<a href="http://g.adspeed.net/ad.php?do=clk&zid=15220&wd=468&ht=60&pair=as" target="_blank"><img style="border:0px;" src="http://g.adspeed.net/ad.php?do=img&zid=15220&wd=468&ht=60&pair=as" alt="i" width="468" height="60"/></a>
Log in
::
Register
::
Not logged in
Home
Tags
Articles
Editorials
Stairways
Forums
Scripts
Videos
Blogs
QotD
Books
Ask SSC
SQL Jobs
Training
Authors
About us
Contact us
Newsletters
Write for us
<a href="http://g.adspeed.net/ad.php?do=clk&zid=15491&wd=120&ht=300&pair=as" target="_top"><img style="border:0px;" src="http://g.adspeed.net/ad.php?do=img&zid=15491&wd=120&ht=300&pair=as" alt="i" width="120" height="300"/></a>
Recent Posts
Recent Posts
Popular Topics
Popular Topics
Home
Search
Members
Calendar
Who's On
Home
»
SQLServerCentral.com
»
Editorials
»
The Security of You
33 posts, Page 1 of 4
1
2
3
4
»
»»
The Security of You
Rate Topic
Display Mode
Topic Options
Author
Message
Steve Jones - SSC Editor
Steve Jones - SSC Editor
Posted Saturday, November 08, 2008 3:05 PM
SSC-Dedicated
Group: Administrators
Last Login: Yesterday @ 9:03 PM
Points: 31,406,
Visits: 13,723
Comments posted to this topic are about the item
The Security of You
Follow me on Twitter:
@way0utwest
Forum Etiquette: How to post data/code on a forum to get the best help
Post #599488
Andy Leonard
Andy Leonard
Posted Monday, November 10, 2008 4:13 AM
Old Hand
Group: General Forum Members
Last Login: Monday, May 13, 2013 2:53 PM
Points: 375,
Visits: 947
Excellent editorial, Stev.
I dabbled in security years ago. What you're saying is absolutely correct: people expect newer technology - whatever it is - to be better. This expectation historically sets the stage for fantastic examples of security gaps. Some of them have been written about and made into movies.
The truth is: newer != better. At least not always.
Newer almost always means new security holes. The downside (and we see this in software as much as anywhere) is we don't know where the new holes are... yet.
:{> Andy
Andy Leonard
CSO, Linchpin People
Follow me on Twitter:
@AndyLeonard
Post #599730
IceDread
IceDread
Posted Monday, November 10, 2008 5:07 AM
SSC Veteran
Group: General Forum Members
Last Login: Friday, November 16, 2012 3:47 AM
Points: 290,
Visits: 988
Good editorial.
I find biometrics dangerous, not sure why but the entire concept feels like it's invading my privacy and me as a person and I do not believe it's any better then a card or a ring or something else that is not a part of my body. Besides, a failing ring/ card can be replaced, if I have an accident with my thumb and burn the skin or if it's is going to take my blood sample every time.. no way.
Besides, I'd prefer to have my card stolen then my thumb if I ever happen to work at a place where such things is an issue!
Post #599765
mike brockington
mike brockington
Posted Monday, November 10, 2008 5:07 AM
SSC-Enthusiastic
Group: General Forum Members
Last Login: Friday, May 17, 2013 4:49 AM
Points: 119,
Visits: 213
Actually, we do know many of the security holes, but the vendors generally like to ignore them, describing them as 'impossible' and so forth.
I don't have a reference to hand, but just last week The Register was reporting that people had been able to get a hold of Jacqui Smith's fingerprints. These will then be published on the Internet, allowing anyone to make their own latex copies, or whatever. Other studies have shown that a simple photo-copy is enough to fool most finger-print scanners.
Throw away your pocket calculators; visit
www.calcResult.com
Post #599766
Someguy
Someguy
Posted Monday, November 10, 2008 7:03 AM
SSC-Enthusiastic
Group: General Forum Members
Last Login: Monday, May 07, 2012 10:39 AM
Points: 153,
Visits: 565
I think Steve's best point is the one about trusting systems too much. The more 'infallible' a system, the more unready we are whenever it does happen to fail.
Can you say, 'Titanic'?
No system is infallible and maybe we're better off with known issues that keep us on our toes.
___________________________________________________
“Politicians are like diapers. They both need changing regularly and for the same reason.”
