websites. Some others support more formats such as PDF, MP3, JPG, GIF, AIM, etc. Some of the most known desktop search tools out there are [http://desktop.yahoo.com X1 Yahoo! Desktop Search], http://www.microsoft.com/windows/desktopsearch/hp1.mspx Windows Desktop Search], [http://desktop.google.com/ Google Desktop], [http://sp.ask.com/en/docs/desktop/overview.shtml Ask Jeeves Desktop Search], [http://www.copernic.com/ Copernic Desktop Search], etc. <br />
<br />
===The Good of Desktop Search===<br />
<br />
Desktop Search tools can index emails, email attachments, files, messenger contacts, notes, web searches, etc. and uses these indexes to find these targets, based on specified keywords in a few seconds. In some cases, such as with Google Desktop and Yahoo Desktop Search, these applications are mereged with their corresponding search engines by letting the user search their computer and the web, at the same time, from the search engines web site. In other cases, such as Copernic's case, the tool is a stand alone application, which allows for better security. Copernic is an application that is specially good for audio, and image files, as it searches comments and other factors that allow the application to scan their content. In some other cases, the desktop search tool, like the Google tool, caches search results, which allows the user to look at older versions these. <br />
<br />
===Security Issues of Desktop Search===<br />
<br />
One of the main concerns with desktop searches has to do with the retrieval of web history. The Google Desktop client was specially drawing attention, because it could index secure cached websites. This gave unrestricted access to anyone who would perform a search, and though this feature could be disabled, it is a <br />
very critical issue to keep in mind. The problem lies in the fact that these are features rather than bugs. It would make sense to have this functionality in a secure personal computer. However, the perspective changes when we have this type of functionality in public or enterprise computers, as confidential information could be easily disclosed. It is essential for companies to research these types of vulnerabilities before using this type of software. There is another issue, which is concerned with indexing in a <br />
network or on remote computers. In this case, cached files are stored in a central server, which may make such information vulnerable for others to see, specially the government. <br />
<br />
===Articles===<br />
<br />
====''Introduction''====<br />
*[http://www.consumersearch.com/www/software/desktop-search-engines/review.html Desktop Search Engines] Consumer Search <br />
*[http://searchenginewatch.com/showPage.html?page=3421651 Google Desktop Search Launched] ''Danny Sullivan'' SearchEngineWatch.com<br />
<br />
====''Advantages''====<br />
*[http://www.microsoft.com/windows/desktopsearch/search/default.mspx Windows Desktop Search: Best in Class Search Tool] Windows Desktop Search<br />
*[http://netsecurity.about.com/od/secureyourcomputer/a/aa102904_2.htm Desktop Search Tools] ''Tony Bradley'' About.com<br />
<br />
====''Security''====<br />
*[http://www.infoworld.com/article/07/03/07/HNgoogledesktopsearch_1.html Google updates desktop search tool] ''James Niccolai'' InfoWorld<br />
*[http://google.blognewschannel.com/archives/2006/02/09/privacy-experts-advice-against-google-desktop-3 Privacy Experts Advise Against Google Desktop 3] ''Nathan Weinberg'' Blog News Chanel<br />
*[http://www.gartner.com/DisplayDocument?doc_cd=137896 Manage Google's Desktop Search Now or Lock It Out] Gartner<br />
*[http://www.eweek.com/article2/0,1895,1735099,00.asp Desktop Search: The Ultimate Security Hole?] ''Matthew Hicks'' eWeek.com<br />
*[http://desktop.google.com/privacypolicy.html Privacy Policy] ''Privacy Matters'' Google Desktop<br />
*[http://searchenginewatch.com/showPage.html?page=3421621 A Closer Look At Privacy & Desktop Search] ''Danny Sullivan'' SearchEngineWatch.com<br />
<br />
==Resources==<br />
===Relevant External Links:===<br />
* [http://en.wikipedia.org/wiki/AOL_search_data_scandal Wikipedia - AOL Search Data Scandal]<br />
* [http://www.nytimes.com/2006/08/09/technology/09aol.html?ex=1312776000en=f6f61949c6da4d38ei=5090 New York Times - "A Face Is Exposed for AOL Searcher No. 4417749"]<br />
===Relevant Class Website Links:===<br />
* [http://ethics.csc.ncsu.edu/abuse/wvt/ http://ethics.csc.ncsu.edu/abuse/wvt/]</div>Gsdedeughttps://wiki.expertiza.ncsu.edu/index.php?title=CSC_379:Week_4,_Group_3&diff=1894CSC 379:Week 4, Group 32007-07-26T23:23:34Z<p>Gsdedeug: </p>
<hr />
<div>=Privacy of Search Content / Search Engines both Local (Desktop Search) and Internet=<br />
