Legal Risks for Phishing Researchers
Yale University - Yale Information Society Project
September 10, 2008
The Third Anti-Phishing Working Group eCrime Researchers Summit
Researchers are increasingly turning to live, 'in the wild' phishing studies of users, who unknowingly participate without giving informed consent. Such studies can expose researchers to a number of unique, and fairly significant legal risks. This paper will present four case studies highlighting the steps that researchers have taken to avoid legal problems, and to highlight the legal risks that they were unable to avoid. It then provides a high-level introduction to a few particularly dangerous areas of the law. Finally, it concludes with a series of best practices that may help researchers to avoid legal trouble.
Number of Pages in PDF File: 11
Keywords: phishing, cyberlaw, legal risks
Date posted: September 12, 2008 ; Last revised: July 18, 2015