e-nsecure.net blog - Comments on IT security and Privacy or the lack thereof.
Rat's Blog -The Reverend Rat writes about London street life and technology
Duncan Drury - wired adventures in Tanzania & London
Dr. K's blog - Hacker, Author, Musician, Philosopher
David Mery - falsely arrested on the London Tube - you could be next.
James Hammerton
White Rose - a thorn in the side of Big Brother
Big Blunkett
Into The Machine - formerly "David Blunkett is an Arse" by Charlie Williams and Scribe
infinite ideas machine - Phil Booth
Louise Ferguson - City of Bits
Chris Lightfoot
Oblomovka - Danny O'Brien
Liberty Central
dropsafe - Alec Muffett
The Identity Corner - Stefan Brands
Kim Cameron - Microsoft's Identity Architect
Schneier on Security - Bruce Schneier
Politics of Privacy Blog - Andreas Busch
solarider blog
Richard Allan - former Liberal Democrat MP for Sheffield Hallam
Boris Johnson Conservative MP for Henley
Craig Murray - former UK Ambassador to Uzbekistan, "outsourced torture" whistleblower
Howard Rheingold - SmartMobs
Global Guerrillas - John Robb
Roland Piquepaille's Technology Trends
Vmyths - debunking computer security hype
Nick Leaton - Random Ramblings
The Periscope - Companion weblog to Euro-correspondent.com journalist network.
The Practical Nomad Blog Edward Hasbrouck on Privacy and Travel
Policeman's Blog
World Weary Detective
Martin Stabe
Longrider
B2fxxx - Ray Corrigan
Matt Sellers
Grits for Breakfast - Scott Henson in Texas
The Green Ribbon - Tom Griffin
Guido Fawkes blog - Parliamentary plots, rumours and conspiracy.
The Last Ditch - Tom Paine
Murky.org
The (e)State of Tim - Tim Hicks
Ilkley Against CCTV
Tim Worstall
Bill's Comment Page - Bill Cameron
The Society of Qualified Archivists
The Streeb-Greebling Diaries - Bob Mottram
Your Right To Know - Heather Brooke - Freedom off Information campaigning journalist
Ministry of Truth _ Unity's V for Vendetta styled blog.
Bloggerheads - Tim Ireland
W. David Stephenson blogs on homeland security et al.
EUrophobia - Nosemonkey
Blogzilla - Ian Brown
BlairWatch - Chronicling the demise of the New Labour Project
dreamfish - Robert Longstaff
Informaticopia - Rod Ward
War-on-Freedom
The Musings of Harry
Chicken Yoghurt - Justin McKeating
The Red Tape Chronicles - Bob Sullivan MSNBC
Campaign Against the Legislative and Regulatory Reform Bill
Stop the Legislative and Regulatory Reform Bill
Rob Wilton's esoterica
panGloss - Innovation, Technology and the Law
Arch Rights - Action on Rights for Children blog
Database Masterclass - frequently asked questions and answers about the several centralised national databases of children in the UK.
Shaphan
Moving On
Steve Moxon blog - former Home Office whistleblower and author.
Al-Muhajabah's Sundries - anglophile blog
Architectures of Control in Design - Dan Lockton
rabenhorst - Kai Billen
(mostly in German)
Nearly Perfect Privacy - Tiffany and Morpheus
Iain Dale's Diary - a popular Conservative political blog
Brit Watch - Public Surveillance in the UK - Web - Email - Databases - CCTV - Telephony - RFID - Banking - DNA
BLOGDIAL
MySecured.com - smart mobile phone forensics, information security, computer security and digital forensics by a couple of Australian researchers
Ralph Bendrath
Financial Cryptography - Ian Grigg et al.
