[3958] in WWW Security List Archive
Re: Universal Data Cryptography Module V
daemon@ATHENA.MIT.EDU (Bob Izenberg)
Sun Jan 12 18:46:55 1997
To: pelicans@mindspring.com (BeachCruiser)
Date: Sun, 12 Jan 1997 15:41:13 -0600 (CST)
From: "Bob Izenberg" <bei@austin.sig.net>
Cc: jwp@chem.ucsd.edu, CDAVIDSO@is.nmh.nmh.org,
btherl@ariel.ucs.unimelb.edu.au, www-security@ns2.rutgers.edu
Reply-To: bei@austin.sig.net
In-Reply-To: <v01540b00aefd0e849b14@[207.69.170.10]> from "BeachCruiser" at Jan 11, 97 09:55:50 am
Errors-To: owner-www-security@ns2.rutgers.edu
BeachCruiser wrote:
# I have no idea who you are or anything about you, but take it to the
# bank...if I had some obsessive need to know it I could have a complete
# lifestyle and financial profile on you within four hours, and do it all
# legally.
Well, what do those credit report requests often say? That you're
making the request as part of a legitimate credit transaction. Where
is the proposed financial relationship between you and those whom
you're researching?
If information is inadequately protected, so that anyone can lie a
little and snoop into someone else's personal information, that is
no reason to give up on securing personal data. I'd call it a reason
to secure it more fully, so that casual snoopers / vindictive
individuals / out-right criminals have a harder time of it.
Prove your argument to us by posting the number and expiration
date of a valid credit card number in your name here. That'll
be in your financials as well, and so, by your argument, without
value. Surely no one would use your credit card number in a
manner other than that for which it is intended?
Bob
--
================= "We make the Net work." =================
bob izenberg phone: +1 (512) 306-0700
sig.net network operations bei@sig.net
=============================================================