A recent proof-of-concept [http://www.hacker.co.il/security/ie/css_import.html exploit] of Internet Explorer allowed for the running of a search through Google Desktop for passwords on a user’s computer upon visiting a website containing the exploit script. Operating systems, browsers, and other software like desktop searches keep a written history of user activities, of which many users are unaware of. This poses a privacy threat to users as computers with content collected through the use of a variety of programs remains recoverable, even when thought to be deleted. Many business and government agencies implement technologies designed to obscure information on hard drives prior to allowing old computers out of their inventory. However for many non-tech-savvy consumers, such technologies are not implemented, or are impractical (as the case when a computer is disabled and needs repaired). In such cases, private information can be exposed, now ever more easily and thoroughly through the use of desktop search technologies.<br />
<br />
Internet search engines also pose a threat to privacy through maintenance of search logs as it may be possible for the government to use subpoenas to acquire normally private user search logs. Google has responded by shortening the length of time it maintains search data, and other search engines have precautions in place as well to protect user privacy. <br />
<br />
==Privacy Concerns (Internet Search Engines)==<br />
===Introduction===<br />
Most internet users are not aware that what they type into seemingly benign search engines is being stored in a database. Though the the tracking methodologies differ across search engines the data is often associated by an ip address or name or both, depending on how much information you've shared with the search engine. This information is very valuable to online advertisers and marketers who can use it to focus and target their campaigns and leverage what people search for (revealing their curiosities, anxieties, fears, and personal dilemmas) in order to increase their profits.<br />
===Laws Regarding Internet Search Engines===<br />
<br />
<br />
==Privacy Concerns (Desktop Search)==<br />
<br />
'''Examine the ethical issues regarding the privacy of searchable content and the impact of search engines both locally and internet based.'''<br />
<br />
==Resources==<br />
===Relevant External Links:===<br />
* [http://en.wikipedia.org/wiki/AOL_search_data_scandal Wikipedia - AOL Search Data Scandal]<br />
* [http://www.nytimes.com/2006/08/09/technology/09aol.html?ex=1312776000en=f6f61949c6da4d38ei=5090 New York Times - "A Face Is Exposed for AOL Searcher No. 4417749"]<br />
===Relevant Class Website Links:===<br />
* [http://ethics.csc.ncsu.edu/abuse/wvt/ http://ethics.csc.ncsu.edu/abuse/wvt/]</div>Gsdedeughttps://wiki.expertiza.ncsu.edu/index.php?title=CSC_379:Week_4,_Group_3&diff=1893CSC 379:Week 4, Group 32007-07-26T23:23:09Z<p>Gsdedeug: </p>
<hr />
<div>=Privacy of Search Content / Search Engines both Local (Desktop Search) and Internet=<br />
A recent proof-of-concept [http://www.hacker.co.il/security/ie/css_import.html exploit] of Internet Explorer allowed for the running of a search through Google Desktop for passwords on a user’s computer upon visiting a website containing the exploit script. Operating systems, browsers, and other software like desktop searches keep a written history of user activities, of which many users are unaware of. This poses a privacy threat to users as computers with content collected through the use of a variety of programs remains recoverable, even when thought to be deleted. Many business and government agencies implement technologies designed to obscure information on hard drives prior to allowing old computers out of their inventory. However for many non-tech-savvy consumers, such technologies are not implemented, or are impractical (as the case when a computer is disabled and needs repaired). In such cases, private information can be exposed, now ever more easily and thoroughly through the use of desktop search technologies.<br />
<br />
Internet search engines also pose a threat to privacy through maintenance of search logs as it may be possible for the government to use subpoenas to acquire normally private user search logs. Google has responded by shortening the length of time it maintains search data, and other search engines have precautions in place as well to protect user privacy. <br />
<br />
==Privacy Concerns (Internet Search Engines)==<br />
===Introduction===<br />
Most internet users are not aware that what they type into seemingly benign search engines is being stored in a database. Though the the tracking methodologies differ across search engines the data is often associated by an ip address or name or both, depending on how much information you've shared with the search engine. This information is very valuable to online advertisers and marketers who can use it to focus and target their campaigns and leverage what people search for (revealing their curiosities, anxieties, fears, and personal dilemmas) in order to increase their profits.<br />
===Laws Regarding Internet Search Engines===<br />
===<br />
<br />
==Privacy Concerns (Desktop Search)==<br />
<br />
'''Examine the ethical issues regarding the privacy of searchable content and the impact of search engines both locally and internet based.'''<br />
<br />
==Resources==<br />
===Relevant External Links:===<br />
* [http://en.wikipedia.org/wiki/AOL_search_data_scandal Wikipedia - AOL Search Data Scandal]<br />
