The UK has seen a couple of odd cases of "data loss" lately. Government organisations have on at least 4 occasions lost data about UK citizens: names, birth dates, addresses, bank account details and even some hospital records. Some data was lost by subcontractors and one of those subcontractors was even in the US!
Things like this have not happened in other countries, yet, or maybe they were not made public. But they make me wonder: can I trust my country or my government know what they do with the data they collect from me?
As Jan Schallaböck of the German ULD suggested in a talk at 23C3: DRM might be the solution.
If whenever I hand personal data over to anybody, I could at the same time specify who should be able to use that data, and for how long, I would not be affected by data losses at all.
Of course, it is not that simple.
For this to work, there has to be some standard for "DRM-protected personal data". The different government branches who need my data would have to use software that can handle this standard format-to-be. And I would need some software on my end that would enable me to apply DRM to my data before I send it off.
Maybe it's another "egg or hen" situation as no government will buy software as long as nobody sends them DRM-protected data. And as long as they cannot read it, I am forced to send my data in plain format.
I would love to have a tool that enables me to send my data off with DRM enabled. I guess I would need to parts: one tool that does the "signing" of my content, and a second one that acts as a server and "watches" how my data is used, or enables some people or organisms to actually use the data. The latter one would also render the data unreadable whenever I want.
Of all the software I won't write, this is by far the most important. If anyone knows of a project - preferrably open source - then let me know! I'd absolutely participate.
Traversée du désert
5 years ago
Posts
No comments:
Post a Comment