Data Handling Procedures in Government: Interim Progress Report
James Davis
ukcrypto at chiark.greenend.org.uk
Mon, 21 Jan 2008 09:15:26 +0000
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Richard Clayton wrote:
> ... as ever, the key question isn't why someone thought it was sensible
> to leave a laptop in a car overnight; or even why there wasn't full disk
> encryption applied to it; but why someone has a need to have access to
> 600,000 records in the first place.
>
> If the ICO started asking those sorts of questions, and serving notices
> to fix flawed system _designs_, then we might be getting somewhere.
Richard Thomas was on Radio 4 this morning and said they'll be looking
at why the MoD collected so much data, and why they thought it was
acceptable to place it on a laptop, before they consider any protection
that was placed on the data.
James
- --
James Davis +44 1235 822 229 PGP: 0x890F159E
JANET CSIRT 0870 850 2340 (+44 1235 822 340)
Lumen House, Library Avenue, Didcot, Oxfordshire, OX11 0SG
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iQCVAwUBR5Rirba926eJDxWeAQLWYQP/TPLxe/QowGAk/j2hLuF9LXl8f72soMX/
eeJYdWmg5rNQTXy3GJKH7LJ+6Ym5qqIGSMCFCNKFMkZ8F/nny8+BjJ87FONiXOs9
wmVNHsm8iP5jxwNiD1q+NLi8G+NtscnvADbBuvI/DzytDLZbzeZGAXq5E34Jr/BX
pmUlPSdgflQ=
=4l3F
-----END PGP SIGNATURE-----