-
-
-
BlogInfoSec.com Sponsors
-
BlogInfoSec.com Partners
Tag Archives: Privacy
Are Perceptions About Cloud Security and Availability Overblown … and Wrong?
April 16, 2013 – 6:00 am
–
It appears that the greatest hindrance for organizations to move their applications and data into the cloud is concern about security and availability. While it is arguable whether or not security and privacy risks and system failure rates and durations are greater overall for cloud-based…
Convenience vs. Data Breaches … Avoidance is an Answer
March 26, 2013 – 6:00 am
–
In “If You’re Collecting Our Data, You Ought to Protect It” in the Business Section of The New York Times of February 17, 2013, Natasha Singer describes how a data breach involving the personal nonpublic information of some 40,000 current and former NASA employees was preceded by an…
Review and Critique of Generally Accepted Privacy Principles — Part 3
March 19, 2012 – 6:00 am
–
2.3. The Structure of GAPP Apart from the problem of how to determine the scope of personal information, GAPP faces a further problem concerning how to interpret the overall framework. In database terminology, GAPP may be thought of as a database consisting of two tables: principles and…
Review and Critique of Generally Accepted Privacy Principles — Part 2
March 5, 2012 – 6:00 am
–
2. Critique 2.1. GAPP’s Definition of Privacy GAPP Approach: The AICPA and CICA define privacy as “the rights and obligations of individuals and organizations with respect to the collection, use, retention, disclosure, and disposal of personal information.”[1] Critique: There are four…
Review and Critique of Generally Accepted Privacy Principles (GAPP) — Part 1
February 21, 2012 – 9:00 am
–
1. Overview Service management has ITIL. Quality has ISO 9000. Information security has numerous options, including ISO/IEC 27001, COBIT, and NIST SP 800-53. What about information privacy? Many regulatory and standards organizations have adopted their own frameworks or approaches to information…
