If only . . .
I welcome the critical email I recently received about my April Fool’s Day post. The discussion has some interesting provocations, but more importantly it illustrates some security/privacy thinking that more people need to get their heads around.
Here’s my critic:
As a Systems Analyst, I applaud your efforts influencing public policy on such important issues as information privacy and security. However, I strongly disagree with your tactics, and methodology. Propigating fear through disseminating false information is a terrorist style tactic and in the long run I think it does more harm then good.
In this particular case, your attack on the EVVE Naphsis system was un-warranted as this is a system that was designed with security and privacy in mind. I would love to go into details about the architecture, controls, and auditing capabilities designed into the system to prevent the sort of attack that you refer to, but because EVVE is a secured system, I cannot discuss those details. However, I agree that there inherent security risks with any application that transmits or stores personal data, and unfortunately we are now finding out that not all such systems were architected with the proper concern for security and privacy. When the proper care and attention is given to security and privacy, information systems offer more layers of security, and more throough auditing capabilities then the sytems they are replacing (particularly true of the EVVE system). In order to ensure the privacy and security of personal information, we need to raise awareness about not only the security issues, but also ethical and moral implications. However, disemminating false information and inciting distrust of the technology is not going to solve any issues, and only serves to further damage the reputation of the industry as a whole. Regards,
The Technology Liberation Front is the tech policy blog dedicated to keeping politicians' hands off the 'net and everything else related to technology.
Comments on this entry are closed.