Announcements
Voting is now open!
Members, make your selections in the annual (ISC)² Board of Directors election. Vote Now! Voting is open until Sept. 22.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
denbesten
Community Champion

Data Breach - Terrorist watch list

Apparently, the United States' classified "no-fly list" was inadvertently disclosed via a publicly-accessible server. 

 

Per the article, DHS (Department of Homeland Security) took three weeks post-disclosure to remove Internet access to the server.  

1 Reply
Caute_cautim
Community Champion

Re: Data Breach - Terrorist watch list

@denbesten   Yes, that was an expensive human mistake once again.  Why are they not using Homomorphic encryption, so if such mistakes occur, only authorised people can access it? 

 

Homomorphic Encryption (HE) refers to a special type of encryption technique that allows for computations to be done on encrypted data, without requiring access to a secret (decryption) key. The results of the computations are encrypted, and can be revealed only by the owner of the secret key.

 

https://www.forbes.com/sites/bernardmarr/2019/11/15/what-is-homomorphic-encryption-and-why-is-it-so-...

 

Regards

 

 

Caute-Cautim