Late May 2006 saw perhaps the largest theft of Veterans’ Social Security numbers to date. This is where personal information stolen or laptops containing the data were stolen. When I first read about a burglar who simply took a laptop, which contained veterans’ personal information. The best-case scenario, the data has already been erased and the hardware pawned at a small shop.
It was not until I started doing some research that security breaches and theft of personal data was so common. Over 79 separate report data breaches took place this year so far. I discovered these security breaches were a result of someone on the inside that opened the door for the information to be lost or stolen.
In computer security circles, there is a principle of least privilege. It says that only data is available to those who absolutely need, have access to it. I need to ask two questions. Did that data need to be on that laptop? Did that individual have to take that data home to do his or her job? In my mind the is a resounding NO! to both questions.
We have seen US Government regulations concerning the security of our personal information forcing business to tighten their security policies. People are flawed. No matter what the law and company policy says, people will still do what they can do without being caught.
What we have seen with the veterans’ data is a prime example of what should not happen. Personal integrity any business or government agency employee must be top priority before entrusting them with our personal information. The only way I know to do this is to get from out behind the computer and have a face-to-face contact with people on the other end of my information.
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment