Robin Wilton's esoterica

« Previous day (Aug 21, 2008) | Main | Next day (Aug 22, 2008) »

22 Aug · Fri 2008

Home Secretary blames PA Consulting for data breach

Ouch. Well, if I had wanted an example of the flexible and sometimes porous boundary between policy and technology in the protection of sensitive data, I couldn't have expected one much better than this, as reported on the BBC site today. According to the news item, a memory stick with personal data has gone missing after being populated with personal data in the course of work undertaken by PA Consulting: "The memory stick contained un-encrypted details about 10,000 prolific offenders as well as names, dates of births and some release date of all 84,000 prisoners in England and Wales - and 33,000 records from the police national computer."

The Home Secretary, Jacqui Smith, is reported as saying that this was data which had been 'held in a secure form' by the government, but downloaded by the contractor despite contrary provisions in the contract under which they were working. The point, surely, is that whatever technical security measures had been applied to the data, the contractors were able to access it (legitimately, one assumes, in the course of their contract work), but that when it came to preventing the resulting information from being copied onto removable media (in this case, a memory stick) the only protection in place was contractual. The Home Secretary appears to have had no reservations about placing the blame squarely on the contractor for an alleged breach of contract. Under the circumstances, I expect a number of people at PA are wondering whether the Home Office had taken all reasonable steps to secure the data technically, as opposed to relying so heavily on the contractual provisions she refers to.

One person ought to be happy, though - Michelle Dennedy, our CPO, will surely enjoy seeing one of her trademark phrases recycled* by the Deputy Commissioner at the UK's Information Commissioner's Office. David Smith is reported as saying that 'the latest loss showed that personal information could be a "toxic liability" if not handled properly'.

*In fact, on investigation, I notice that the metaphor has also been appropriated by Cory Doctorow and, indirectly, Hal Stern.

Posted by racingsnake @ 06:11 PM GMT+00:00 [ Comments [2] ]

The holiday Batman movie...

Went to see "Dark Knight" today... well, I have to do something while waiting for Quantum of Solace to come out. I thought Dark Knight was pretty good. Given the increasingly complex canon of existing stories it somehow needs to fit into, it does a fair job of working in the Harvey Dent theme. Heath Ledger's performance as the Joker is very good. I know a lot of people are already assuming that it will win him a posthumous Oscar - but I can't help feeling that a certain amount of that is based on sentimentality because of his untimely death.

Compared to, say, previous Bat-villain performances by Jim Carrey (as the Riddler) or Tommy Lee Jones (taking his turn as Harvey "Two-face" Dent), Ledger's is perhaps more edgy and less camp, but then so is the current Christian Bale franchise. The Joker does get the quote of the film, though, for my money:

"Do I really look like a guy with a plan?"

Any more, and I'd have to put in a "spoiler" warning. But it's a good flick, and at a macro level, the plot keeps on building and building...

Posted by racingsnake @ 05:45 PM GMT+00:00 [ Comments [2] ]

« August 2008 »
Mon	Tue	Wed	Thu	Fri	Sat	Sun
				1	2	3
4	5	6	7	8	9	10
11	12	13	14	15	16	17
18	19	20	21	22	23	24
25	26	27	28	29	30	31

Today

Such views as I express in this blog are based on my own opinions, experience and judgements. They do not necessarily represent the policy or views of my employer. It is not my intention to offend readers in any way. If you find anything on this blog offensive, please contact me in the first instance.
Robin Wilton

www.flickr.com

Links to recent entries

delicious

Valid XHTML or CSS?

Theme by Rowell Sotto.

What's this?