* [http://www.nytimes.com/2006/08/09/technology/09aol.html?ex=1312776000en=f6f61949c6da4d38ei=5090 New York Times - "A Face Is Exposed for AOL Searcher No. 4417749"]<br />
===Relevant Class Website Links:===<br />
* [http://ethics.csc.ncsu.edu/abuse/wvt/ http://ethics.csc.ncsu.edu/abuse/wvt/]</div>Gsdedeughttps://wiki.expertiza.ncsu.edu/index.php?title=CSC_379:Week_4,_Group_3&diff=1892CSC 379:Week 4, Group 32007-07-26T23:21:20Z<p>Gsdedeug: </p>
<hr />
<div>=Privacy of Search Content / Search Engines both Local (Desktop Search) and Internet=<br />
A recent proof-of-concept [http://www.hacker.co.il/security/ie/css_import.html exploit] of Internet Explorer allowed for the running of a search through Google Desktop for passwords on a user’s computer upon visiting a website containing the exploit script. Operating systems, browsers, and other software like desktop searches keep a written history of user activities, of which many users are unaware of. This poses a privacy threat to users as computers with content collected through the use of a variety of programs remains recoverable, even when thought to be deleted. Many business and government agencies implement technologies designed to obscure information on hard drives prior to allowing old computers out of their inventory. However for many non-tech-savvy consumers, such technologies are not implemented, or are impractical (as the case when a computer is disabled and needs repaired). In such cases, private information can be exposed, now ever more easily and thoroughly through the use of desktop search technologies.<br />
<br />
Internet search engines also pose a threat to privacy through maintenance of search logs as it may be possible for the government to use subpoenas to acquire normally private user search logs. Google has responded by shortening the length of time it maintains search data, and other search engines have precautions in place as well to protect user privacy. <br />
<br />
==Privacy Concerns (Internet Search Engines)==<br />
===Introduction===<br />
Most internet users are not aware that what they type into seemingly benign search engines is being stored in a database. Though the the tracking methodologies differ across search engines the data is often associated by an ip address or name or both, depending on how much information you've shared with the search engine. This information is very valuable to online advertisers and marketers who can use it to focus and target their campaigns and leverage what people search for (revealing their curiosities, anxieties, fears, and personal dilemmas) in order to increase their profits.<br />
<br />
==Privacy Concerns (Desktop Search)==<br />
<br />
'''Examine the ethical issues regarding the privacy of searchable content and the impact of search engines both locally and internet based.'''<br />
<br />
==Resources==<br />
===Relevant External Links:===<br />
* [http://en.wikipedia.org/wiki/AOL_search_data_scandal Wikipedia - AOL Search Data Scandal]<br />
* [http://www.nytimes.com/2006/08/09/technology/09aol.html?ex=1312776000en=f6f61949c6da4d38ei=5090 New York Times - "A Face Is Exposed for AOL Searcher No. 4417749"]<br />
===Relevant Class Website Links:===<br />
* [http://ethics.csc.ncsu.edu/abuse/wvt/ http://ethics.csc.ncsu.edu/abuse/wvt/]</div>Gsdedeughttps://wiki.expertiza.ncsu.edu/index.php?title=CSC_379:Week_4,_Group_3&diff=1891CSC 379:Week 4, Group 32007-07-26T23:18:40Z<p>Gsdedeug: </p>
<hr />
<div>=Privacy of Search Content / Search Engines both Local (Desktop Search) and Internet=<br />
A recent proof-of-concept [http://www.hacker.co.il/security/ie/css_import.html exploit] of Internet Explorer allowed for the running of a search through Google Desktop for passwords on a user’s computer upon visiting a website containing the exploit script. Operating systems, browsers, and other software like desktop searches keep a written history of user activities, of which many users are unaware of. This poses a privacy threat to users as computers with content collected through the use of a variety of programs remains recoverable, even when thought to be deleted. Many business and government agencies implement technologies designed to obscure information on hard drives prior to allowing old computers out of their inventory. However for many non-tech-savvy consumers, such technologies are not implemented, or are impractical (as the case when a computer is disabled and needs repaired). In such cases, private information can be exposed, now ever more easily and thoroughly through the use of desktop search technologies.<br />
<br />
Internet search engines also pose a threat to privacy through maintenance of search logs as it may be possible for the government to use subpoenas to acquire normally private user search logs. Google has responded by shortening the length of time it maintains search data, and other search engines have precautions in place as well to protect user privacy. <br />
<br />
==Privacy Concerns==<br />
===Introduction===<br />
