Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://infosec.exchange/users/SteveBellovin/statuses/114308854802931253">Steve Bellovin (stevebellovin@infosec.exchange)'s status on Thursday, 10-Apr-2025 01:11:52 JST</a><a href="https://infosec.exchange/@SteveBellovin" title="stevebellovin@infosec.exchange"><img src="https://gnusocial.jp/avatar/297340-48-20241117214354.webp" width="48" height="48" alt="Steve Bellovin" style="position: absolute; left: 0; top: 0;">Steve Bellovin</a></section><article><p>Worth noting: combining different databases is generally regarded as the single most dangerous thing to do from a privacy perspective. Here's what Paul Ohm wrote a few years ago (<a href="https://hbr.org/2012/08/dont-build-a-database-of-ruin" rel="nofollow">https://hbr.org/2012/08/dont-build-a-database-of-ruin</a>):</p><p>In my work, I’ve argued that these databases will grow to connect every individual to at least one closely guarded secret. This might be a secret about a medical condition, family history, or personal preference. It is a secret that, if revealed, would cause more than embarrassment or shame; it would lead to serious, concrete, devastating harm. And these companies are combining their data stores, which will give rise to a single, massive database. I call this the Database of Ruin.<br><a href="https://flipboard.com/@newyorktimes/the-upshot-imovb8bqz/-/a-pvsZrW8uTLKxDaAmALYvXw%3Aa%3A3195393-%2F0" rel="nofollow">https://flipboard.com/@newyorktimes/the-upshot-imovb8bqz/-/a-pvsZrW8uTLKxDaAmALYvXw%3Aa%3A3195393-%2F0</a></p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/4869283#notice-9537199">In conversation</a><time datetime="2025-04-10T01:11:52+09:00" title="Thursday, 10-Apr-2025 01:11:52 JST">about 18 days ago</time> <span>from <span><a href="https://infosec.exchange/@SteveBellovin/114308854802931253" rel="external" title="Sent from infosec.exchange via ActivityPub">infosec.exchange</a></span></span><a href="https://infosec.exchange/@SteveBellovin/114308854802931253">permalink</a><h4>Attachments</h4><ol><li><label><a rel="external" href="https://gnusocial.jp/attachment/4439467">Untitled attachment</a></label><br></li><li><article><header><div>Domain not in remote thumbnail source whitelist: ic-cdn.flipboard.com</div><h5><a href="https://flipboard.com/@newyorktimes/the-upshot-imovb8bqz/-/a-pvsZrW8uTLKxDaAmALYvXw%3Aa%3A3195393-%2F0">Trump Wants to Merge Government Data. Here Are 314 Things It Might Know About You. | Flipboard</a></h5><div></div></header><div>The New York Times - Elon Musk’s team is leading an effort to link government databases, to the alarm of privacy and security experts. The federal government knows your mother’s maiden name and your bank account number. The student debt you hold. Your disability status. The company that employs you and the wages you …</div><footer></footer></article></li></ol></footer></blockquote>

Corresponding Notice

Embed this notice
Steve Bellovin (stevebellovin@infosec.exchange)'s status on Thursday, 10-Apr-2025 01:11:52 JST Steve Bellovin
Worth noting: combining different databases is generally regarded as the single most dangerous thing to do from a privacy perspective. Here's what Paul Ohm wrote a few years ago (https://hbr.org/2012/08/dont-build-a-database-of-ruin):
In my work, I’ve argued that these databases will grow to connect every individual to at least one closely guarded secret. This might be a secret about a medical condition, family history, or personal preference. It is a secret that, if revealed, would cause more than embarrassment or shame; it would lead to serious, concrete, devastating harm. And these companies are combining their data stores, which will give rise to a single, massive database. I call this the Database of Ruin.
https://flipboard.com/@newyorktimes/the-upshot-imovb8bqz/-/a-pvsZrW8uTLKxDaAmALYvXw%3Aa%3A3195393-%2F0
In conversationabout 18 days ago from infosec.exchangepermalink
Attachments
1. Untitled attachment
2. Domain not in remote thumbnail source whitelist: ic-cdn.flipboard.com
  Trump Wants to Merge Government Data. Here Are 314 Things It Might Know About You. | Flipboard
  The New York Times - Elon Musk’s team is leading an effort to link government databases, to the alarm of privacy and security experts. The federal government knows your mother’s maiden name and your bank account number. The student debt you hold. Your disability status. The company that employs you and the wages you …

Public

Embed Notice

HTML Code

Corresponding Notice