Cybersecurity Starts in the Boardroom
I quite like the UK government’s Online Safety Bill. It compels the Big Tech companies to take action over child sex abuse material (CSAM) and promises huge fines if they fail to do so. However, the requirement to monitor communication apps with end-to-end encryption (E2EE), for CSAM causes me a …
The deadline for implementing a range of infosec directives, issued by India’s Ministry of Electronics and Information Technology (MeitY) and the Indian Computer Emergency Response Team (CERT-In) has been extended by 90-days. India extends deadline for compliance with IT Directions • The Register InfoSec in Indian now always seems to …
Continue reading “Indian government VPN logging deadline extended”
In many of my posts about privacy and governments and organisations that want to reduce encryption, do away with VPN privacy or just make things easy for law enforcement at the expense of the law abiding citizen’s privacy, I refer to law enforcement using due process. UK judges agree with …
Continue reading “Privacy assured by UK judge as ruling states law enforcement must use due process”
Sorry but the headlines below all contain the obvious biscuit pun! Knowing, explicitly, what an organisation plans to do with your personal data when you access a web site or sign up for an online service is an essential step in maintaining your privacy. Have a look at this article …
Continue reading “UK Government to change the cookie laws – they are too much bother as they are”
Because of the soon to be law, requirements for VPN companies operating in India, to keep full logs of their user’s activities for five years, so India’s Computer Emergency Response Team (CERT-In) and law enforcement can have access to them – so removing the levels of privacy that a VPN …