Most internet users are not aware that what they type into seemingly benign search engines is being stored in a database. Though the the tracking methodologies differ across search engines the data is often associated by an ip address or name or both, depending on how much information you've shared with the search engine. This information is very valuable to online advertisers and marketers who can use it to focus and target their campaigns and leverage what people search for (revealing their curiosities, anxieties, fears, and personal dilemmas) in order to increase their profits.<br />
<br />
'''Examine the ethical issues regarding the privacy of searchable content and the impact of search engines both locally and internet based.'''<br />
<br />
==Resources==<br />
===Relevant External Links:===<br />
* [http://en.wikipedia.org/wiki/AOL_search_data_scandal Wikipedia - AOL Search Data Scandal]<br />
* [http://www.nytimes.com/2006/08/09/technology/09aol.html?ex=1312776000en=f6f61949c6da4d38ei=5090 New York Times - "A Face Is Exposed for AOL Searcher No. 4417749"]<br />
===Relevant Class Website Links:===<br />
* [http://ethics.csc.ncsu.edu/abuse/wvt/ http://ethics.csc.ncsu.edu/abuse/wvt/]</div>Gsdedeughttps://wiki.expertiza.ncsu.edu/index.php?title=CSC_379:Week_4,_Group_3&diff=1890CSC 379:Week 4, Group 32007-07-26T23:18:14Z<p>Gsdedeug: </p>
<hr />
<div>=Privacy of Search Content / Search Engines both Local (Desktop Search) and Internet=<br />
A recent proof-of-concept [http://www.hacker.co.il/security/ie/css_import.html exploit] of Internet Explorer allowed for the running of a search through Google Desktop for passwords on a user’s computer upon visiting a website containing the exploit script. Operating systems, browsers, and other software like desktop searches keep a written history of user activities, of which many users are unaware of. This poses a privacy threat to users as computers with content collected through the use of a variety of programs remains recoverable, even when thought to be deleted. Many business and government agencies implement technologies designed to obscure information on hard drives prior to allowing old computers out of their inventory. However for many non-tech-savvy consumers, such technologies are not implemented, or are impractical (as the case when a computer is disabled and needs repaired). In such cases, private information can be exposed, now ever more easily and thoroughly through the use of desktop search technologies.<br />
<br />
Internet search engines also pose a threat to privacy through maintenance of search logs as it may be possible for the government to use subpoenas to acquire normally private user search logs. Google has responded by shortening the length of time it maintains search data, and other search engines have precautions in place as well to protect user privacy. <br />
<br />
==Privacy Concerns==<br />
===Introduction===<br />
Most internet users are not aware that what they type into seemingly benign search engines is being stored in a database. Though the the tracking methodologies differ across search engines the data is often associated by an ip address or name or both, depending on how much information you've shared with the search engine. This information is very valuable to online advertisers and marketers who can use it to focus and target their campaigns and leverage what people search for, revealing their curiosities, anxieties, fears, and personal dillemas in order to increase their profits.<br />
<br />
'''Examine the ethical issues regarding the privacy of searchable content and the impact of search engines both locally and internet based.'''<br />
<br />
==Resources==<br />
===Relevant External Links:===<br />
* [http://en.wikipedia.org/wiki/AOL_search_data_scandal Wikipedia - AOL Search Data Scandal]<br />
* [http://www.nytimes.com/2006/08/09/technology/09aol.html?ex=1312776000en=f6f61949c6da4d38ei=5090 New York Times - "A Face Is Exposed for AOL Searcher No. 4417749"]<br />
===Relevant Class Website Links:===<br />
* [http://ethics.csc.ncsu.edu/abuse/wvt/ http://ethics.csc.ncsu.edu/abuse/wvt/]</div>Gsdedeughttps://wiki.expertiza.ncsu.edu/index.php?title=CSC_379:Week_4,_Group_3&diff=1889CSC 379:Week 4, Group 32007-07-26T23:17:03Z<p>Gsdedeug: </p>
<hr />
<div>=Privacy of Search Content / Search Engines both Local (Desktop Search) and Internet=<br />
A recent proof-of-concept [http://www.hacker.co.il/security/ie/css_import.html exploit] of Internet Explorer allowed for the running of a search through Google Desktop for passwords on a user’s computer upon visiting a website containing the exploit script. Operating systems, browsers, and other software like desktop searches keep a written history of user activities, of which many users are unaware of. This poses a privacy threat to users as computers with content collected through the use of a variety of programs remains recoverable, even when thought to be deleted. Many business and government agencies implement technologies designed to obscure information on hard drives prior to allowing old computers out of their inventory. However for many non-tech-savvy consumers, such technologies are not implemented, or are impractical (as the case when a computer is disabled and needs repaired). In such cases, private information can be exposed, now ever more easily and thoroughly through the use of desktop search technologies.<br />
