Schneier: Fight for Privacy Or Kiss it Good-Bye

If the public wants online privacy it had better fight now for laws to protect it because businesses won't and individuals don't have the clout, security expert Bruce Schneier told RSA Conference attendees.

By Tim Greene on Tue, March 09, 2010

Network World — If the public wants online privacy it had better fight now for laws to protect it because businesses won't and individuals don't have the clout, security expert Bruce Schneier told RSA Conference attendees.

How to Create a Privacy Policy
Google Buzz: a Privacy Checklist

Facebook's New Privacy Settings: 5 Things You Should Know

The longer information-privacy policies go unset, the more likely it is that they never will be set, says Schneier, an author of books about security and CTO of security consultant BT Counterpane. As young people grow up with broad swaths of information about them in the public domain, they will lose any sense of privacy that older generations have.

And they will have no appreciation that lack of privacy shifts power over their lives from themselves to businesses or governments that do control their information. Laws protecting digital data  that is routinely gathered about people are needed, he says. "The only lever that works is the legal lever," he says. "How can we expect the younger generation to do this when they don't even know the problem?"

As Schneier sees it, the problem is one of balancing control over data to maximize individuals' liberty. If individuals control data about themselves, that gives them liberty. If their information is controlled by the government, they lose liberty and power, he says. "If you give an individual privacy, he gets more power," Schneier says.

Similarly, if government is forced to work in the open and its information is public, that gives the people power over the government. Government secrecy shifts the power balance to government, he says.

Now routine transactions such as credit card payments, paying tolls via transponders and opening social media accounts such as Facebook all generate digital records that are much easier and less expensive to store than to sort and delete, he says. As a result, digital data never dies.

That is very different than what has happened for the rest of human history when fewer records or none at all were kept and after awhile, people forgot details about particular incidents. "We're a species that forgets stuff," he says. "We don't know what it's like to live in a world that never forgets."

Social networking puts more information about individuals in front of the public with the illusion that it is private. But social networks don't try to help preserve privacy, Schneier says, citing U.K. research that found all 43 social networking sites reviewed make privacy control settings difficult to find and to understand. And defaults are almost always set to allow maximum dispersal of data, he says.

Continue Reading

Originally published on www.networkworld.com. Click here to read the original story.

BT

CIO Security Newsletter
Mobile Security ABCs

Get up to speed on mobile security.

Learn More »
Loading...
Most Recent Security Stories
White Papers »
Email on Cruise Control
Managing the security and availability of email is complex. This paper will discuss the wide variety of challenges associated with email security and availability and illustrate how integral email is to the operations of any organization.
Top Ten Web Threats
Based on a survey of 273 IT managers, we reveal the top ten web threats to business and outline a solution that uses MessageLabs Security Safeguard.
Eradicate SPAM & Gain 100% Assurance of Clean Mailboxes
Online spam campaigns have become more sophisticated and precisely targeted. Spammers routinely disseminate millions of fraudulent emails which sap bandwidth and productivity. Learn how a hosted anti-spam service provides multi-layered protection against spam, improves employee productivity and lowers costs.
Users Get Their Say
Users are increasing influencing IT security decisions, according to new research from IDG Research Services, and IT is somewhat ill-prepared to embrace this trend. Workers are flocking to mobile devices and are becoming increasing vocal about the types of devices they want to use in the corporate world.
Discover how Citrix Delivery Center provides an efficient and secure architecture for virtual workforce success.
Discover how Citrix Delivery Center provides an efficient and secure architecture for virtual workforce success.
Read about the top eight criteria you should consider when choosing a server load balancer and how Citrix NetScaler meets those requirements.
Read about the top eight criteria you should consider when choosing a server load balancer and how Citrix NetScaler meets those requirements.
Webcasts »
Survival Guide: Overcoming the Obstacles to Effective Risk Management
This virtual meeting for IT managers and CIOs is based on a new IBM study. Senior Vice Presidents and a Chief Technology Officer provide guidance on business resiliency, security and cloud computing. What steps should you take to achieve a more pro-active, comprehensive approach to risk management?
Escalating Threats and Exploding Social Media are Increasing the Cyber Security Challenge
With almost everything now connected through the Internet, organizations become more vulnerable to cyber intrusion. As a result, cyber security is a senior management issue, not just a technical problem. Join Accenture and Forrester to explore the current global cyber security situation and learn how your organization can adopt a proactive cyber security approach.
The New Normal Imperative: Secure Mobility
The economic downtown has forced many companies to rethink the way they approach IT. CIOs are increasingly being asked how they can drive competitive advantage through technology. Many organizations have recognized that workforce mobility and collaboration are important drivers of increased productivity. These forces are creating a new challenge: the need for dynamic security.

In this webcast, Phil Go, CIO of Barton Malow, discusses how this leading national construction firm is tackling these issues, along with the technology he is adopting to ensure mobile security.
Build a Solid Foundation for Secure Virtualization with RSA
Learn how RSA, the Security Division of EMC helps companies create the intersection of IT operations and Security o...
Simplifying Risk Management: Is Your Company Measuring Up?
Moderated by CSO Publisher, Bob Bragdon, hear from this esteemed panel as they share practical approaches to simpli...
Smarter Virtualization Options
This Webcast discusses the highly scalable, superior IT optimization and workload consolidation that System z deliv...
Newsletter Sign-Up »

Receive the latest news test, reviews and trends on your favorite technology topics

White Papers » All White Papers

Email on Cruise Control

Top Ten Web Threats

Eradicate SPAM & Gain 100% Assurance of Clean Mailboxes

Users Get Their Say

Delivering IT to the Virtual Workforce

Eight Criteria for Server Load Balancing

Out with the old, in with the 'new normal'

Case Study: Independent Bank

Forrester Research: Know your Facts: Understanding The Realities Of Desktop And Application virtualization

Windows 7 Migration Made Easier with Desktop Virtualization

Citrix XenDesktop: The Clear Choice for Desktop Virtualization

Guide to Workforce Continuity Through Virtualization

Virtualization 2.0: The Desktop Revolution

Supercharge your end users with desktop virtualization

Employee Web Use and Misuse

Aberdeen Brief Web Security in the Cloud

Addressing the Complexities of Remote Data Protection

The Extended Enterprise: Manage Complexity, Cost and Compliance

Five Network Security Threats and How to Protect Your Business

Mobile Security: The Essential Ingredient for Today's Enterprise
Resource Center
buy a link »
Ads by TechWords