今天早上,“社交网络”社区正在以Facebook的服务重组条款嗡嗡作响。但是,任何社交网站的用户都必须意识到,“信息生命周期”的潜在危险。正如比尔·布伦纳(Bill Brenner)在他的网络世界有个足球雷竞技app文章中写的那样“在Facebook中拍打:暴露的社交网络危险”通过信息工程攻击以及其他威胁,对存在的个人信息安全有重大威胁。今天,我们正在研究我所谓的信息生命周期的被低估的力量。该原则很简单,无论公开发布什么信息,甚至私下,是任何第三方的永久档案和未来使用的公平游戏。今天,在21世纪,我们从字面上成为了“全部份额”社会,对个人身份和私人细节的担忧已经消失了。我在2005年写了一篇文章,当时Facebook仍处于起步阶段,并想包括一些自那以后变得更加明显的想法:
让我们从这里开始。您可以从家用计算机登录到Facebook。立即,Facebook在其数据库中有一个记录,确切地登录了谁,什么时间和从哪里登录。这并不少见 - 大多数网站确实跟踪了这一点,例如Hotmail。从法律上讲,甚至可能需要他们这样做。现在,真正的危险开始出现。您浏览的每个Facebook页面,您发送的每个个人消息,每张戳戳,上传,标记的每张照片...都与您的身份绑在一起。在平均10分钟的Facebook会话中,关系数据库中可能会创建数百行,您绝对无法控制。没有任何。您无法控制数据如何存储,存储的位置,如何复制,存档,运输甚至出售给他人。 Think of all the information stored in your Facebook profile. -Full name -Address -Birthday -Phone Numbers -Email Addresses -Gender -Sexual Orientation -Locational history (e.g. where you went to high school) ...and the list goes on. In any information security operation, the rule is this: expose any two critical pieces of a value (a person), and you have a serious threat against that value's identity. From my view, it isn't the "live" information that poses a threat. You and I could simply change our birthdays to something fake, or remove our phone numbers or addresses, right? If it were only that simple... Every piece of information that you have ever entered into Facebook, whether you've removed it, changed it, or even deleted your account, is potentially still there. It's in the same relational database it always has been, sitting right next to your current or "live-set" information. However, a simple boolean flag defines whether the data is actively displayed or not. But it's OK because Facebook has privacy controls, right? Only certain friends can see certain things? Sure, but we're forgetting about the bigger problem. It's the fact that we're trusting our lives, our identities, everything we've ever written, said, or clicked on within Facebook, is sitting somewhere in a database that may not have adequate protection against malicious hackers, data mining bots, rootkits... and the list goes on. So you ask, isn't our information already out there, with credit card companies, Amazon.com, and other sites and companies databases? Sure it is. However, there's one huge difference. These companies run well-funded, well-executed, and highly-monitored information assurance and security operations that employ thousands of people to protect our information. They have a responsibility to maintain with the customer - if they fail, they lose paying customers. Facebook doesn't generate revenue off of its users, so they aren't going to lose "paying customers" if a pool of databases is exposed. What's the incentive?您是否认为今天的年轻人赞赏信息的生命周期?他们了解它的永久性?为什么或者为什么不?