* Posts by Disgusted of Cheltenham

33 posts • joined 15 Mar 2013

UK.gov's Verify has 'significantly' missed every target, groans spending watchdog

Disgusted of Cheltenham

Re: Estonia

The Estonians have kindly provided their service to anyone else who wants it, and in English...

https://e-resident.gov.ee/

On the first day of Christmas, Microsoft gave to me... an emergency out-of-band security patch for IE

Disgusted of Cheltenham

Re: Really?

And how else do you use an employer's system that calls for silverlight?

Cambridge Analytica dismantled for good? Nope: It just changed its name to Emerdata

Disgusted of Cheltenham

Re: Suggestion for a new name

Just Merde.

UK's Department of Fun seeks data strategy head – experience not needed

Disgusted of Cheltenham

Re: a salary of up to £65,535

Surely you would want a bit more?

£12k fine slapped on Postman Pat and his 300,000 spam emails

Disgusted of Cheltenham

Re: Junk confusions

Are you, perhaps, confusing the Post Office and Royal Mail?

US govt staffers use personal gear on work networks, handle biz docs on the reg – study

Disgusted of Cheltenham

Re: Simple but bad explanation

Once upon a time I recall sending any incoming emails with .docx home so I could convert them to .doc or .rtf or something that we could read at the office.

Huawei claims national security is used as plausible excuse for 'protectionism'

Disgusted of Cheltenham

Re: National Security is by definition protectionism

No, NSA don't do drinks at the bar.

How do you explain the completely different UK and US positions on use of Huawei equipment in broadband networks?

Yorkshire cops have begun using on-the-spot fingerprint scanners

Disgusted of Cheltenham

Digital?

The help finding next of kin is an interesting digression, but this whole system only works for those with a criminal record or non-EU immigrants. Any idea what proportion of the population of West Yorkshire that is?

I never carry ID - the grey beard says over 18, but then it's rare to even see police in rural Gloucestershire; What powers are being used to demand it?

NHS OKs offshoring patient data to cloud providers stateside

Disgusted of Cheltenham

No, Sam, GCHQ is not part of MoD

Anyway https://www.gchq.gov.uk/privacy is quite clear

We store your data on secure servers in the Republic of Ireland.

UK.gov slammed for NHS data-sharing deal with Home Office

Disgusted of Cheltenham

Re: Definitely not the Data Guardians of the Galaxy

Explicitly just 'no surprises for the citizen'. Not sure how anyone could be both a citizen and an illegal immigrant.

And then 'choice' includes Hobson's choice.

Comodo CA acquired by Francisco Partners ...

Disgusted of Cheltenham

But then we couldn't pay fines...

Comodo is the trust anchor for

https://penaltynotice.direct.gov.uk/

(If, for some reason, you don't like this, please offer a better suggestion for HMG.)

Computers4Christians miraculously appears on Ubuntu wiki

Disgusted of Cheltenham

Zero days

No, it's on the third day, i.e two days later.

Turnbull's Digital Transformation Office is actually working!

Disgusted of Cheltenham

Quick work

This seems unlike GDS. Have they come up with an app in their first 7 years? The IPS prototype passport checking app wasn't theirs, but has gone and HMPO doesn't seem to have anything expected soon. There are NHS apps, but lo, so does gov.uk: First published:

27 March 2017 Asian Hornet Watch - new app launched to help people quickly and easily report sightings of this invasive species.

Awkward. Investigatory Powers Act could prove hurdle to UK-EU Privacy Shield following Brexit

Disgusted of Cheltenham

No, it's about humans, not citizens

'Citizen' does not appear in GDPR; it is about "data subjects who are in the Union" or any processing done within the Union. Unlike the citizen's rights in the US, Europe including UK takes a starting point under human rather than citizen's rights. Knowing someone's citizenship(s) is not very easy (so hardly surprising NSA is having trouble answering a question). Long may it remain irrelevant for almost everything.

Since UK companies will want to provide services into the EU, it's hardly unreasonable for them to comply with the law where the customers are, so getting an agreement is clearly important, but it would seem rash to assume that the EU-US Privacy Shield will still be in its current form in two years. And there will presumably be the need for a UK-US agreement as well.

