SECURITY

摘要

If you think you can't be the next ChoicePoint or BoA, think again. Don't buy into every bit of vendor hype about compliance-driven products. The writing is on the wall: Organizations and individuals will be held accountable for security breaches. The rash of exposures of personally identifiable information (PII) from the likes of ChoicePoint, Lexis-Nexis, Bank of America, CardSystems and a host of other for-profit and nonprofit organizations is just the beginning. Luckily for consumers, state and federal lawmakers are introducing regulations that require exposures to be reported. Someone's head is going to roll; don't let it be yours. The cause of data loss, however, varies by case. The common exposures are lost or stolen hardware and backup tapes, insider abuse and weak application development leading to exploited security holes and inadvertent exposures.