Embed Size (px)
Citation preview
The great debate: Security vs. Privacy
David Strom@dstrom
ISACA keynoteOctober, 2016
Here is the choice:
Agenda
• Notable privacy failures • Suggested solutions• Scary things from today’s current events• Some key takeaways
Notable failures
This isn’t news
10
How to get arrestedfor your tweets andpay thousands infines
http://strominator.com
http://strominator.com 11
3/11, he Tweeted 10 jokes making fun of the Japanese after the tsunami – AFLAC fired him as their rep
Speaking of vans…
Suggested solutions
• Privacy by design• Can you protect your most sensitive data?• Anonymous vs. private information• Understanding privacy policies of Google et al.
PbyD: 7 point plan
• Be proactive• Do it by default• It is a win-win• Include from the start• End-to-end security very important• Let the sun shine in• Keep it user-centric
Privacy vs. anonymity
Just some of the conditionsWe retain the personal information you provide while your account is in
existence or as needed to provide you services. We may retain your personal information even after you have closed your account if retention is reasonably necessary to comply with our legal obligations, meet regulatory requirements, resolve disputes between Members, prevent fraud and abuse, or enforce this Privacy Policy and our User Agreement. We may retain personal information, for a limited period of time, if requested by law enforcement. We may also disclose your personal information to a third party as part of a sale of the assets of LinkedIn Corporation, a subsidiary, or division, or as the result of a change in control of the company or one of its affiliates, or in preparation for any of these events. Any third party to which we transfers or sells our assets will have the right to continue to use the personal and other information that you provide to us in the manner set out in this Privacy Policy.
Scary things about security and privacy
from the present day
Mother Horrified to Learn Hackers Put Live Feed of Daughters' Bedroom Online
Progressive Insurance’s Snapshot Device
What we use to calculate your Snapshot result:• Hard braking• Amount of time driven• Time and day• Fast or jackrabbit starts• Trip regularity
Vs.
http://strominator.com 71
Good luck and stay safe!
David Strom(314) [email protected]: @dstromhttp://strominator.comSlides available:http://slideshare.net/davidstrom
