BBC NEWS | UK | Questions asked after data loss

[Ian Miller]

All of the recent reported data losses have been accidents.  Where as
accidents are a worry, they are nothing like as much of a worry as the
deliberate stealing of data.

It is far far harder to build systems that are proof against a determined
resourceful and well-funded attacker, than those that are proof against
inept personnel.  Any system were an inept employee can lose data, a bent
employee in the same role can trivially steal it.  The stealing of data is
also far less likely to be detected as the data-thief will avoid anything
obvious like missing media if they possibly can.

Given that HMG is manifestly incapable of building systems that proof
against the inept, there is no real doubt that all data collected by HMG
will be availble to any resourceful malefactor who has enough reason to
want it.  I really don't think that the necessary change of culture within
Whitehall to prevent this is possible.  Indeed I don't think the government
is capable of appreciating the magnitude of the problem.

Ian

--
32 Stockwell St, Cambridge, CB1 3ND
Tel:  +44 1223 511943	            Mobile: +44 777 5536663
Fax:  +44 870 0514333	 (e-mail preferred to Fax)