<br />
Internet search engines also pose a threat to privacy through maintenance of search logs as it may be possible for the government to use subpoenas to acquire normally private user search logs. Google has responded by shortening the length of time it maintains search data, and other search engines have precautions in place as well to protect user privacy. <br />
<br />
==Privacy Concerns==<br />
===Introduction===<br />
Most internet users are not aware that what they type into seemingly benign search engines is being stored in a database. Though the the tracking methodologies differ across search engines the data is often associated by an ip address or name or both, depending on how much information you've shared with the search engine. This information is very valuable to online advertisers and marketers who can use it to focus and target their campaigns and leverage what people search for in order to reveal their curiosities, anxieties, fears, and personal dillemas in order to increase their profits.<br />
<br />
'''Examine the ethical issues regarding the privacy of searchable content and the impact of search engines both locally and internet based.'''<br />
<br />
==Resources==<br />
===Relevant External Links:===<br />
* [http://en.wikipedia.org/wiki/AOL_search_data_scandal Wikipedia - AOL Search Data Scandal]<br />
* [http://www.nytimes.com/2006/08/09/technology/09aol.html?ex=1312776000en=f6f61949c6da4d38ei=5090 New York Times - "A Face Is Exposed for AOL Searcher No. 4417749"]<br />
===Relevant Class Website Links:===<br />
* [http://ethics.csc.ncsu.edu/abuse/wvt/ http://ethics.csc.ncsu.edu/abuse/wvt/]</div>Gsdedeughttps://wiki.expertiza.ncsu.edu/index.php?title=CSC_379:Week_4,_Group_3&diff=1888CSC 379:Week 4, Group 32007-07-26T23:08:54Z<p>Gsdedeug: </p>
<hr />
<div>=Privacy of Search Content / Search Engines both Local (Desktop Search) and Internet=<br />
A recent proof-of-concept [http://www.hacker.co.il/security/ie/css_import.html exploit] of Internet Explorer allowed for the running of a search through Google Desktop for passwords on a user’s computer upon visiting a website containing the exploit script. Operating systems, browsers, and other software like desktop searches keep a written history of user activities, of which many users are unaware of. This poses a privacy threat to users as computers with content collected through the use of a variety of programs remains recoverable, even when thought to be deleted. Many business and government agencies implement technologies designed to obscure information on hard drives prior to allowing old computers out of their inventory. However for many non-tech-savvy consumers, such technologies are not implemented, or are impractical (as the case when a computer is disabled and needs repaired). In such cases, private information can be exposed, now ever more easily and thoroughly through the use of desktop search technologies.<br />
<br />
Internet search engines also pose a threat to privacy through maintenance of search logs as it may be possible for the government to use subpoenas to acquire normally private user search logs. Google has responded by shortening the length of time it maintains search data, and other search engines have precautions in place as well to protect user privacy. <br />
<br />
==Privacy Concerns==<br />
===Introduction===<br />
Most internet users are not aware that what they type into seemingly benign search engines is being stored in a database. Though the the tracking methodologies differ across search engines the data is sometimes associated by your ip address or name or both, depending on how much information you've shared with the search engine.<br />
<br />
'''Examine the ethical issues regarding the privacy of searchable content and the impact of search engines both locally and internet based.'''<br />
<br />
==Resources==<br />
===Relevant External Links:===<br />
* [http://en.wikipedia.org/wiki/AOL_search_data_scandal Wikipedia - AOL Search Data Scandal]<br />
* [http://www.nytimes.com/2006/08/09/technology/09aol.html?ex=1312776000en=f6f61949c6da4d38ei=5090 New York Times - "A Face Is Exposed for AOL Searcher No. 4417749"]<br />
===Relevant Class Website Links:===<br />
* [http://ethics.csc.ncsu.edu/abuse/wvt/ http://ethics.csc.ncsu.edu/abuse/wvt/]</div>Gsdedeughttps://wiki.expertiza.ncsu.edu/index.php?title=CSC_379:Week_4,_Group_3&diff=1887CSC 379:Week 4, Group 32007-07-26T23:08:19Z<p>Gsdedeug: </p>
<hr />
<div>=Privacy of Search Content / Search Engines both Local (Desktop Search) and Internet=<br />
A recent proof-of-concept [http://www.hacker.co.il/security/ie/css_import.html exploit] of Internet Explorer allowed for the running of a search through Google Desktop for passwords on a user’s computer upon visiting a website containing the exploit script. Operating systems, browsers, and other software like desktop searches keep a written history of user activities, of which many users are unaware of. This poses a privacy threat to users as computers with content collected through the use of a variety of programs remains recoverable, even when thought to be deleted. Many business and government agencies implement technologies designed to obscure information on hard drives prior to allowing old computers out of their inventory. However for many non-tech-savvy consumers, such technologies are not implemented, or are impractical (as the case when a computer is disabled and needs repaired). In such cases, private information can be exposed, now ever more easily and thoroughly through the use of desktop search technologies.<br />
