Tillbaka till svenska Fidonet
English   Information   Debug  
OS2BBS   0/787
OS2DOSBBS   0/580
OS2HW   0/42
OS2INET   0/37
OS2LAN   0/134
OS2PROG   0/36
OS2REXX   0/113
OS2USER-L   207
OS2   0/4786
OSDEBATE   5830/18996
PASCAL   0/490
PERL   0/457
PHP   0/45
POINTS   0/405
POLITICS   0/29554
POL_INC   0/14731
PSION   103
R20_ADMIN   1121
R20_AMATORRADIO   0/2
R20_BEST_OF_FIDONET   13
R20_CHAT   0/893
R20_DEPP   0/3
R20_DEV   399
R20_ECHO2   1379
R20_ECHOPRES   0/35
R20_ESTAT   0/719
R20_FIDONETPROG...
...RAM.MYPOINT
  0/2
R20_FIDONETPROGRAM   0/22
R20_FIDONET   0/248
R20_FILEFIND   0/24
R20_FILEFOUND   0/22
R20_HIFI   0/3
R20_INFO2   3205
R20_INTERNET   0/12940
R20_INTRESSE   0/60
R20_INTR_KOM   0/99
R20_KANDIDAT.CHAT   42
R20_KANDIDAT   28
R20_KOM_DEV   112
R20_KONTROLL   0/13258
R20_KORSET   0/18
R20_LOKALTRAFIK   0/24
R20_MODERATOR   0/1852
R20_NC   76
R20_NET200   245
R20_NETWORK.OTH...
...ERNETS
  0/13
R20_OPERATIVSYS...
...TEM.LINUX
  0/44
R20_PROGRAMVAROR   0/1
R20_REC2NEC   534
R20_SFOSM   0/340
R20_SF   0/108
R20_SPRAK.ENGLISH   0/1
R20_SQUISH   107
R20_TEST   2
R20_WORST_OF_FIDONET   12
RAR   0/9
RA_MULTI   106
RA_UTIL   0/162
REGCON.EUR   0/2056
REGCON   0/13
SCIENCE   0/1206
SF   0/239
SHAREWARE_SUPPORT   0/5146
SHAREWRE   0/14
SIMPSONS   0/169
STATS_OLD1   0/2539.065
STATS_OLD2   0/2530
STATS_OLD3   0/2395.095
STATS_OLD4   0/1692.25
SURVIVOR   0/495
SYSOPS_CORNER   0/3
SYSOP   0/84
TAGLINES   0/112
TEAMOS2   0/4530
TECH   0/2617
TEST.444   0/105
TRAPDOOR   0/19
TREK   0/755
TUB   0/290
UFO   0/40
UNIX   0/1316
USA_EURLINK   0/102
USR_MODEMS   0/1
VATICAN   0/2740
VIETNAM_VETS   0/14
VIRUS   0/378
VIRUS_INFO   0/201
VISUAL_BASIC   0/473
WHITEHOUSE   0/5187
WIN2000   0/101
WIN32   0/30
WIN95   0/4288
WIN95_OLD1   0/70272
WINDOWS   0/1517
WWB_SYSOP   0/419
WWB_TECH   0/810
ZCC-PUBLIC   0/1
ZEC   4

