[clug] Cut a file in place.
Andrew Janke
a.janke at gmail.com
Wed Sep 18 06:14:29 UTC 2019
> > The data is PII, I'm not putting it anywhere else, even if
> > encrypted.
>
> Interesting. Do you not think robust crypto is trustworthy enough for
> personally identifiable information on a third party server?
I think robust crypto is better than a platform choice.
> Not a dig, I'm genuinely curious. You'll no doubt be using crypt when
> transferring the file; would it be less trustworthy if you put that data
> on a third party server with similar strength encryption.
There is however policy. So, I'll caveat that my statement above
applies to now. If I put my encrypted file on something now it's safe,
but the question is will it be safe in 15 years time? Crypto from 15
years ago is in some cases now a computable problem. So, the question
isn't one of technological merit, it's about if your organisation will
have your back should something go wrong.
Same applies in many fields even when you don't apply the crypt bit.
For example if I have the "de-identified" data of your genetic
sequence, right now I can't identify you from it. I'd know if you are
M/F, ethnic origins, and perhaps a few indicators of susceptibility to
various diseases, but could I identify you? Probably not. Could I in
10 years time? maybe. It's a continuing quandary and moving ethical
position/debate. Thus, when unsure, stick with policy!
a
More information about the linux
mailing list