UK Liberty - A blog on issues relating to liberty in the UK
Big Brother State - "a small act of resistance" to the "sustained and systematic attack on our personal freedom, privacy and legal system"
HosReport - "Crisis. Conspiraciones. Enigmas. Conflictos. Espionaje." - Carlos Eduardo Hos (in Spanish)
"Give 'em hell Pike!" - Frank Fisher
Corruption-free Anguilla - Good Governance and Corruption in Public Office Issues in the British Overseas Territory of Anguilla in the West Indies - Don Mitchell CBE QC
geeklawyer - intellectual property, civil liberties and the legal system
PJC Journal - I am not a number, I am a free Man - The Prisoner
Charlie's Diary - Charlie Stross
The Caucus House - blog of the Chicago International Model United Nations
Famous for 15 Megapixels
Postman Patel
The 4th Bomb: Tavistock Sq Daniel's 7:7 Revelations - Daniel Obachike
OurKingdom - part of OpenDemocracy - " will discuss Britain’s nations, institutions, constitution, administration, liberties, justice, peoples and media and their principles, identity and character"
Beau Bo D'Or blog by an increasingly famous digital political cartoonist.
Between Both Worlds - "Thoughts & Ideas that Reflect the Concerns of Our Conscious Evolution" - Kingsley Dennis
Bloggerheads: The Alisher Usmanov Affair - the rich Uzbek businessman and his shyster lawyers Schillings really made a huge counterproductive error in trying to censor the blogs of Tim Ireland, of all people.
Matt Wardman political blog analysis
Henry Porter on Liberty - a leading mainstream media commentator and opinion former who is doing more than most to help preserve our freedom and liberty.
HMRC is shite - "dedicated to the taxpayers of Britain, and the employees of the HMRC, who have to endure the monumental shambles that is Her Majesty's Revenue and Customs (HMRC)."
Head of Legal - Carl Gardner a former legal advisor to the Government
The Landed Underclass - Voice of the Banana Republic of Great Britain
Henrik Alexandersson - Swedish blogger threatened with censorship by the Försvarets Radioanstalt (FRA), the Swedish National Defence Radio Establishement, their equivalent of the UK GCHQ or the US NSA.
World's First Fascist Democracy - blog with link to a Google map - "This map is an attempt to take a UK wide, geographical view, of both the public and the personal effect of State sponsored fear and distrust as seen through the twisted technological lens of petty officials and would be bureaucrats nationwide."
Blogoir - Charles Crawford - former UK Ambassodor to Poland etc.
No CCTV - The Campaign against CCTV
Barcode Nation - keeping two eyes on the database state.
Lords of the Blog - group blog by half a dozen or so Peers sitting in the House of Lords.
notes from the ubiquitous surveillance society - blog by Dr. David Murakami Wood, editor of the online academic journal Surveillance and Society
Justin Wylie's political blog
Panopticon blog - by Timothy Pitt-Payne and Anya Proops. Timothy Pitt-Payne is probably the leading legal expert on the UK's Freedom of Information Act law, often appearing on behlaf of the Information Commissioner's Office at the Information Tribunal.
Armed and Dangerous - Sex, software, politics, and firearms. Life’s simple pleasures… - by Open Source Software advocate Eric S. Raymond.
Georgetown Security Law Brief - group blog by the Georgetown Law Center on National Security and the Law , at Georgtown University, Washington D.C, USA.
Big Brother Watch - well connected with the mainstream media, this is a campaign blog by the TaxPayersAlliance, which thankfully does not seem to have spawned Yet Another Campaign Organisation as many Civil Liberties groups had feared.
Spy on Moseley - "Sparkbrook, Springfield, Washwood Heath and Bordesley Green. An MI5 Intelligence-gathering operation to spy on Muslim communities in Birmingham is taking liberties in every sense" - about 150 ANPR CCTV cameras funded by Home Office via the secretive Terrorism and Allied Matters (TAM) section of ACPO.
FitWatch blog - keeps an eye on the activities of some of the controversial Police Forward Intelligence Teams, who supposedly only target "known troublemakers" for photo and video surveillance, at otherwise legal, peaceful protests and demonstrations.
The BBC report that this happened "in late November"
http://news.bbc.co.uk/1/hi/uk/8409363.stm
Why is it not obvious to "senior military officers" etc.that storing the de-cryption key /device / passphrase etc. physically with the supposedly encrypted laptop computer, so that they can both be lost or stolen together, is a breach of common sense, let alone of the Standard Operating Procedures and their Orders.
