Security Basics mailing list archives

Previous By Date Next
Previous By Thread Next

Re: A reminder that security is not inherently solvable with tech nology

From: "John T. Hoffoss" <hoff0438 () umn edu>
Date: Tue, 28 Oct 2003 14:44:03 -0600
On Mon, Oct 27, 2003 at 10:58:53PM -0600, Jimi Thompson wrote:

I have already had one client that found out, much to their dismay, 
that in certain countries, streaming your entire customer database 
through a chat room isn't illegal.


<snip>


On Fri, 2003-10-24 at 19:02, Hagen, Eric wrote:

The fact is that in the US, an individual would likely be arrested for

even

threatening to release this information.  The problem with the countries
overseas is that US laws, especially the privacy laws, are virtually
unenforcable.  While the activity of releasing that information it 
illegal
in the US, it is not usually illegal in another country, therefore, even

if

the individual released that information while residing in his native
country, his actions would be entirely lawfull, and even under 
extradition
treaties, the US would have little or no recourse in sequestering that
information, which is a huge problem.


Perhaps instead it should be illegal to export US customers' data without 
their explicit consent,(not a statement stuck in the middle of a EULA) 
rather than try to hold the world under our legal thumb.

-John

---------------------------------------------------------------------------
Forum Systems PRESIDIO: PGP / XML GATEWAY APPLIANCE
The Presidio integrates PGP data encryption and XML Web Services security to 
simplify the management and deployment of PGP and reduce overall PGP costs 
by up to 80%.
FREE WHITEPAPER & 30 Day Trial - 
http://www.securityfocus.com/sponsor/ForumSystems_security-basics_031027 
----------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: