C. For the purposes of this chapter:
6. "Communication service provider" has the same meaning prescribed in section 13-3001.
10. "Public establishment" means a structure that is owned, leased or operated by this state or a political subdivision of this state or a health care institution as defined in section 36-401.
11. "Research facility" means a laboratory, institution, medical care facility, government facility, public or private educational institution or nature preserve at which a scientific test, experiment or investigation involving the use of animals is lawfully carried out, conducted or attempted.
E. For the purposes of sections 13-2316, 13-2316.01 and 13-2316.02:
1. "Access" means to instruct, communicate with, store data in, retrieve data from or otherwise make use of any resources of a computer, computer system or network.
2. "Access device" means any card, token, code, account number, electronic serial number, mobile or personal identification number, password, encryption key, biometric identifier or other means of account access, including a canceled or revoked access device, that can be used alone or in conjunction with another access device to obtain money, goods, services, computer or network access or any other thing of value or that can be used to initiate a transfer of any thing of value.
3. "Computer" means an electronic device that performs logic, arithmetic or memory functions by the manipulations of electronic or magnetic impulses and includes all input, output, processing, storage, software or communication facilities that are connected or related to such a device in a system or network.
4. "Computer contaminant" means any set of computer instructions that is designed to modify, damage, destroy, record or transmit information within a computer, computer system or network without the intent or permission of the owner of the information, computer system or network. Computer contaminant includes a group of computer instructions, such as viruses or worms, that is self-replicating or self-propagating and that is designed to contaminate other computer programs or computer data, to consume computer resources, to modify, destroy, record or transmit data or in some other fashion to usurp the normal operation of the computer, computer system or network.
5. "Computer program" means a series of instructions or statements, in a form acceptable to a computer, that permits the functioning of a computer system in a manner designed to provide appropriate products from the computer system.
6. "Computer software" means a set of computer programs, procedures and associated documentation concerned with the operation of a computer system.
7. "Computer system" means a set of related, connected or unconnected computer equipment, devices and software, including storage, media and peripheral devices.
8. "Critical infrastructure resource" means any computer or communications system or network that is involved in providing services necessary to ensure or protect the public health, safety or welfare, including services that are provided by any of the following:
(a) Medical personnel and institutions.
(b) Emergency services agencies.
(c) Public and private utilities, including water, power, communications and transportation services.
(d) Fire departments, districts or volunteer organizations.
(e) Law enforcement agencies.
(f) Financial institutions.
(g) Public educational institutions.
(h) Government agencies.
9. "False or fraudulent pretense" means the unauthorized use of an access device or the use of an access device to exceed authorized access.
10. "Financial instrument" means any check, draft, money order, certificate of deposit, letter of credit, bill of exchange, credit card or marketable security or any other written instrument as defined in section 13-2001 that is transferable for value.
11. "Network" includes a complex of interconnected computer or communication systems of any type.
12. "Property" means financial instruments, information, including electronically produced data, computer software and programs in either machine or human readable form, and anything of value, tangible or intangible.
13. "Proprietary or confidential computer security information" means information about a particular computer, computer system or network that relates to its access devices, security practices, methods and systems, architecture, communications facilities, encryption methods and system vulnerabilities and that is not made available to the public by its owner or operator.
14. "Services" includes computer time, data processing, storage functions and all types of communication functions.
13-2316. Computer tampering; venue; forfeiture; classification
A. A person who acts without authority or who exceeds authorization of use commits computer tampering by:
1. Accessing, altering, damaging or destroying any computer, computer system or network, or any part of a computer, computer system or network, with the intent to devise or execute any scheme or artifice to defraud or deceive, or to control property or services by means of false or fraudulent pretenses, representations or promises.
2. Knowingly altering, damaging, deleting or destroying computer programs or data.
3. Knowingly introducing a computer contaminant into any computer, computer system or network.
4. Recklessly disrupting or causing the disruption of computer, computer system or network services or denying or causing the denial of computer or network services to any authorized user of a computer, computer system or network.
5. Recklessly using a computer, computer system or network to engage in a scheme or course of conduct that is directed at another person and that seriously alarms, torments, threatens or terrorizes the person. For the purposes of this paragraph, the conduct must both:
(a) Cause a reasonable person to suffer substantial emotional distress.
