Adopting cloud computing can mean entrusting data to a third-party vendor. For agencies responsible for personally identifiable information or mission-critical applications, this raises a host of privacy concerns, chief among them the issue of data sovereignty and the question of determining appropriate government and commercial uses of private citizens’ data. This section of the SafeGov.org site analyzes the risks to privacy associated with cloud adoption and explores ongoing means to mitigate them.
Tuesday, February 18, 2014
In the world of data protection, it’s an old story: Personal data gets shared with a third party data service provider, and then something goes wrong at the provider.
Participants in this year's Consumer Electronics Show in Las Vegas learned that the Internet is not just for smartphones and tablets anymore. This year's show had smart ovens, cars and crockpots; cameras that take pictures automatically; and devices that track anything from your heart rate to how well you brush your teeth. This is what the technology community calls "the Internet of Things," and many believe it is where consumer technology is headed. Google does, too. That's why it spent $3 billion to acquire Nest's smart thermostats.
Friday, January 31, 2014
Wednesday, January 22, 2014
There is a great Hitchcock movie from years ago, “The man who knew too much.” I was thinking about that movie the other day as I read the numerous media articles about the vulnerability of cloud enabled appliances. From one initial article there was a huge cry related specifically to the apparent hacking of a refrigerator. The reason for the original outcry was the presence of one internet connected refrigerator on a published list of devices that had been “hacked.” In particular, this refrigerator was hosting a bot that was used to send SPAM messages.
Monica Vendituoli, USA Today, Saturday, January 11, 2014
In late December 2013, Washington state representative Elizabeth Scott (R-Monroe) prefiled a bill titled “Maintaining Privacy of Student Education Records,” that requires the consent of parents, guardians and students before a student’s personally identifiable data is shared with certain organizations. The bill is scheduled for a hearing on Jan. 15.
Wednesday, January 08, 2014
The Chertoff Group
Thursday, January 02, 2014
Ladar Levison – martyr or misinformed? Yes, it’s provocative, but since the answer is “a little bit of both” (with a healthy dose of tongue in cheek) it’s a good way to start a more serious discussion of the Lavabit story and what it tells us about cloud services and their relationship to the government.