funsec mailing list archives
Re: [privacy] Laptop Stolen From D.C. Home With Personal Data of 13, 000
From: Gregory Hicks <ghicks () cadence com>
Date: Mon, 19 Jun 2006 12:23:41 -0700 (PDT)
From: Blanchard_Michael () emc com Date: Mon, 19 Jun 2006 13:37:27 -0400 To: <drsollyp () drsolly com> Cc: privacy () whitestar linuxbox org Subject: Re: [privacy] Laptop Stolen From D.C. Home With Personal Data of 13,
000
Sounds like you're not really a fan of the National ID cards. I'm not
either, for numerous reasons.
One question... What's a "nine Bob Note"?
Essentially the same thing as a three dollar bill.
Are you inferring that the ID cards will be easy to forge? Mike B Michael P. Blanchard Antivirus / Security Engineer, CISSP, GCIH, CCSA-NGX, MCSE Office of Information Security & Risk Management EMC ² Corporation 4400 Computer Dr. Westboro, MA 01580 -----Original Message----- From: Drsolly [mailto:drsollyp () drsolly com] Sent: Monday, June 19, 2006 12:42 PM To: Blanchard, Michael (InfoSec) Cc: fergdawg () netzero net; privacy () whitestar linuxbox org Subject: RE: [privacy] Laptop Stolen From D.C. Home With Personal Data of 13,
000
On Mon, 19 Jun 2006 Blanchard_Michael () emc com wrote:Dr. Solly, I agree with each and everything you said below. SSN was never meant to be an ID number, but these days if you have someone's SSN and a couple other pieces of info.... Hmmm, lets hit someone's trash and grab a utility bill or two, then "find" their SSN on the web somewhere, ok now let's go to the DMV in some far away town to get a replacement drivers license.... You've now become that person, easy cheesy.... It's not nust the SSN that I'm worried about though. Personal information in general, Credit card numbers, bank account numbers, hell even the color of my eyes or hair (yes if you've seen my in person, these two are pretty obvious, and I believe I've met just about everyone on this list in person at one time or another). BUT! It doesn't matter. It's MY information. Information about ME, no one else. Information that's supposed to be PRIVATE. These places don't have the right, IMHO, to allow my information to be stored on any laptop and brought home with anyone. I should be able to assume a reasonable amount of security precautions will be taken with my data.Yes, I agree that the info should be kept confidential. I'm saying that, in addition, banks and credit companies shouldn't be so gullible as to accept ssn as proof of identity.It is very interesting to note that most of this data theft is within the States, at least those that we hear of.... What are you guys doing in the UK that prevents or seriously discourages this type of thing?We have a three-part approach. 1) We don't have SSNs, so you can't give them out by accident. 2) If there is a major loss of data, no-one tells anyone about it, because it would only upset the consumers and make them worry about their confidential data. 3) We're planning to introduce "Identity cards", which will cost an enormous amount per card, require an enormously expensive computer system to administer (which will cost three times as much as the original estimate), and which will be about as difficult to forge as a nine bob note. _______________________________________________ privacy mailing list privacy () whitestar linuxbox org http://www.whitestar.linuxbox.org/mailman/listinfo/privacy
------------------------------------------------------------------- Gregory Hicks | Principal Systems Engineer Cadence Design Systems | Direct: 408.576.3609 555 River Oaks Pkwy M/S 6B1 | Fax: 408.894.3400 San Jose, CA 95134 | Internet: ghicks () cadence com I am perfectly capable of learning from my mistakes. I will surely learn a great deal today. "A democracy is a sheep and two wolves deciding on what to have for lunch. Freedom is a well armed sheep contesting the results of the decision." - Benjamin Franklin "The best we can hope for concerning the people at large is that they be properly armed." --Alexander Hamilton _______________________________________________ privacy mailing list privacy () whitestar linuxbox org http://www.whitestar.linuxbox.org/mailman/listinfo/privacy
Current thread:
- Re: [privacy] Laptop Stolen From D.C. Home With Personal Data of 13, 000 Blanchard_Michael (Jun 19)
- Re: [privacy] Laptop Stolen From D.C. Home With Personal Data of 13, 000 Drsolly (Jun 19)
- Re: [privacy] Laptop Stolen From D.C. Home With Personal Data of 13, 000 Blanchard_Michael (Jun 19)
- Re: [privacy] Laptop Stolen From D.C. Home With Personal Data of 13, 000 Drsolly (Jun 19)
- Re: [privacy] Laptop Stolen From D.C. Home With Personal Data of 13, 000 Blanchard_Michael (Jun 19)
- Re: [privacy] Laptop Stolen From D.C. Home With Personal Data of 13, 000 David Lodge (Jun 19)
- Re: [privacy] Laptop Stolen From D.C. Home With Personal Data of 13, 000 Michael Simpson (Jun 21)
- Re: [privacy] Laptop Stolen From D.C. Home With Personal Data of 13, 000 Blanchard_Michael (Jun 21)
- Re: [privacy] Laptop Stolen From D.C. Home With Personal Data of 13, 000 Blanchard_Michael (Jun 19)
- Re: [privacy] Laptop Stolen From D.C. Home With Personal Data of 13, 000 Drsolly (Jun 19)
- <Possible follow-ups>
- Re: [privacy] Laptop Stolen From D.C. Home With Personal Data of 13, 000 Gregory Hicks (Jun 19)