[WEB SECURITY] another good guy is charged
Martin O'Neal
martin.oneal at corsaire.com
Thu Apr 27 09:21:23 EDT 2006
Hiya,
> If i leave my car unlocked and it gets stolen then the
> person stealing the car has been bad and iI have been
> stupid.
> If i leave my car unlocked and i have left your medical
> case record sitting in full view on the passenger seat
> and you then notice this when walking by, why shouldn't
> you have the right to complain.
However the subtle variations on the second scenario are where the gray
areas occur:
If you have to enter the unlocked car to discover your records...
If you have to break into the car to discover your records...
If there was a design flaw in the car locks that you only knew about
because you worked for the manufacturer...
If you only knew about the records because you were the doctors
colleague...
Etc...
If an institution breaks the law, then it should be liable. If an
individual breaks the law, then they should be liable. In this
scenario, the two things do not have to be dependent, and do not have to
be mutually exclusive.
Having said all that, I know nothing of the Eric's case, and this isn't
comment on his particular circumstances.
Martin...
---------------------------------------------------------------------
The Web Security Mailing List
http://www.webappsec.org/lists/websecurity/
The Web Security Mailing List Archives
http://www.webappsec.org/lists/websecurity/archive/
More information about the websecurity
mailing list