 
4DOS   0/134
ABORTION   0/7
ALASKA_CHAT   0/506
ALLFIX_FILE   0/1313
ALLFIX_FILE_OLD1   0/7997
ALT_DOS   0/152
AMATEUR_RADIO   0/1039
AMIGASALE   0/14
AMIGA   0/331
AMIGA_INT   0/1
AMIGA_PROG   0/20
AMIGA_SYSOP   0/26
ANIME   0/15
ARGUS   0/924
ASCII_ART   0/340
ASIAN_LINK   0/651
ASTRONOMY   0/417
AUDIO   0/92
AUTOMOBILE_RACING   0/105
BABYLON5   0/17862
BAG   135
BATPOWER   0/361
BBBS.ENGLISH   0/382
BBSLAW   0/109
BBS_ADS   0/5290
BBS_INTERNET   0/507
BIBLE   0/3563
BINKD   0/1119
BINKLEY   0/215
BLUEWAVE   0/2173
CABLE_MODEMS   0/25
CBM   0/46
CDRECORD   0/66
CDROM   0/20
CLASSIC_COMPUTER   0/378
COMICS   0/15
CONSPRCY   0/899
COOKING   32677
COOKING_OLD1   0/24719
COOKING_OLD2   0/40862
COOKING_OLD3   0/37489
COOKING_OLD4   0/35496
COOKING_OLD5   9370
C_ECHO   0/189
C_PLUSPLUS   0/31
DIRTY_DOZEN   0/201
DOORGAMES   0/2053
DOS_INTERNET   0/196
duplikat   6002
ECHOLIST   0/18295
EC_SUPPORT   0/318
ELECTRONICS   0/359
ELEKTRONIK.GER   1534
ENET.LINGUISTIC   0/13
ENET.POLITICS   0/4
ENET.SOFT   0/11701
ENET.SYSOP   33888
ENET.TALKS   0/32
ENGLISH_TUTOR   0/2000
EVOLUTION   0/1335
FDECHO   0/217
FDN_ANNOUNCE   0/7068
FIDONEWS   24094
FIDONEWS_OLD1   0/49742
FIDONEWS_OLD2   0/35949
FIDONEWS_OLD3   0/30874
FIDONEWS_OLD4   0/37224
FIDO_SYSOP   12852
FIDO_UTIL   0/180
FILEFIND   0/209
FILEGATE   0/212
FILM   0/18
FNEWS_PUBLISH   4393
FN_SYSOP   41678
FN_SYSOP_OLD1   71952
FTP_FIDO   0/2
FTSC_PUBLIC   0/13598
FUNNY   0/4886
GENEALOGY.EUR   0/71
GET_INFO   105
GOLDED   0/408
HAM   0/16069
HOLYSMOKE   0/6791
HOT_SITES   0/1
HTMLEDIT   0/71
HUB203   466
HUB_100   264
HUB_400   39
HUMOR   0/29
IC   0/2851
INTERNET   0/424
INTERUSER   0/3
IP_CONNECT   719
JAMNNTPD   0/233
JAMTLAND   0/47
KATTY_KORNER   0/41
LAN   0/16
LINUX-USER   0/19
LINUXHELP   0/1155
LINUX   0/22090
LINUX_BBS   0/957
mail   18.68
mail_fore_ok   249
MENSA   0/341
MODERATOR   0/102
MONTE   0/992
MOSCOW_OKLAHOMA   0/1245
MUFFIN   0/783
MUSIC   0/321
N203_STAT   924
N203_SYSCHAT   313
NET203   321
NET204   69
NET_DEV   0/10
NORD.ADMIN   0/101
NORD.CHAT   0/2572
NORD.FIDONET   189
NORD.HARDWARE   0/28
NORD.KULTUR   0/114
NORD.PROG   0/32
NORD.SOFTWARE   0/88
NORD.TEKNIK   0/58
NORD   0/453
OCCULT_CHAT   0/93
Möte OSDEBATE, 18996 texter
 lista första sista föregående nästa
Text 8401, 110 rader
Skriven 2005-11-25 08:28:58 av Rich Gauszka (1:379/45)
Ärende: the DATA Act - or how congress f**ks up legislation
===========================================================
From: "Rich Gauszka" <gauszka@hotmail.com>

It looks like our congress critters are trying their best to water down yet
another piece of legislation


http://www.infoworld.com/article/05/11/25/48OPsecadvise_1.html
After the ChoicePoint debacle this year, the U.S. Congress decided to get
involved. Congress was tired of companies not affected by California's law
getting away with not reporting lax security.

Finally, I thought, we will get some accountability.

Unfortunately, it appears highly likely that a weaker federal law -- which
would invalidate stronger state laws like California's -- will be passed. The
Data Accountability and Trust Act, or DATA Act, defangs the primary intent of
the California law and will ensure that the public will rarely be informed when
their personal information has been compromised.

And the House Committee on Energy and Commerce is bragging about this.

