[apologies for cross-posting - but it's not at all clear who are the
intended target audiences for JISC-SHIBBOLETH and AUTHENTICATION, and
how/if they overlap]
"Reed puts 300,000 at risk of online fraud" is in the print Guardian of
13-Apr-05, and at:
http://www.guardian.co.uk/business/story/0,,1458121,00.html
"An online security breach at Reed Elsevier has allowed access to the
personal details of hundreds of thousands of people - nearly 10 times as
many as previously thought - the company admitted yesterday.
The Anglo-Dutch group said personal information on as many as 310,000
American citizens might have been accessed fraudulently in its Seisint
division, part of LexisNexis."
Unfortunately I read the paper after I'd given the last of my briefing
sessions on Shibboleth at the UK Serials Group Conference yesterday -
because it would have been *such* a good way of illustrating the
end-user privacy benefits of e-resources vendors (amongst which Reed
Elsevier is globally dominant by a long chalk) moving from current
methods of access management to Shibboleth - and thereby us (libraries,
universities, etc) *not* handing over to Elsevier personal information
about our students and staff (that we're trusted with by those people),
just so they can access services like LexisNexis!
John
--
John Paschoud
(Project Manager, PERSEUS: www.angel.ac.uk/PERSEUS/)
(Project Manager, ShibboLEAP: www.angel.ac.uk/ShibboLEAP/)
Projects Manager & InfoSystems Engineer
LSE Library
London School of Economics & Political Science
|