Losing All Traces of Data

  • This gets nothing but an 'eye-roll' from me, especially the 'right to be forgotten'. The level of development and maintenance discipline required (let alone the cost) should have been enough to toss the idea out the window; to put it as charitably as I can: it's naive and uniformed. If it had been seriously researched then that would have been apparent. I think Mr. Poole pointed it out already that you can theoretically do this if you plan ahead enough but after the train has left the station all you can do is throw money in front of it to try to slow it down. This is like the sales department promising the client magic features on the next software release that the IT department is expected to deliver... but now it's at a government size scale. Scary.

  • Fun coming back to this in the era of Meow and Ransomware.  The Garmin incident was a highly visible indication of what malign intent can do.

    We've known how to build secure systems for decades yet still we see fundamental flaws in process and systems.

    • thedailywtf.com should have run out of material
    • There should be no databases of any stripe without strong authentication implemented
    • SQL Injection attacks should not exist
    • The world shouldn't run on spreadsheets, csv files and FTP

     

     

  • I think that we need to realize is that it is indeed a valid and telling scenario. If I erase a single record in a 5 9's database:

    1. When would the backup be accessed?
    2. When the application user looked up the deleted record... well, you see the problem?

    Yes, there are plenty of ways to find out about the deleted record IFF you know about it.

    David

    • This reply was modified 4 years, 4 months ago by  anyoneis. Reason: Formatting

Viewing 3 posts - 31 through 32 (of 32 total)

You must be logged in to reply to this topic. Login to reply