Skip to content

To deceive or not to deceive! legal implications of phishing covert research

Research output: Contribution to journalArticlepeer-review

Whilst studying mobile users' susceptibility to phishing attacks, we found ourselves subject to regulations concerning the use of deception in research. We argue that such regulations are misapplied in a way that hinders the progress of security research. Our argument analyses the existing framework and the ethical principles of conducting phishing research in light of these regulations. Building on this analysis and reflecting on real world experience; we present our view of good practice and suggest guidance on how to prepare legally compliant proposals to concerned ethics committees.
Original languageEnglish
Pages (from-to)285-293
JournalInternational Journal of Intellectual Property Management
Volume6
Issue number4
DOIs
Publication statusPublished - 2013

Related information

Relations Get citation (various referencing formats)

ID: 3018455