<br />
Internet search engines also pose a threat to privacy through maintenance of search logs as it may be possible for the government to use subpoenas to acquire normally private user search logs. Google has responded by shortening the length of time it maintains search data, and other search engines have precautions in place as well to protect user privacy. <br />
<br />
==Privacy Concerns==<br />
Most internet users are not aware that what they type into seemingly benign search engines is being stored in a database. Though the the tracking methodologies differ across search engines the data is sometimes associated by your ip address or name or both, depending on how much information you've shared with the search engine.<br />
<br />
'''Examine the ethical issues regarding the privacy of searchable content and the impact of search engines both locally and internet based.'''<br />
<br />
==Resources==<br />
===Relevant External Links:===<br />
* [http://en.wikipedia.org/wiki/AOL_search_data_scandal Wikipedia - AOL Search Data Scandal]<br />
* [http://www.nytimes.com/2006/08/09/technology/09aol.html?ex=1312776000en=f6f61949c6da4d38ei=5090 New York Times - "A Face Is Exposed for AOL Searcher No. 4417749"]<br />
===Relevant Class Website Links:===<br />
* [http://ethics.csc.ncsu.edu/abuse/wvt/ http://ethics.csc.ncsu.edu/abuse/wvt/]</div>Gsdedeughttps://wiki.expertiza.ncsu.edu/index.php?title=CSC_379:Week_4,_Group_3&diff=1886CSC 379:Week 4, Group 32007-07-26T23:07:51Z<p>Gsdedeug: </p>
<hr />
<div>=Privacy of Search Content / Search Engines both Local (Desktop Search) and Internet=<br />
A recent proof-of-concept [http://www.hacker.co.il/security/ie/css_import.html exploit] of Internet Explorer allowed for the running of a search through Google Desktop for passwords on a user’s computer upon visiting a website containing the exploit script. Operating systems, browsers, and other software like desktop searches keep a written history of user activities, of which many users are unaware of. This poses a privacy threat to users as computers with content collected through the use of a variety of programs remains recoverable, even when thought to be deleted. Many business and government agencies implement technologies designed to obscure information on hard drives prior to allowing old computers out of their inventory. However for many non-tech-savvy consumers, such technologies are not implemented, or are impractical (as the case when a computer is disabled and needs repaired). In such cases, private information can be exposed, now ever more easily and thoroughly through the use of desktop search technologies.<br />
<br />
Internet search engines also pose a threat to privacy through maintenance of search logs as it may be possible for the government to use subpoenas to acquire normally private user search logs. Google has responded by shortening the length of time it maintains search data, and other search engines have precautions in place as well to protect user privacy. <br />
<br />
==Privacy Concerns==<br />
Most internet users are not aware that what they type into seemingly benign search engines is being stored in a database. Though the the tracking methodologies differ across search engines the data is associated by your ip address or name or both, depending on how much information you've shared with the search engine.<br />
<br />
'''Examine the ethical issues regarding the privacy of searchable content and the impact of search engines both locally and internet based.'''<br />
<br />
==Resources==<br />
===Relevant External Links:===<br />
* [http://en.wikipedia.org/wiki/AOL_search_data_scandal Wikipedia - AOL Search Data Scandal]<br />
* [http://www.nytimes.com/2006/08/09/technology/09aol.html?ex=1312776000en=f6f61949c6da4d38ei=5090 New York Times - "A Face Is Exposed for AOL Searcher No. 4417749"]<br />
===Relevant Class Website Links:===<br />
* [http://ethics.csc.ncsu.edu/abuse/wvt/ http://ethics.csc.ncsu.edu/abuse/wvt/]</div>Gsdedeughttps://wiki.expertiza.ncsu.edu/index.php?title=CSC_379:Weed_1,_Group_2&diff=1448CSC 379:Weed 1, Group 22007-07-07T01:16:16Z<p>Gsdedeug: </p>
<hr />
<div>== Anti-Spam Techniques ==<br />
<br />
<br />
=== Blocking Domains ===<br />
Domain blocking is not always effective. Since spammers are often spoofing domains, this results in the [http://www.mywire.com/pubs/PCMagazine/2004/03/16/418338?extID=10051 unintended blocking of non-spammers.]<br />
=== The Earthlink Spam Blocker===<br />
<br />
===Charging for Sent Emails===<br />
This technique consists of charging companies to send their commercial e-mails to a big number of people. This is a controversial approach, since the Internet is a medium that has always been free. However, this approach could lead to a more formal/controlled way of commercializing over the internet.<br />
