SQL Clone
SQLServerCentral is supported by Redgate
 
Log in  ::  Register  ::  Not logged in
 
 
 


Do We Understand Data?


Do We Understand Data?

Author
Message
quackhandle1975
quackhandle1975
SSCrazy Eights
SSCrazy Eights (8.8K reputation)SSCrazy Eights (8.8K reputation)SSCrazy Eights (8.8K reputation)SSCrazy Eights (8.8K reputation)SSCrazy Eights (8.8K reputation)SSCrazy Eights (8.8K reputation)SSCrazy Eights (8.8K reputation)SSCrazy Eights (8.8K reputation)

Group: General Forum Members
Points: 8792 Visits: 1384
Comments posted to this topic are about the item Do We Understand Data?

Who looks outside, dreams; who looks inside, awakes. – Carl Jung.
Dave Poole
Dave Poole
SSC Guru
SSC Guru (53K reputation)SSC Guru (53K reputation)SSC Guru (53K reputation)SSC Guru (53K reputation)SSC Guru (53K reputation)SSC Guru (53K reputation)SSC Guru (53K reputation)SSC Guru (53K reputation)

Group: General Forum Members
Points: 53646 Visits: 3911
I've long felt that a lot of what gets left to the DBAs of this world is due to the abdication of responsibilities from people who are ignorant of what their role should be regarding data. Above a certain level responsibility = risk and therefore no-one is keen to take back the responsibilities.

LinkedIn Profile
www.simple-talk.com
Sean Redmond
Sean Redmond
Hall of Fame
Hall of Fame (3.5K reputation)Hall of Fame (3.5K reputation)Hall of Fame (3.5K reputation)Hall of Fame (3.5K reputation)Hall of Fame (3.5K reputation)Hall of Fame (3.5K reputation)Hall of Fame (3.5K reputation)Hall of Fame (3.5K reputation)

Group: General Forum Members
Points: 3485 Visits: 931
DBAs are only responsible for a small part of data security. We make sure that only those allowed to access data may access data, according to the rules laid down by Management. For example, I'm sure that the DBAs in Facebook do their job very well. If data is abused, it is usually not the DBA that is responsible for the abuse. I regard the act of whistleblowing as a special case. This is a moral issue.

If a DB-server is kept fully patched, then the DBA is not responsible, should a DB-server by breached by some very new zero-day exploit. If backups are too easily accessible by those not authorised, then the person responsible for taking care of backups is responsible. This may or may not be the DBA. The DBA is responsible to check that the backups restore as they should to sound DBs often and regularly.

Now, if there is a data-breach and the DB-login-password is too weak, easily guessed or not changed in a long time, then the DBA is responsible. Likewise if the DBAs gave out logins with too many rights (not everybody needs write-rights, for example), then the DBA is responsible, unless the DBA's better judgement was overridden by someone above him/her.

However, if data-breach happens because the developers insisted that the application user has enhanced rights so that they may save time by using Entity-Framework, then the person who overrode the DBA is responsible, in the event of a data-breach by means of poor coding in the application.

If someone with the authority to order data, orders data and then leaks it, the DBA is not responsible. The person who leaks the data is.
quackhandle1975
quackhandle1975
SSCrazy Eights
SSCrazy Eights (8.8K reputation)SSCrazy Eights (8.8K reputation)SSCrazy Eights (8.8K reputation)SSCrazy Eights (8.8K reputation)SSCrazy Eights (8.8K reputation)SSCrazy Eights (8.8K reputation)SSCrazy Eights (8.8K reputation)SSCrazy Eights (8.8K reputation)

Group: General Forum Members
Points: 8792 Visits: 1384
Thanks for the comments, all very valid. I read that Facebook *expected* CA to use their data correctly and to remove it once they had finished with it, not to then go and use it to influence US Presidential Elections. Crazy

The world in general has a lot to learn about "data".


qh

Who looks outside, dreams; who looks inside, awakes. – Carl Jung.
Eric M Russell
Eric M Russell
SSC Guru
SSC Guru (95K reputation)SSC Guru (95K reputation)SSC Guru (95K reputation)SSC Guru (95K reputation)SSC Guru (95K reputation)SSC Guru (95K reputation)SSC Guru (95K reputation)SSC Guru (95K reputation)

Group: General Forum Members
Points: 95138 Visits: 13840
quackhandle1975 - Friday, June 1, 2018 2:57 AM
Thanks for the comments, all very valid. I read that Facebook *expected* CA to use their data correctly and to remove it once they had finished with it, not to then go and use it to influence US Presidential Elections. Crazy

The world in general has a lot to learn about "data".


qh

One solution for this problem, of FaceBook and Google sharing data with 3rd party clients, is to have a more service oriented business model where the client requests data analysis based on specific parameters, the analytics is performed by an in-house FaceBook department, and then FaceBook hands over the result. Not only does this involve sharing less detailed data, but it gives FaceBook more transparency and control over how their data is used. What I mean is that while the data is less transparent to the 3rd party client, the use of the data is more transparent to organization that owns and distributes it. I feel that's the direction we need to go in.



"The universe is complicated and for the most part beyond your control, but your life is only as complicated as you choose it to be."
RAThor
RAThor
SSChasing Mays
SSChasing Mays (604 reputation)SSChasing Mays (604 reputation)SSChasing Mays (604 reputation)SSChasing Mays (604 reputation)SSChasing Mays (604 reputation)SSChasing Mays (604 reputation)SSChasing Mays (604 reputation)SSChasing Mays (604 reputation)

Group: General Forum Members
Points: 604 Visits: 2384
quackhandle1975 - Friday, June 1, 2018 2:57 AM
Thanks for the comments, all very valid. I read that Facebook *expected* CA to use their data correctly and to remove it once they had finished with it, not to then go and use it to influence US Presidential Elections. Crazy

The world in general has a lot to learn about "data".


qh

And human nature, apparently.
Though ironically, those using the data "unexpectedly" appeared to have understood human nature all too well.

