Call: +44 (0)7759 277220 Call
Blog

Pete Finnigan's Oracle Security Weblog

This is the weblog for Pete Finnigan. Pete works in the area of Oracle security and he specialises in auditing Oracle databases for security issues. This weblog is aimed squarely at those interested in the security of their Oracle databases.

[Previous entry: "Ethical hacking in Oracle"] [Next entry: "Oracle promises tighter security for SOAs"]

Security professionals at risk from hacking laws



http://www.techworld.com/security/news/index.cfm?newsID=6990&pagtype=all - (broken link) Security professionals at risk from hacking laws - by Jeremy Kirk

"Company networks could be made less secure if projected computer crime legislation is introduced in several European countries. According to several security professionals, that would be the unintended consequence of anti-hacking laws.

The UK and Germany are among the countries that are considering revisions to their computer crime laws in line with the 2001 Convention on Cybercrime, a Europe-wide treaty, and with a similar European Union measure passed in early 2005."


This is a worrying possible change in the law for the UK and Germany, if the politicians get it wrong with the changes to the Computer Misuse Act as discussed in this article then it could become dodgy for security testers. The bigger implications suggested in this article is that it would effectively become illegal to own hacking tools. Would that mean that it would become illegal to disclose exploits and security holes? afterall they could be used to commit an offense! if the laws change how would anyone legally check their systems for secure configurations or have a penetration test performed by third parties if te tools used are illegal or the information pertaining to potential exploits is also made illegal? -