<br />
*Related Articles<br />
**[http://www.nytimes.com/2006/02/05/technology/05AOL.html?ex=1296795600&en=6efb03c8cbfac79e&ei=5090 Postage Is Due for Companies Sending E-Mail]<br />
**[http://www.usatoday.com/tech/news/computersecurity/2006-02-05-aol-yahoo-email_x.htm AOL to charge fee as way to cut spam] <br />
**[http://www.cnn.com/2004/TECH/internet/03/05/spam.charge.ap/ Gates: Buy stamps to send e-mail]<br />
**[http://www.campaignmonitor.com/blog/archives/2007/02/how_to_charge_your_clients_for_1.html How to charge your clients for email marketing]<br />
<br />
===Opt-In===<br />
Opt-In is a term used when someone is given the option of receiving bulk e-mail when they are registering to some sort of database system. This technique implies a number of practices that will ensure correct ways of managing e-mail marketing campaigns. <br />
<br />
[http://www.opt-in-email-marketing.org/ Opt-In E-mail Marketing] is a great resource for obtaining tips on e-mail marketing and reviewing other campaigns. <br />
<br />
=== Domain Authentication ===<br />
Weaknesses in the SMTP protocol have allowed spammers to remain anonymous by allowing them to "spoof" sender addresses. [http://www.buit.org/2007/05/25/get-rid-of-spam-with-smtp-authentication/ Domain authentication technologies] would correct this and allow spammers to be identified.<br />
=== Bounties ===<br />
Spam bounties, or rewards leading to the arrest of spammers, have been [http://www.cbsnews.com/stories/2004/09/17/tech/main644056.shtml considered by the US government]. In 2004, Congress requested a report by The Federal Trade Commission which concluded that rewards between $100,000 and $250,000 would be necessary to make the program work.<br />
<br />
=== The Goodmail approach: ===<br />
<br />
Described as a guaranteed delivery of email for a price. Email will be guaranteed not to be spam-blocked by the Goodmail providers to its customers.<br />
<br />
Although this will limit certain types of spam, like money cons from Nigeria, it does not prevent other types of corporate spam. This is more of a attempt to legalized marketing technique to spam.<br />
There are also many individual and different interpretations of what spam is to an email user that we do not want the company deciding what is spam for all of its email clients.<br />
<br />
=== Bonds with escrow agencies: ===<br />
<br />
One of the archaic initiatives (as of 1994) to curve spam that was originated by on of our industry leaders "Bill Gates". Although this technique creates some virtual money trail, it may produce corrupted escrow agents that can manage the results to hide certain individuals or companies from the blacklist. This technique could also limit the accessibility of email to non-profit organizations and/or poor individuals.<br />
<br />
It is hard to keep up and enforce correctly across different countries that may have laws to allow or disallow certain types of email. By providing this type of block the abusing individuals or institutions will change the medium on how email messages are delivered. From text to sound or movie files instead making it harder to detect and interpret by a program or filter.<br />
<br />
=== Links: ===<br />
*[http://www.networkcomputing.com/showitem.jhtml?docid=1509f1 Anti-Spam]<br />
*[http://blogs.zdnet.com/BTL/?p=2737 Goodmail Approach]<br />
*[http://ansuz.sooke.bc.ca/lawpoli/spam/2004072502.php Bonds with escrow approach]<br />
*[http://www.hospitalitynet.org/news/4020610.search?query=spam+bonds+with+escrow+agencies Bonds with escrow approach - Spam Filter]</div>Gsdedeughttps://wiki.expertiza.ncsu.edu/index.php?title=CSC_379:Weed_1,_Group_2&diff=1397CSC 379:Weed 1, Group 22007-07-05T23:32:22Z<p>Gsdedeug: </p>
<hr />
<div>== Anti-Spam Techniques ==<br />
<br />
<br />
=== Blocking Domains ===<br />
Domain blocking is not always effective. Since spammers are often spoofing domains, this results in the [http://www.mywire.com/pubs/PCMagazine/2004/03/16/418338?extID=10051 unintended blocking of non-spammers.]<br />
The Earthlink Spam Blocker<br />
<br />
Charging for Sent Emails<br />
<br />
===Opt-In===<br />
Opt-In is a term used when someone is given the option of receiving bulk e-mail when they are registering to some sort of database system. This technique implies a number of practices that will ensure correct ways of managing e-mail marketing campaigns. <br />
<br />
[http://www.opt-in-email-marketing.org/ Opt-In E-mail Marketing] is a great resource for obtaining tips on e-mail marketing and reviewing other campaigns. <br />
<br />
=== Domain Authentication ===<br />
Weaknesses in the SMTP protocol have allowed spammers to remain anonymous by allowing them to "spoof" sender addresses. [http://www.buit.org/2007/05/25/get-rid-of-spam-with-smtp-authentication/ Domain authentication technologies] would correct this and allow spammers to be identified.<br />
=== Bounties ===<br />
Spam bounties, or rewards leading to the arrest of spammers, have been [http://www.cbsnews.com/stories/2004/09/17/tech/main644056.shtml considered by the US government]. In 2004, Congress requested a report by The Federal Trade Commission which concluded that rewards between $100,000 and $250,000 would be necessary to make the program work.<br />