Matt Miller (4)
Matt Miller (4)
SSC Guru
SSC Guru (101K reputation)SSC Guru (101K reputation)SSC Guru (101K reputation)SSC Guru (101K reputation)SSC Guru (101K reputation)SSC Guru (101K reputation)SSC Guru (101K reputation)SSC Guru (101K reputation)

Group: General Forum Members
Points: 101203 Visits: 20742
The concept of manipulating or steering people based on data has been around for centuries. Ancient Rome had a long-standing practice of smear campaigns to impugn competing politicians' reputations to advance their cause. There's also a long-standing track record of organizations, private or public using any and all info available for their own purposes, to include public opinion. McCarthyism, the political or religious purges in Korea, China, Russia and the middle east in the 1900's all showed that large organizations and governments are very inclined to use any (public or private) data they've collected to advance their causes, including using public data about you against you.

The main new item I think however is the level of data available and the strong-arming that has happened from various tech giants, essentially trying to strip everyone of any privacy. Google and Facebook, to name two, basically have a contract of adhesion: either submit to giving up all expectations that you data won't be gathered and collated, or stay off of our system entirely. Thanks to those tactics, pretty much everyone else hopped on board. I know the genie is already out of the bottle, but we really need to figure out how to put the limits back in to a rational level.

----------------------------------------------------------------------------------
Your lack of planning does not constitute an emergency on my part...unless you're my manager...or a director and above...or a really loud-spoken end-user..All right - what was my emergency again?
Jeff Moden
Jeff Moden
SSC Guru
SSC Guru (779K reputation)SSC Guru (779K reputation)SSC Guru (779K reputation)SSC Guru (779K reputation)SSC Guru (779K reputation)SSC Guru (779K reputation)SSC Guru (779K reputation)SSC Guru (779K reputation)

Group: General Forum Members
Points: 779745 Visits: 45874
Heh... MS seems to be one of the leaders in the area of how private data will be used. After reading their latest privacy statement for O365, I came away with the serious impression that you can summarize it all in just a sentence or two.

My words, not MS'...
Here's how we're going to use your data and we can change that anytime we like and, yes, we're sending it to a bunch of people you might not want to actually have such data. If you don't like that, don't use our products (says the drug pusher to the addicts Wink )

--Jeff Moden

RBAR is pronounced ree-bar and is a Modenism for Row-By-Agonizing-Row.
First step towards the paradigm shift of writing Set Based code:
Stop thinking about what you want to do to a row... think, instead, of what you want to do to a column.
If you think its expensive to hire a professional to do the job, wait until you hire an amateur. -- Red Adair

Helpful Links:
How to post code problems
How to post performance problems
Forum FAQs
Eric M Russell
Eric M Russell
SSC Guru
SSC Guru (95K reputation)SSC Guru (95K reputation)SSC Guru (95K reputation)SSC Guru (95K reputation)SSC Guru (95K reputation)SSC Guru (95K reputation)SSC Guru (95K reputation)SSC Guru (95K reputation)

Group: General Forum Members
Points: 95138 Visits: 13840
Jeff Moden - Friday, June 1, 2018 9:45 AM
Heh... MS seems to be one of the leaders in the area of how private data will be used. After reading their latest privacy statement for O365, I came away with the serious impression that you can summarize it all in just a sentence or two.

My words, not MS'...
Here's how we're going to use your data and we can change that anytime we like and, yes, we're sending it to a bunch of people you might not want to actually have such data. If you don't like that, don't use our products (says the drug pusher to the addicts Wink )

I trust Microsoft with my personal data more than I would FaceBook, Google, or Equifax. Microsoft's core business is selling software and services, and whatever data selling or sharing they do is just a marginal side hustle. In contrast, the other companies mentioned are pure data brokers. Yes, FaceBook, Google, and Equifax have applications and even consumer product oriented lines of business, but if you look closely they are all carefully engineered to expand the surface area of data they collect about their customers. They have to hoard data in order to survive, and I don't trust desperate people or organizations that feel threatened.



"The universe is complicated and for the most part beyond your control, but your life is only as complicated as you choose it to be."
jay-h
jay-h
SSChampion
SSChampion (13K reputation)SSChampion (13K reputation)SSChampion (13K reputation)SSChampion (13K reputation)SSChampion (13K reputation)SSChampion (13K reputation)SSChampion (13K reputation)SSChampion (13K reputation)

Group: General Forum Members
Points: 13350 Visits: 2714
Actually Cambridge (despite the hype) was a very small player in the very early campaigns.

RNC and DNC have their own massive data collection, and these were the primary sources during the election. What Cambridge did was steal data that was otherwise being 'legitimately' sold to the parties.

...

-- FORTRAN manual for Xerox Computers --
Go


Permissions

You can't post new topics.
You can't post topic replies.
You can't post new polls.
You can't post replies to polls.
You can't edit your own topics.
You can't delete your own topics.
You can't edit other topics.
You can't delete other topics.
You can't edit your own posts.
You can't edit other posts.
You can't delete your own posts.
You can't delete other posts.
You can't post events.
You can't edit your own events.
You can't edit other events.
You can't delete your own events.
You can't delete other events.
You can't send private messages.
You can't send emails.
You can read topics.
You can't vote in polls.
You can't upload attachments.
You can download attachments.
You can't post HTML code.
You can't edit HTML code.
You can't post IFCode.
You can't post JavaScript.
You can post emoticons.
You can't post or upload images.

Select a forum








































































































































































SQLServerCentral


Search