Will there be a criminal prosecution under the Official Secrets Act 1989 section 8 Safeguarding of information ?
See Official Secrets Act prosecutions and media spin - Richard Jackson has been treated more leniently than Corporal Daniel James
and this lot want us to surrender our DNA profile, allow a load of Government fuckwits to survey our personal communications, access our bank details, survey us for our dog shitting in the street and have all our medical details available on-line in their "safe" network. Oh I forgot we also need an ID card.
Safe, it is like putting all the nation's gold, the bits that Gorgon hasn't given away, in a plexiglass safe in Trafalgar Square sealed with a 1950s yale lock and a key available anywhere in the High Street.
You could not make this up.
The biggest threat to our security and personal identity is our own government and security services.
The MOD, and especially RAF officers, are remarkably good at "losing" laptops. I take these reports with a pinch of salt and assume intelligence are hoping to spread some disinformation. On the other hand, given laxity of handling IT, anything is possible these days and it is possible that this report is true, and if so it's astonishing. Did someone say NO2ID?
Find out how to reduce data security breaches from human error...
Join us for 'Human Factors in Information Security', 22-24 February 2010, Church house Conference Centre, Westminster, London.
Speakers:
We are pleased to welcome the following speakers to the 2010 conference;
KEYNOTE SPEAKERS
Joseph A. DiVanna, Maris Strategies Ltd
Julia Graham, Chief Risk Officer, DLA Piper UK LLP
Nick Haycock, Information Security & Assurance, The Cabinet Office
David Smith, The Deputy Information Commissioner-Head of Personnel Security and Behavioural Assessment, Centre for the Protection of National Infrastructure
INVITED SPEAKERS
William Beer, Director, PwC OneSecurity
Eyal Ben Cohen, Verifle Ltd
Jeff Brooker, Head of Security & Business Continuity, HMRC
David Chernick, KPMG Forensic
Lizzie Coles-Kemp, Information Security Group, Royal Holloway, University of London
Peter French, SSR Personnel
Steven Furnell, Professor of Information Systems Security, Centre for Information Security & Network Research, University of Plymouth
Sarah Garrett, Senior Manager Information Security, Nationwide
Martin Gill, Perpetuity Research and Consultancy International
Mark Hughes, Group Security Director, BT
Gordon Irving, Director of Group Security, ScottishPower
David King, Chair of the Information Security Awareness Forum (ISAF); Joint Deputy Chair of the ISSA-UK Advisory Board
Marjolein Kruithof, Group Security Awareness Advisor, Vodafone
David Lacey, Author and Director of Research, ISSA-UK
Mark Logsdon, Lead Information Risk Manager, Barclays
Craig Lunnon, Senior Manager HR Services, PricewaterhouseCoopers
Bernadette Palmer, Communications Specialist, The Security Company
(International) Ltd.
Angela Sasse, Professor of Human-Centred Technology and Head of the Information Security Group, University College London
Sarah Sharples, University of Nottingham
Andrew Strong, Global Security Director, Unilever Philip Virgo, EURIM
Who should attend?
This conference aims to bring together people from the corporate, governmental and academic sectors:
Senior Information Risk Owners (SIROs)
Chief Information Officers/Chief Technology Officers
Chief Security Officers
Chief Information Security Officers
Senior business managers/decision makers
Researchers
Technical specialists
Security course managers/department heads
Heads of information assurance & security
Chief Procurement Officers
VPs, heads, directors, managers of: compliance; fraud; e-commerce; privacy; governance; facilities; HR; communications; facility; audit; data protection; disaster recovery; IT manufacturers and suppliers; IT security products vendors; IT security services providers; consultancies
Find out more at www.humanfactorsinsecurity.com
This doesn't surprise me one bit! And I agree with a previous comment that this makes me worried about handing over my personal information! Nice blog!
Kelly Rogers: sorry, corrected due to errors!
