MTAS and other NHS websites
Ian G Batten
ukcrypto at chiark.greenend.org.uk
Sun, 6 May 2007 02:09:35 +0100
On 5 May 2007, at 10:35, vickyvicky@egypt.com wrote:
>
>
> Er what I meant was ' it was unlucky for MTAS that a doctor saw it
> so quickly'. It seems likely that the file was put there on a short-
> term basis so that it could be quickly disseminated. They might
> have got away with it. For all I knw, they might have even done it
> on a regularish basis. Unluckily, they got spotted.
Are we really expected to be happy that medical profession
confidentiality is reduced to ``and I've have got away with it if
hadn't been for those pesky kids?'' The act of grouping together
all information about a large number of people is itself a security
problem, before you then leak it out. A clearance for level X will
have a clause in it about not having access to sufficient level X so
as to allow the holder to deduce information at level X+1, and that
principle should have applied here.
ian