Federal requirement to disclose database security breaches?



Fines and prison time are among the penalties envisioned under a proposed house bill. The requirement would be that businesses with database holding information on more than 10,000 people (or federal employees) would have to inform either the Secret Service or the FBI of a data security breach. (The maximum sentence would be five years.) Now, on my first read of this, I thought, well sure – any company should disclose the possible loss, theft, or breach of a database holding customer data. I still think that… but I don’t know that the focus of penalty is on the right shoulders.


I would certainly go along with heavy fines for failing to report a breach, but prison time? Shouldn’t that be reserved for the ones that actually break in and steal 10,000+ credit card numbers? For that matter, I do have a bit of the problem with the implication that it is more greivous that a single federal employees information is breached than 9,999 “civilians” (for lack of a better term…) And how is a business with less than 10,000 people supposed to identify Federal employees in their database to know that we need to report to the FBI that somebody stole 5,000 names and birthdates?

The Security fix has a story on the proposed bill… He raises another good point and that is the FBI having it’s hands full with cybercrime reports already. He goes on to really get at the issue. Cybercrime is not something that the US alone can solve. The havens for cybercriminal are worldwide and there are a variety of reasons, poverty, disdain for the U.S./West, etc. And until some of the factors that push people to cybercrime elsewhere, we will not get a handle on it here. They will be out of reach.

I don’t know if the proposed bill is the best solution to protection peoples private data. Like most things in politics it will likely go through a series of changes before it’s voted on and finalized. It will be interesting to see what threshold is held for “personal data”. That will determine if most EVERYONE that keeps a database of Donors or customers, contacts, etc… will be required to keep the FBI on speed-dial.

Related Posts

Blog Traffic Exchange Related Posts
  • Oracle updates I normally don't follow updates for Oracle, as I don't have an installation running Oracle to support. Right now, I'm quite glad of that... The Security Fix is talking about the 82 patches they released Tuesday in their quarterly patch release. The fact that they released 82 patches is not......
  • Another IE security flaw this one could lead to data theft I saw this earlier this afternoon at betanews.com there seems to be a flaw in the way Internet Explorer deals with css that could put your data at risk. According to this article it is a risk combined with Google Desktop. This can be "fixed" by disabling scripting or using......
  • That's bad - data on Nuclear agency workers stolen... According to reuters data on US Nuclear Safety Administration employees (*some 1500) was stolen in a computer cracking incident. The NNSA is a semi-autonomous arm of the Energy Department and also guards some of the U.S. military's nuclear secrets and responds to global nuclear and radiological emergencies. Of course, this......
Blog Traffic Exchange Related Websites
  • Is Social Security Income an Asset? NO! I just read a very interesting article on Wall Street Journal Personal Finance Section, titled "Save Your Nest Egg, Hold on to Stocks" written by Mr. Zweig.  The article surrounds the idea that since your Social Security income stream can be turned into a present value number equivalent to a......
  • Comparing Retirement Cost of Living in Different Locations When baby boomers retire, many will consider relocating to lower their cost of living.  I think this strategy will take on more importance because of damage caused to retirement nest eggs in 2008-2009. To properly consider a relocation strategy, a prospective retiree must have accurate information about costs of living in......
  • The New Domestic Terrorists - People Like You WedNEWSday - March 25th, 2009   If you're a pro-lifer, support a third party candidate such as Ron Paul, Chuck Baldwin, or Bob Barr, own a copy of the anti-income tax film "America: Freedom to Fascism," or have a Gagsden "Don't Tread on Me" flag then there is a high probability......
en.pdf24.org    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

Comments are closed.


Switch to our mobile site