The following is meant respectfully. The standard of non-computer let alone computer-related systems and information handling and security have gone down. I get tired of regularly seeing examples of lack of security, including those which would have not existed 20 years ago when customers, consumers and citizens were generally respected more and internal audits apparently were more thorough.
Where are the internal and systems audits, let alone security audits now? Consumers as well as companies and governments are putting people and businesses at risk, and sometimes wrecklessly.
I am tired of noticing situations where internal fraud or corruption are too easy or even encouraged by laws, policies or everyday practices. Where are the old-fashioned checks and balances and procedures?
Trying to report any obvious gaps or potential risks is a nightmare. People can get fired unfairly. The messenger is often treated as a risk (for a frivilous lawsuit or bad publicity) and/or punished just for trying to do the honourable thing. Employees likewise. Corporations and government departments are also sometimes hard to navigate. What if people don't have the time, money, energy or patience to report something? What if they have privacy issues? Try trying to get hold of someone appropriate to report some obvious or possibly damaging security gap (safety or financial) without accidentally informing/advertising to employees of the organisation the details of the risk (ie the one reporting the potential problem is sincerely trying to not potentially increase internal fraud or risk in the process of reporting said gap or potential gap). Also, the level of training of employees and managers seems to be generally low. Mentioning an apparent security gap (even an obvious one) to a manager is often met with scoffing, disbelief or an obvious naiveness including re basic business and auditing principles, let alone a sense of duty of care or respect towards the customer. Since when did the customer or citizen become a pre-criminal, yet some of business and government is allowed to behave as if the "pre-criminal-watchers" (including bank tellers, communications customer service personnel, officials and the like) are treated as incorruptible and to be trusted 100% and so old-fashioned procedures need not be put in place. As if we are a society of perfect watchers and the pre-criminal watched! Why is it often hard to get hold of managers or techies who are able to understand the details of a potential or real security gap reported to them (ie why that could be a problem) and investigate to see if there is indeed a problem, or investigate and stop genuine incidents of internal or external fraud, hacking or security breaches against customers or citizens when they really do happen? Why is the standard of analysis seomtimes low ie reasoning between different scenarios? Why do things get covered up or ignored so often? Why do some systems and/or procedures appear to allow or even encourage breaches and their cover-ups? I am tired of observing situations which put people, businesses and their data at obvious risk. Why are systems in general often putting consumers at risk and in a way which increases the likelihood of internal fraud or abuse of power or data, whether internal or external? Why don't all the experts and leaders realise that data is not necessary true and other such basic truths?
I also notice that individuals and data about them, let alone protecting them and reducing easily avoidable risk or risk to an acceptable level, often do not appear to be a high priority for some. But we are all individuals and customers. Harm a customer or citizen and you harm yourself.
What has happened to the general duty of care implicit in any dealings with government or business, let alone loving our neighbour as ourselves? Is short-term profit or security-for-a-few-at-the-cost-of-the-rest-especially-if-they-are-deemed-low-value-individuals acceptable?
Again, I mean all this respectfully. If I am not tactful enough I apologise. We everyday people may not be important but we do notice things which the movers and shakers are not mentioning enough let alone fixing. I hope that your and other forums for discussion will remember that you can't protect a country, business or community if you don't care for or protect the individual. The important have employees. If you don't value the privacy of the cleaner, you put their boss at risk. Also, when I and some others criticise in spite of the not infrequent stress for doing so, it is because we care for people, business and country, not because we enjoy the criticism (or the payback). Again, this was meant respectfully. If anyone takes offence, it was not intended to offend, security can't be an easy business, and I sincerely wish you a Merry Christmas and a Happy New Year.
webmaster - please feel free to delete my prior uncorrected comment should you so choose and Merry Christmas and a Happy New Year to you and all your readers!
@ anonymous on December 18, 2009 12:20 AM :
"I am tired of noticing situations where internal fraud or corruption are too easy or even encouraged by laws, policies or everyday practices. Where are the old-fashioned checks and balances and procedures?"
See here http://news.bbc.co.uk/1/hi/england/london/8192964.stm