Learning the Law of the Land about technologies and information is REALLY IMPORTANT for doing any penetration testing in any countries in the world. The reason is that you don’t want to be end up in prison just because you do your job as an ethical hacker. You don’t want to offend any of the law inside any countries you working in.
Each countries have a different laws about technologies and information in their countries. In this blog, I would talk specifically about the laws that available in Indonesia.
In Indonesia, the available law for technologies and information is on UNDANG-UNDANG REPUBLIK INDONESIA NOMOR 19 TAHUN 2016 TENTANG PERUBAHAN ATAS UNDANG-UNDANG NOMOR 11 TAHUN 2008 TENTANG INFORMASI DAN TRANSAKSI ELEKTRONIK. Here is the link for the law in Indonesia:
https://web.kominfo.go.id/sites/default/files/users/4761/UU%2019%20Tahun%202016.pdf
Well, you could read by yourself through the link above if you want learn deeper about the law in Indonesia. Here, I will only summarize what is inside the law here.
- Do not share, create or giving out any content that violate morality. (Pasal 27 -28)
- Do not carelessly threatened, blackmailing or defiling other people. (Pasal 29)
- Do not tap on other people information or accessing other computer without any authorization. (Pasal 30 – 31)
- Do not create any hoax content, in this case changing or creating any false information (Pasal 32).
All of the above are a brief about UU No. 19 Tahun 2016 Tentang Informasi dan Transaksi Elektronik. We should really understand about the law above if we want to having a job on ethical hacking and cyber security. Because, we don’t want to go beyond what the law says in the country.
The law above is just available in Indonesia. It would probably be different in other countries.