Monday, 19 January 2009

Banking Commission's redaction failure.

A long time ago in a land a long way away I wrote a paper for ISSA that is titled "An Investigation into Unintentional Information Leakage through Electronic Publication". Please forgive the youthfulness of the writing, but I think that it is still relavant and should make an interesting read, specially the section on PDF's.

The Banking commission made the one fatal mistake that you can make when trying to redact documents - they left the confidential material in the document - perhaps hidden, but still there. Same applies for office documents (all types, not only Microsoft), emails, anything electronic can reveal a lot if not cleaned and sanitised.

I expect that things like this will always crop up every now and again...

No comments: