|
|
|
|
|
|
by nulagrithom
3238 days ago
|
|
|
And what of the examples in the article about reidentifying Netflix users from public data, or reidentifying people from Australian census data? These two incidents could no longer, legally, be publically written about. We'd be left discussing only theoretical applications (ie "this is why MD5 is weak" vs "this is how you can deanonymize this real-world complete example"), which simply never has the same impact. Do we have to start posting these on Pastebin instead of Medium now? Can 3rd parties report them during a security audit? Even if this has all the good intentions of preventing scummy marketers from scraping data, the execution, if history is any indicator, will likely result in a law can be used to throw people in jail for reversing an MD5 hash. |
|
|