Will California law spur storage crypto?
The California state law, which is set to go into effect July 1, 2003, is intended to combat the alarming growth of identity theft. State legislators passed the law following an incident in April 2002 in which hackers gained access to the California state comptrollerís payroll database. After getting past the perimeter security, the hackers easily rummaged through 265,000 employee records, including information such as bank accounts and Social Security numbers. The security breach wasnít discovered for more than a month, and it took another few weeks before the affected employees were notified.
The California SB 1386 legislation requires all state agencies -- as well as all businesses that collect personal information from California customers -- to either promptly disclose security breaches or face severe penalties.
So what does all this have to do with storage? According to the law, encrypted data does not qualify as personal information. That little provision in the law already has vendors of storage security devices and software giddy at the prospect of a booming market for their products.
[ Read more ]
By subscribing to our early morning news update, you will receive a daily digest of the latest security news published on Help Net Security.
With over 500 issues so far, reading our newsletter every Monday morning will keep you up-to-date with security risks out there.