IBM used dud DoS shield for failed online census says Oz PM

Disgusted of Cheltenham

And DTO?

Where was DTO when ABS needed them? Surely the friends recruited from GDS could have warned them about previous recent experience in the UK, such as DVLA, DEFRA, HMRC, and Electoral Registration?

IT analyst: Oz census data processed as plain text

Disgusted of Cheltenham

Re: I'm Batman

Presumably related to John Batman, the founder of Melbourne (hence Batman Avenue, Station etc.)

Time to re-file your patents and trademarks, Britain

Disgusted of Cheltenham

Re: And so it starts.

No, there was a threat about Calais, until someone checked and found it was a bilateral and not EU agreement, similar to the position on the border between US and Canada.

Just because we can now do stupid things doesn't mean that we will stop seasonal workers or make it harder for tourists. Our current mess is partly because of the refusal by the head of the civil service to allow it to consider plan B on the grounds that it wasn't government policy - ignoring the point that the government had, for better or worse, pushed this one over to the people. Of course we now hear that the Bank of England and Treasury have been working on it. But the last budget should have had in and out options.

EU GDPR compliance still a thing for UK firms even after Brexit

Disgusted of Cheltenham

Re: Pop!

Four more provinces of Canada would be a much better fit.

Can whole countries claim asylum?

Why you should Vote Remain: Bananas, bathwater and babies

Disgusted of Cheltenham

Surely there comes a point at which it is fair to say that we have been trying to reform the EU from within, but have not managed to do so and have no new ideas on how we might? Even the (dubious) changes agreed are conditional on the UK staying, .i.e. were not accepted as worth doing anyway. We gave it a good try, and, as Churchill said, we wish it well.

Those who lead saying it's the wrong time chose the time. Gus OD thinks two years is not long enough, but what was his job when the Lisbon treaty was signed? People could do silly things and over-react; some of the threats have been quite creative, but the EEC banana problem dates from 1956.

Who'll guard your personal data post-Brexit?

Disgusted of Cheltenham

In name only

GDPR is called a Regulation, but to get it though in the time given it has at least 40 places where national variation is allowed (e.g. an age threshold somewhere between 13-16), and presumably in each case there's at least one state that will have a variant (otherwise they could have agreed a common line), so those expecting a single set of rules will be sorely disappointed.

Cash-strapped English and Welsh cops prepare to centralise all 43 forces' websites

Disgusted of Cheltenham

Perhaps something useful could arise?

How hard is it to have a 999 app: Here's a picture of what's just happened, and my phone will tell you exactly where I am? Call back if you want more details, but you can probably already tell that we need a fire engine, or whatever. If twenty people call you can tell from the location it's the same incident.(Meanwhile, I'm trying to help the victims rather than waiting for an incident number.)

A UK digital driving licence: What could possibly go wrong?

Disgusted of Cheltenham

Re: It Bodes

We aren't talking confidentiality here, just integrity, so the data (picture and a few attributes) is 'secured' with a good 1970's digital signature which any fool can check is from DVLA. Small market for trusted checkers, but the data has to be available in a convenient form: read from NFC phone, your website, on a plastic card, a QRC tattoo (but please don't) or any other method of your choice, so that it can be offered to the checker.

(Likewise, power of attorney needs a pdf digitally signed by the OPG, not an online system of any sort.)

The DVLA policy in 2009 as presented on the No2ID threads was impeccable; presumably someone has quietly changed it.

Gov to pull plug on online ID verification portal Gateway in 2018

Disgusted of Cheltenham

Re: GDS to the rescue!

A4? If it doesn't fit on a POST-IT they aren't interested.

https://www.gov.uk/personal-tax-account makes it clear that the deadline-missing award-winning open but never-explain-delays Verify is insufficient for some of the 'services'.

