On Thu, Sep 14, 2017 at 10:31 AM, Jesse 1 Robinson <[email protected]> wrote:
> Thanks for the Draco education. ;-) > > One point I failed to mention is the question of why US companies should > be overwrought by an EU regulation. This is still in the 'opinion' stage, > but it was pointed out at SHARE that the data breach penalty is intended to > protect EU citizens--wherever they might reside. Surely Equifax holds data > on an untold number of EU citizens. That could make the company hugely > liable even though it's a US company. How this might shake out in court is > anybody's guess, but properly encrypting data is surely the best defense. > IMO, encrypting data is a very good defense. Another good defense is hiring competent people rather than inexpensive people and giving them the time to design, code, and test their solutions. I don't have statistics, but many attacks are based on coding errors such as the infamous "SQL Injection" attacks. On the almost hilarious attacks which succeed because "whomever" didn't bother to configure the security on some piece of equipment, and left the administrator credentials as "admin/admin". Of course, the people & time requirements that I mentioned "cost too much" and "delay time to market". Today's world is based on think up something in the morning, design over lunch, create before dinner, ship the next morning. > > . > . > J.O.Skip Robinson > Southern California Edison Company > Electric Dragon Team Paddler > SHARE MVS Program Co-Manager > 323-715-0595 Mobile > 626-543-6132 Office ⇐=== NEW > [email protected] > > -- UNIX was not designed to stop you from doing stupid things, because that would also stop you from doing clever things. -- Doug Gwyn Maranatha! <>< John McKown ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [email protected] with the message: INFO IBM-MAIN
