Mr Leigh said the reason given for turning down the NAO request was that desensitising information would require an extra payment to data services provider EDS.Have we really surrendered so much control over government IT to consultants, that simple operations on the data are now impossible?
A colleague of mine was working a few years ago, on a job which involved having customer information on a laptop, which he would carry about with him. One simple step he took before leaving the building was issue a command to his copy of the database, such as
UPDATE Customers SET BankAccountNo = '12345678'This obliterated all the bank account numbers, replacing them with 12345678, thus rendering the laptop rather less sensitive. It would probably take 30 seconds to type and run. And it is not rocket science: you could learn sufficient SQL for this sort of operation on a 1 day course, if you were not smart enough to get it from the manual.
Even this, of course, was not good enough. The company should have had a security policy and a security system that prevented the bulk capture of this sort of data. He didn't need these bank account numbers in the first place - it was just simpler to copy the whole database.
The idea that such a simple operation might involve a significant cost is breathtaking. I can understand that if a consultant has to be called in, even for 30 seconds work, there are many ancillary costs, and a fairly hefty bill may be reasonable. But this just emphasises the importance of having some basic competence over your core activities. By all means outsource development projects, but don't outsource control or understanding.
Posts
2 comments:
There has been lots of discussion at work recently whether we should ape the PCI-DSS credit card standard for other sensitive data our clients hold like bank account numbers etc or keep on with our current minimum standards which while lesser than those suggested by visa and mastercard kick the arse of the standards the government are using into a cocked England round-ball game manager.
A片,A片,A片,A片,A片,A片情趣用品,情趣,A片,AIO,AV,AV女優,A漫,免費A片,AIO交友愛情館,愛情公寓,情色,情色貼圖,色情小說,情色小說,情色文學,色情,寄情築園小遊戲,色情遊戲,嘟嘟情人色網,一葉情貼圖片區,情色論壇,色情影片,微風成人,嘟嘟成人網,成人,18成人,成人影城,成人圖片區,成人圖片,成人貼圖,UT聊天室,聊天室,豆豆聊天室,哈啦聊天室,尋夢園聊天室,聊天室尋夢園,視訊聊天室,視訊聊天
麻將,台灣彩卷,六合彩開獎號碼,運動彩卷,六合彩,線上遊戲,矽谷麻將,明星3缺一,橘子町,麻將大悶鍋,台客麻將,公博,game,淘,中華職棒,麗的線上小遊戲,國士無雙麻將,麻將館,賭博遊戲,威力彩,威力彩開獎號碼,龍龍運動網,史萊姆,史萊姆好玩遊戲,史萊姆第一個家,史萊姆好玩遊戲區,樂透彩開獎號碼,遊戲天堂,好玩遊戲,遊戲基地,無料遊戲王,好玩遊戲區,麻將遊戲,好玩遊戲區,小遊戲,遊戲區,電玩快打,cs online情趣用品,情趣,情趣商品,A片,AIO交友愛情館,AIOAV女優,AV,A漫,免費A片,本土自拍,自拍,愛情公寓,情色,情色貼圖,色情小說,情色小說,情色文學,色情,寄情築園小遊戲,色情遊戲,色情影片,情色網,色情網站,微風成人區,微風成人,嘟嘟成人網,成人,18成人,成人影城,成人圖片區,成人圖片,成人貼圖,成人文章,成人小說,UT聊天室,聊天室,豆豆聊天室,哈啦聊天室,尋夢園聊天室,聊天室尋夢園,080中部人聊天室,080聊天室,中部人聊天室,080苗栗人聊天室,苗栗人聊天室,免費視訊聊天,免費視訊,視訊聊天室,視訊聊天情趣用品,情趣,情趣商品,愛情公寓,情色,情色貼圖,色情小說,情色小說,情色文學,色情,寄情築園小遊戲,色情遊戲,AIO交友愛情館,一葉情貼圖片區,情色論壇,色情影片,色情網站,微風成人區,微風成人,嘟嘟成人網,成人,18成人,成人影城,成人圖片,成人貼圖,成人圖片區,成人文章,成人小說,A片,AV女優,AV,A漫,免費A片,自拍,UT聊天室,聊天室,豆豆聊天室,哈啦聊天室,尋夢園聊天室,聊天室尋夢園,080中部人聊天室,080聊天室,080苗栗人聊天室情趣用品,情趣,情趣商品,愛情公寓,情色,情色貼圖,色情小說,情色小說,情色文學,色情,做愛,寄情築園小遊戲,色情遊戲,AIO交友愛情館,AIO,色情影片,情色網,微風成人,嘟嘟成人網,成人,18成人,成人影城,成人圖片,成人貼圖,成人圖片區,成人文章,成人小說,成人電影,麗的色遊戲,自拍,A片,AV女優,AV,A漫,視訊交友網,視訊,視訊交友,免費視訊聊天室,免費視訊,視訊聊天,視訊聊天室,UT聊天室,聊天室,豆豆聊天室,哈啦聊天室,尋夢園聊天室,聊天室尋夢園
Post a Comment