They already manage a billion stamp duty transactions per year, and many other surprisingly large volumes https://www.gov.uk/performance/services

UK.gov is about to fling your data at anyone who wants it. How? Why? Shut up, pleb

Disgusted of Cheltenham

Re: Not compliant with GDPR

But under GDPR the public sector should not use consent as the legal basis for processing (see recital 43).

UK government looks to harness the potential of open data through APIs

Disgusted of Cheltenham

Does anyone recall the 2nd data protection principle in the law?

Personal data shall be obtained only for one or more specified and lawful purposes, and shall not be further processed in any manner incompatible with that purpose or those purposes.

Silicon Valley fights European Court of Justice ruling with small print

Disgusted of Cheltenham

Re: Makes no sense

Privacy is not absolute but about balance, at least as defined in the ECHR, but would these clauses be the ones including:

Clause 5: the data importer agrees and warrants.. that he has no reason to believe that the legislation applicable to him prevents him from fulfilling his obligations...?

Those who needed the Safe Harbor rather than any of the other exemptions can no longer do so, but presumably can now sue the Commission for any costs in relocating to Bulgaria or Argentina and losses during the transition that are directly attributable to not correctly implementing a directive. That sounds like a large bill for the Commission, or rather for EU taxpayers.

Hillary spillery finds half-hearted phishery

Disgusted of Cheltenham

The occasional response from phishing@cityoflondon.police.uk that your e-mail forwarded to them has not been delivered because an attachment contains malware should be on the list of inept responses.

The Revenue achieved RECORD numbers of e-tax returns ... by NOT shifting to GOV.UK

Disgusted of Cheltenham

PDF to download and post - sounds much the same as the process in

https://www.gov.uk/power-of-attorney/make-lasting-power

Hasta la Victoria Siempre, GDS! This is not the end, no way

Disgusted of Cheltenham

Trolls and those with good questions will go hungry

Jordan gone? That might explain why there was no blogged answer to the question as to why there is no systematic structure for the websites to handle pages with versions in different languages.

gc.ca managed this before he was born, and .eu and directgov somehow manage(d).

https://www.gov.uk/cymraeg still has just

Is there anything wrong with this page? and the tag

html lang="en"

GDS monopoly leaves UK.gov at risk of IT cock-ups, warns report

Disgusted of Cheltenham

Agile, innovative yet standard: quite a tall order. Would these be the standards that do not allow for Welsh, let alone anything foreign (Estonian or Korean names)?

You only need to look at the dates on the documents in

https://www.gov.uk/government/collections/identity-assurance-enabling-trusted-transactions

to see that the 'constant improvements from user experience' cannot have been fed into them.

Data protection laws come to the rescue of poor, underpaid UK MPs

Disgusted of Cheltenham

Political debate is alive and well all over Papua New Guinea. The Wantok system does complicate running a Westminster-style democracy, but the interest in MPs' expenses is no less. E.g.

http://www.ipbc.com.pg/michael-medical-morauta/

Anyway, we're due to get a brand new EU data protection regulation soon and that with trump the DPA. I'm sure if you have suggestions on how to stop that being abused as an excuse to do nothing or hide information they can be filed in the usual place.

Pitchforks at dawn! UK gov's Verify ID service fail to verify ID

Disgusted of Cheltenham

https://www.gov.uk/government/uploads/system/uploads/attachment_data/file/279649/Identity_Assurance_Hub_Service_Profile_-_SAML_Attributes_v1.1a.pdf

defines the character set as

<xs:pattern value="[A-Za-z0-9\s~!&quot;@#$%&amp;'\(\)\*\+,\-\./:;&lt;=&gt;\?\[\\\]_\{\}\^&#xa3;&#x20ac;]*"/>

which is essentially ASCII plus the Euro symbol for some unexplained reason, so no accents of any sort, it seems. O'Donnell will be OK, bit no way José.

UK cops, boffins to crack out war plan against cyber-crims

Disgusted of Cheltenham

Inaction fraud

Perhaps they have never tried to report anything on the action fraud website? There's nowhere to provide any of the inormation that might be useful to follow up an investigation - just a way to collect dubious statistics.

Biting the hand that feeds IT © 1998–2019