Although the law has some new, welcome measures (such as requiring every
covered company to appoint a specific person to be accountable for information
security), it has three big problems:

1. It allows the company that suffers the security breach to determine, alone,
if the breach will result in a significant risk of identity theft. That leaves
foxes guarding the hen house.

2. It invalidates state laws allowing private citizens to sue companies that do
not adequately protect their information, like the California law allows.

3. Enforcement of the law will be left up to the already underbudgeted and
overworked FTC; and it specifically under-funds this initiative by providing
only $1 million in additional monies. Would that even cover the paper costs of
printing press releases about the new act?

The first point basically invalidates the central point of California's law,
and it doesn't make sense from a consumer standpoint. We don't want the very
same people who employed weak security in the first place and allowed our data
to be compromised to be the ones who are trusted to determine if the threat is
serious or not. Heck, if they could have made that determination in the first
place, they wouldn't have had such weak security.

What CEO in his or her right (business) mind would proactively notify consumers
after significant damage has happened? The CEO might even be in danger of
stockholder lawsuits if he or she did proactively warn consumers.

And how would a corporation define a "serious" threat? In corporate accounting,
fraudulent financial statements are not restated unless the previous
misstatement is 5 percent or greater (the materiality rule). Applying that
reasoning to a security breach, if only 4 percent of consumer accounts out of
20 million accounts stolen are used in identity theft, does the company have to
report it?

The DATA Act reminds me of the CAN-SPAM act. When we heard that Congress was
going to make spam illegal, we celebrated. Then, we cried as the true contents
were revealed, and we watched bad politics and corporate influence destroy any
opt-in law that could have done something about the problem.

Like the DATA Act, CAN-SPAM was written to "not overly burden corporations with
undue restraint" and to "prohibit costly and disruptive lawsuits." Politicians
decided to appease corporate interests while making the generally
unknowledgeable public feel as though something was being done about the
problem. Instead, spam has increased since the act's release.

Some proponents of the DATA Act say that requiring consumer announcements every
time consumer information is stolen will result in consumers not paying
attention to the alerts. What a bunch of imaginative crock! I might barely pay
attention when I hear of some company or college I don't belong to being
hacked, but when it's my credit card company, store, or bank, I want to know --
each time, every time.

It's precisely the threat that companies must notify consumers each time that
makes the California law so useful: It finally requires that the CEO and board
of directors pay attention. And, notifying all consumers is costly -- one
survey I read said that notifying customers after a security breach cost
companies about $70 per notification, and that 40 percent of affected customers
at least considered ending their affiliation with the breached company.

The mere fact that 40 percent of affected customers considered ending their
relationship with an entity begs for full disclosure of security breaches.
Forty percent of people, whether it impacted them or not, thought the
information important enough to affect their lives. Congress, are you
listening?

The information provided on the House Committee on Energy and Commerce's Web
site says the following: "The FTC says that over a one-year period, nearly 10
million people had discovered that they were victims of identity theft.
Estimated losses translated into $48 billion for businesses and $5 billion to
consumers." How many of next year's consumers will not by notified if the DATA
Act passes?

Take 15 minutes tonight to e-mail your state representatives about the DATA
Act's shortcomings (H.R. 4127). The poorly written bill was passed along party
lines out of a House Energy and Commerce subcommittee on Nov. 3, and it will
now go on to larger votes in the Energy and Commerce committee, then the House
of Representatives and the Senate.

And there is another option available: as we go to press, the Senate is set to
vote on a similar bill that passed out of subcommittee, the Personal Data
Privacy and Security Act of 2005, S.1332, and the related S.1789 bill. Although
any exceptions supercede state laws, this proposed law has hard and fast rules
over materiality (more than 10,000 personal records compromised), imposes jail
terms for those who willfully neglect to notify affected consumers, and
contains a lot of other very welcome language. It's not perfect, but let's hope
the Senate version is pushed to the House vs. the other way around.

--- BBBS/NT v4.01 Flag-5
 * Origin: Barktopia BBS Site http://HarborWebs.com:8081 (1:379/45)