|
|
|
|
|
|
by Splatter
3198 days ago
|
|
|
I've worked on several (poorly designed) systems where the SSN is used as a primary key. In itself, the SSN is not for identification, but as a primary key, it is used to aggregate tons of data about a person. Just think of the scores of databases where data elements exist that are associated by SSN. It's the possession of that primary key linking all of our data that is the security issue. |
|
|