Post #599840
roger.plowman
roger.plowman
Posted Monday, November 10, 2008 7:42 AM
Old Hand
Group: General Forum Members
Last Login: Friday, May 17, 2013 1:11 PM
Points: 317,
Visits: 616
Biometrics have lots of problems. Even assuming the data is read-only secure (by which I mean someone can't substitute their fingerprints for yours, or yours for some known criminal!) you still have an insurmountable problem.
Using the Jacqui Smith example above, her biometric data (fingerprints) are now out in the wild. Even barring Misson-impossible style physical imposture scenarios, the real problem is remote verification (ie over the internet).
The computer doing the checking is NOT checking your fingerprint(s). It's checking the *digital representation* of your fingerprints, sent from God-knows-where. That means A) you can't verify it and B) once the biometric is compromised, you're screwed. You can't replace your fingerprints or your retinal pattern--that's the whole *point* of biometrics.
So what biometrics gives you is an irreplaceable piece of data that is easily stolen and used to "prove" a criminal is you.
Sound like fun?
Post #599874
Steve Jones - SSC Editor
Steve Jones - SSC Editor
Posted Monday, November 10, 2008 8:05 AM
SSC-Dedicated
Group: Administrators
Last Login: Yesterday @ 9:03 PM
Points: 31,406,
Visits: 13,723
Someone pointed it out; we don't know what the issues are. It's like us designing applications and users not realizing what the issues are until they see the final product. We won't know what the problems are until they start occurring.
This is one area I can secure my laptop with, but I don't want securing my banking, medical, or any other records for some company.
Follow me on Twitter:
@way0utwest
Forum Etiquette: How to post data/code on a forum to get the best help
Post #599895
don_goodman
don_goodman
Posted Monday, November 10, 2008 10:42 AM
SSC Rookie
Group: General Forum Members
Last Login: Tuesday, April 06, 2010 1:30 PM
Points: 34,
Visits: 82
The problem with biometrics is no different from other manifestations of the Big Brother Card. The implication is vast. When BOBB (Barack Obama Big Brother) and his minions act in my best interest when I don't agree with their conclusions, who knows what they will do with and to my BBC.
THe problem is not so much with the card. The problem is with the people who control the information.
No Thanks.
Post #600037
Steve Jones - SSC Editor
Steve Jones - SSC Editor
Posted Monday, November 10, 2008 12:11 PM
SSC-Dedicated
Group: Administrators
Last Login: Yesterday @ 9:03 PM
Points: 31,406,
Visits: 13,723
I'd argue with the Patriot Act, I wouldn't trust the other side any more.
Follow me on Twitter:
@way0utwest
Forum Etiquette: How to post data/code on a forum to get the best help
Post #600102
jay-h
jay-h
Posted Monday, November 10, 2008 12:20 PM
Say Hey Kid
Group: General Forum Members
Last Login: Tuesday, May 14, 2013 7:38 AM
Points: 685,
Visits: 1,706
If your bank account or credit card becomes compromised, you can be issued a new account number.
If your fingerprints become compromised, you can't get new prints
...
-- FORTRAN manual for Xerox Computers --
Post #600112
« Prev Topic
|
Next Topic »
33 posts, Page 1 of 4
1
2
3
4
»
»»
Permissions
You
cannot
post new topics.
You
cannot
post topic replies.
You
cannot
post new polls.
You
cannot
post replies to polls.
You
cannot
edit your own topics.
You
cannot
delete your own topics.
You
cannot
edit other topics.
You
cannot
delete other topics.
You
cannot
edit your own posts.
You
cannot
edit other posts.
You
cannot
delete your own posts.
You
cannot
delete other posts.
You
cannot
post events.
You
cannot
edit your own events.
You
cannot
edit other events.
You
cannot
delete your own events.
You
cannot
delete other events.
You
cannot
send private messages.
You
cannot
send emails.
You
may
read topics.
You
cannot
rate topics.
You
cannot
vote within polls.
You
cannot
upload attachments.
You
may
download attachments.
You
cannot
post HTML code.
You
cannot
edit HTML code.
You
cannot
post IFCode.
You
cannot
post JavaScript.
You
cannot
post EmotIcons.
You
cannot
post or upload images.
Copyright © 2002-2013 Simple Talk Publishing. All Rights Reserved.
Privacy Policy.
Terms of Use.
Report Abuse.
