[AusNOG] census issues tonight
Glenn Hocking
glenn.hocking at woosaw.com
Wed Aug 10 10:53:35 EST 2016
Stored data is never safe. If Australian Border Security can be infiltrated by criminal gangs as
recently disclosed in the media even with their stringent personnel checks then I would presume IT
companies are easy to infiltrate and have someone walk out with a USB disks with supposedly
'private' data on it. Were any of the IT personnel involved in the census including
hardware/network/software vendors checked?
Years ago I had a flatmate that did a lot of university courses. Turns out he was sending copies of
all the course papers and exams etc back to his home country..... He was a very intelligent and nice
guy. Who would have thought...
Cheers
Glenn Hocking | Managing Director
Woosaw Pty Ltd | www.woosaw.com.au
Sydney Office: +612 8090 3441 | Mobile: 0420 942 641
PO Box 391 │ Pyrmont NSW 2009 | Australia
On 10/08/2016 10:44 AM, Robert Hudson wrote:
> Why is it safe to say that the stored data is OK? What evidence do we have to support that belief?
>
>
> On 10 Aug 2016 9:52 AM, "Michael Keating" <mkeating44 at gmail.com <mailto:mkeating44 at gmail.com>> wrote:
>
> I think the point being made, was that the distrust of the Census has been increased with the
> failure of the website, and the mainstream media taking the 'hacking' angle. It's safe to say
> the stored data is ok, but there are millions more submissions to go. If people think it was
> 'hacked', they won't give a truthful answer for fear of their information being stolen (which we
> know, it won't). More of a general observation than a technical observation (which I do agree with).
>
> On Wed, Aug 10, 2016 at 9:26 AM, Mark Andrews <marka at isc.org <mailto:marka at isc.org>> wrote:
>
>
> In message <c7617127-36a9-f5dc-894e-727a6700e016 at spectrum.com.au
> <mailto:c7617127-36a9-f5dc-894e-727a6700e016 at spectrum.com.au>>, Matt Perkins writes:
> > If you ask me the dataset is now terminally compromised. This is
> > essentially market research and peoples ability to answer that sort of
> > stuff truthfully goes to how much the person doing the servery is
> > trusted. With the ABS spouting stuff like Attack from overseas, people
> > are very unlikely to tell the truth on this census.
> >
> > Fellas you blew it. Cancel the census reschedule for next year and send
> > out paper form's Your collective uselessness just put us back 5 years.
> >
> > Matt
>
> A DoS attack does not make the dataset compromised.
>
> Having too small key space does. 1/100000 is not a big space for
> computers to search through. It's only ~20 bits of security. A
> extra 4 digits would have raised it to ~30 bits. A extra 8 digits
> would have raised it to ~43 bits. Entering 5 x 4 digit sequences
> is not hard. We do 4 x 4 + 3 for every visa / mastercard transaction
> we do online today.
>
> Mark
> --
> Mark Andrews, ISC
> 1 Seymour St., Dundas Valley, NSW 2117, Australia
> PHONE: +61 2 9871 4742 <tel:%2B61%202%209871%204742> INTERNET: marka at isc.org
> <mailto:marka at isc.org>
> _______________________________________________
> AusNOG mailing list
> AusNOG at lists.ausnog.net <mailto:AusNOG at lists.ausnog.net>
> http://lists.ausnog.net/mailman/listinfo/ausnog
> <http://lists.ausnog.net/mailman/listinfo/ausnog>
>
>
>
> _______________________________________________
> AusNOG mailing list
> AusNOG at lists.ausnog.net <mailto:AusNOG at lists.ausnog.net>
> http://lists.ausnog.net/mailman/listinfo/ausnog <http://lists.ausnog.net/mailman/listinfo/ausnog>
>
> !DSPAM:1,57aa78fd61521038116254!
>
>
> _______________________________________________
> AusNOG mailing list
> AusNOG at lists.ausnog.net
> http://lists.ausnog.net/mailman/listinfo/ausnog
>
>
> !DSPAM:1,57aa78fd61521038116254!
>
More information about the AusNOG
mailing list