Computer Security: a plea to Santa Claus

Running pirated software or illegal licences, using cracking tools to bypass software activation measures, sharing music and films – these are problems that academic environments unfortunately have to deal with. All violate the copyright of the software/music/film owners, and copyright owners are not Santa Claus... 

 

CERN, like other research organisations and universities, regularly receives allegations from external companies complaining about laptops or PCs running illegal software or sharing their films, videos or music with peers – and thus violating copyright. 

Usually, we then contact the owners of the corresponding devices in order to understand whether these allegations are true. Very often such allegations boil down to a laptop whose owner replies “I confirm that a torrent client was left up and running on my device by mistake” or “This is a file that is stored on my personal hard disk.” As if those allegations were “peccadillos” (see our earlier Bulletin article “Downloading films is no peccadillo”) and have no consequences.

So why is it that some of us think we have the right to bend CERN’s rules? Violating copyright, using pirated licences (“Do you have 30 kCHF pocket money?”), outsourcing IT technologies when CERN provides similar technologies (“IT or not IT, that is the question”), speeding on the CERN site, parking where it is not permitted… Aren’t we supposed to apply due diligence and avoid such things in order to protect the reputation of the Organization? Aren’t we all professionals bound by the Organization’s Code of Conduct and its rules?

Of course, we could say ‘no more warnings’ and go straight to the more severe consequences and sanctions, involving hierarchy and supervisors, etc. However, since this is the end of the year, let’s make a wish that we will all act in a more responsible and ethical way in 2016!

We are also keen to get your opinion concerning suitable strategies to apply to this issue. Just send us an e-mail at Computer.Security@cern.ch.


For further information, questions or help, check our website or contact us at Computer.Security@cern.ch.

Do you want to learn more about computer security incidents and issues at CERN? Follow our Monthly Report


Access the entire collection of Computer Security articles here.

by Stefan Lueders, Computer Security Team