(b) Serve no legitimate purpose.
6. Preventing a computer user from exiting a site, computer system or network-connected location in order to compel the user's computer to continue communicating with, connecting to or displaying the content of the service, site or system.
7. Knowingly obtaining any information that is required by law to be kept confidential or any records that are not public records by accessing any computer, computer system or network that is operated by this state, a political subdivision of this state, a health care provider as defined in section 12-2291, a clinical laboratory as defined in section 36-451 or a person or entity that provides services on behalf of a health care provider or a clinical laboratory.
8. Knowingly accessing any computer, computer system or network or any computer software, program or data that is contained in a computer, computer system or network.
B. In addition to section 13-109, a prosecution for a violation of this section may be tried in any of the following counties:
1. The county in which the victimized computer, computer system or network is located.
2. The county in which the computer, computer system or network that was used in the commission of the offense is located or in which any books, records, documents, property, financial instruments, computer software, data, access devices or instruments of the offense were used.
3. The county in which any authorized user was denied service or in which an authorized user's service was interrupted.
4. The county in which critical infrastructure resources were tampered with or affected.
C. On conviction of a violation of this section, the court shall order that any computer system or instrument of communication that was owned or used exclusively by the defendant and that was used in the commission of the offense be forfeited and sold, destroyed or otherwise properly disposed.
D. A violation of subsection A, paragraph 6 of this section constitutes an unlawful practice under section 44-1522 and is in addition to all other causes of action, remedies and penalties that are available to this state. The attorney general may investigate and take appropriate action pursuant to title 44, chapter 10, article 7.
E. Computer tampering pursuant to subsection A, paragraph 1 of this section is a class 3 felony. Computer tampering pursuant to subsection A, paragraph 2, 3 or 4 of this section is a class 4 felony, unless the computer, computer system or network tampered with is a critical infrastructure resource, in which case it is a class 2 felony. Computer tampering pursuant to subsection A, paragraph 5 of this section is a class 5 felony. Computer tampering pursuant to subsection A, paragraph 7 or 8 of this section is a class 6 felony.
13-2316.01. Unlawful possession of an access device; classification
A. A person commits unlawful possession of an access device by knowingly possessing, trafficking in, publishing or controlling an access device without the consent of the issuer, owner or authorized user and with the intent to use or distribute that access device.
B. The possession, trafficking, publishing or control of five or more access devices without the consent of the issuer, owner or authorized user may give rise to an inference that the person possessing, trafficking in, publishing or controlling the access devices intended to use or distribute the devices.
C. Unlawful possession of one hundred or more access devices is a class 4 felony. Unlawful possession of five or more but fewer than one hundred access devices is a class 5 felony. Unlawful possession of fewer than five access devices is a class 6 felony.
13-2316.02. Unauthorized release of proprietary or confidential computer security information; exceptions; classification
A. A person commits unauthorized release of proprietary or confidential computer security information by communicating, releasing or publishing proprietary or confidential computer security information, security-related measures, algorithms or encryption devices relating to a particular computer, computer system or network without the authorization of its owner or operator.
B. The following are exempt from this section:
1. The release by publishers, vendors, users and researchers of warnings or information about security measures or defects in software, hardware or encryption products if the release of the warnings or information is not specific to a particular owner's or operator's computer, computer system or network.
2. The release of security information among the authorized users of a computer, computer system or network or the notification to the owner or operator of a computer, computer system or network of a perceived security threat.
3. The release of security information in connection with the research, development and testing of security-related measures, products or devices if the release of the security information is not specific to a particular owner's or operator's computer, computer system or network.
C. At the conclusion of any grand jury, hearing or trial, the court shall preserve pursuant to section 44-405 any proprietary computer security information that was admitted in evidence or any portion of a transcript that contains information relating to proprietary computer security information.
D. Unauthorized release of proprietary or confidential computer security information is a class 6 felony, unless the security information relates to a critical infrastructure resource, in which case it is a class 4 felony.
If you have a difficult criminal case or serious charges, don't hesitate - call us now at 623-261-4532.