Rechercher
Contactez-nous Suivez-nous sur Twitter En francais English Language
 

Freely subscribe to our NEWSLETTER

Newsletter FR

Newsletter EN

Vulnérabilités

Unsubscribe

Credant says MoD laptop theft highlights dangers of lax crypto security

December 2009 by Credant Technologies

Weekend reports that the Ministry of Defence is investigating the
theft of a laptop - together with a security key used to decode the
data on the notebook - is jawdropping in its apparent lack of common sense, says
Credant Technologies, says Credant Technologies.

"It’s one thing to have excellent encryption on a laptop, but it’s
entirely another to have the security key - presumably a USB stick or
similar - located along with the machine," said Sean Glynn, the endpoint security specialist’s product manager.

"This smacks of lax security on a scale that is breathtaking in its
crassness. There is little or no point in having encryption on a
portable device if the authentication key is stored with the machine,"
he added.

According to Glynn, this is the encryption equivalent of leaving
yellow sticky notes detailing user passwords on the edge of a PC monitor, and then wondering why
the machine’s security is compromised.

Even if the computer is stored in a highly secure building, as appears
to have been the case with the MoD laptop, there is still every chance
that the machine can go walkabout, as rogue employees are rapidly
becoming just as much a threat to the data of organisations as
external hackers and malware, he explained.

Credant’s product manager went on to say that the fact that the laptop
was stolen from the MoD’s headquarters in Whitehall, and appears to be
one of several similar thefts from the building is extremely
disappointing.

"If the MoD can’t vet its own staff and stop these thefts happening -
and also fail to implement an understanding of why and how security
systems operate in its staff - then what hope is there for civilian
organisations?," he said.

"To say I’m gobsmacked is an understatement. This is one of the worst
lapses in government security since the infamous loss of the two child
benefit disks containing the records of millions of UK citizens in
late 2007 (http://bit.ly/8kyOhm)," he added.


See previous articles

    

See next articles


Your podcast Here

New, you can have your Podcast here. Contact us for more information ask:
Marc Brami
Phone: +33 1 40 92 05 55
Mail: ipsimp@free.fr

All new podcasts