<br />
The Goodmail Approach<br />
<br />
Escrow Bonds<br />
<br />
<br />
Links<br />
*[http://www.networkcomputing.com/showitem.jhtml?docid=1509f1 Anti-Spam]<br />
<br />
Group Members:<br />
*[http://www4.ncsu.edu/~jjhernan Jorge J Hernandez]</div>Gsdedeughttps://wiki.expertiza.ncsu.edu/index.php?title=CSC_379:Weed_1,_Group_2&diff=1392CSC 379:Weed 1, Group 22007-07-05T23:23:11Z<p>Gsdedeug: </p>
<hr />
<div>== Anti-Spam Techniques ==<br />
<br />
Blocking Domains<br />
<br />
The Earthlink Spam Blocker<br />
<br />
Charging for Sent Emails<br />
<br />
Opt-In<br />
<br />
=== Domain Authentication ===<br />
Weaknesses in the SMTP protocol have allowed spammers to remain anonymous by allowing them to "spoof" sender addresses. [http://www.buit.org/2007/05/25/get-rid-of-spam-with-smtp-authentication/ Domain authentication technologies] would correct this and allow spammers to be identified.<br />
=== Bounties ===<br />
Spam bounties, or rewards leading to the arrest of spammers, have been [http://www.cbsnews.com/stories/2004/09/17/tech/main644056.shtml considered by the US government]. In 2004, Congress requested a report by The Federal Trade Commission which concluded that rewards between $100,000 and $250,000 would be necessary to make the program work.<br />
<br />
The Goodmail Approach<br />
<br />
Escrow Bonds<br />
<br />
<br />
Links<br />
*[http://www.networkcomputing.com/showitem.jhtml?docid=1509f1 Anti-Spam]<br />
<br />
Group Members:<br />
*[http://www4.ncsu.edu/~jjhernan Jorge J Hernandez]</div>Gsdedeughttps://wiki.expertiza.ncsu.edu/index.php?title=CSC_379:Weed_1,_Group_2&diff=1391CSC 379:Weed 1, Group 22007-07-05T23:22:42Z<p>Gsdedeug: </p>
<hr />
<div>== Anti-Spam Techniques ==<br />
<br />
Blocking Domains<br />
<br />
The Earthlink Spam Blocker<br />
<br />
Charging for Sent Emails<br />
<br />
Opt-In<br />
<br />
=== Domain Authentication ===<br />
Weaknesses in the SMTP protocol have allowed spammers to remain anonymous by allowing them to "spoof" sender addresses. [http://www.buit.org/2007/05/25/get-rid-of-spam-with-smtp-authentication/ Domain authentication technologies] would correct this and allow spammers to be identified.<br />
<br />
<br />
=== Bounties ===<br />
Spam bounties, or rewards leading to the arrest of spammers, have been [http://www.cbsnews.com/stories/2004/09/17/tech/main644056.shtml considered by the US government]. In 2004, Congress requested a report by The Federal Trade Commission which concluded that rewards between $100,000 and $250,000 would be necessary to make the program work.<br />
<br />
The Goodmail Approach<br />
<br />
Escrow Bonds<br />
<br />
<br />
Links<br />
*[http://www.networkcomputing.com/showitem.jhtml?docid=1509f1 Anti-Spam]<br />
<br />
Group Members:<br />
*[http://www4.ncsu.edu/~jjhernan Jorge J Hernandez]</div>Gsdedeughttps://wiki.expertiza.ncsu.edu/index.php?title=CSC_379:Weed_1,_Group_2&diff=1389CSC 379:Weed 1, Group 22007-07-05T23:22:06Z<p>Gsdedeug: </p>
<hr />
<div>== Anti-Spam Techniques ==<br />
<br />
Blocking Domains<br />
<br />
The Earthlink Spam Blocker<br />
<br />
Charging for Sent Emails<br />
<br />
Opt-In<br />
<br />
=== Domain Authentication ===<br />
Weaknesses in the SMTP protocol have allowed spammers to remain anonymous by allowing them to "spoof" sender addresses. Domain authentication technologies would correct this and allow spammers to be identified.<br />
<br />
<br />
=== Bounties ===<br />
Spam bounties, or rewards leading to the arrest of spammers, have been [http://www.cbsnews.com/stories/2004/09/17/tech/main644056.shtml considered by the US government]. In 2004, Congress requested a report by The Federal Trade Commission which concluded that rewards between $100,000 and $250,000 would be necessary to make the program work.<br />
<br />
The Goodmail Approach<br />
<br />
Escrow Bonds<br />
<br />
<br />
Links<br />
*[http://www.networkcomputing.com/showitem.jhtml?docid=1509f1 Anti-Spam]<br />
<br />
Group Members:<br />
*[http://www4.ncsu.edu/~jjhernan Jorge J Hernandez]</div>Gsdedeughttps://wiki.expertiza.ncsu.edu/index.php?title=CSC_379:Weed_1,_Group_2&diff=1387CSC 379:Weed 1, Group 22007-07-05T23:06:57Z<p>Gsdedeug: </p>
<hr />
<div>== Anti-Spam Techniques ==<br />
<br />
Blocking Domains<br />
<br />
The Earthlink Spam Blocker<br />
<br />
Charging for Sent Emails<br />
<br />
Opt-In<br />
<br />
Domain Authentication<br />
<br />
<br />
=== Bounties ===<br />
Spam bounties, or rewards leading to the arrest of spammers, have been [http://www.cbsnews.com/stories/2004/09/17/tech/main644056.shtml considered by the US government]. In 2004, Congress requested a report by The Federal Trade Commission which concluded that rewards between $100,000 and $250,000 would be necessary to make the program work.<br />
<br />
The Goodmail Approach<br />
<br />
Escrow Bonds<br />
<br />
<br />
Links<br />
*[http://www.networkcomputing.com/showitem.jhtml?docid=1509f1 Anti-Spam]<br />
<br />
Group Members:<br />
*[http://www4.ncsu.edu/~jjhernan Jorge J Hernandez]</div>Gsdedeug