D&C GLug - Home Page

[ Date Index ] [ Thread Index ] [ <= Previous by date / thread ] [ Next by date / thread => ]

Re: [LUG] Extract from the FT on computer security in private banks

 

On Fri, Nov 26, 2010 at 12:36:17AM +0000, Rhia Knowles wrote:
> IT people have back up copies of the encryption keys in case these get
> lost, perhaps, so that the bank does not loose a customers valuable
> data, business, and more importantly money?
> 

One of the ways I was told was to:
-   Split keys
-   Print out on paper
-   Seal in envelope
-   Store remotely
-   If needed, enter (I think) a 128 character key by hand

The probability of needing a back up key should be low
Physical verification is easy
Not under one persons control
IT can help but do not have access to the data.

But yes it means thinking about systems before blind implementation.


-- 
Henry
Photocopies or faxes of my signature are not binding. 
This email has been signed with an electronic signature in accordance with 
subsection 7(3) of the Electronic Communications Act 2000.
Digital Key Signature: GPG RSA 0xFB447AA1 
Fri Nov 26 06:13:36 GMT 2010

Attachment: signature.asc
Description: Digital signature

-- 
The Mailing List for the Devon & Cornwall LUG
http://mailman.dclug.org.uk/listinfo/list
FAQ: http://www.dcglug.org.uk/listfaq