On the viability of pro-active automated PII breach detection: A South African case study

Swart, Ignus; Irwin, Barry V W; Grobler, Marthie

Title: On the viability of pro-active automated PII breach detection: A South African case study
Creator: Swart, Ignus
Creator: Irwin, Barry V W
Creator: Grobler, Marthie
Subject: To be catalogued
Date Issued: 2014
Date: 2014
Type: text
Type: article
Identifier: http://hdl.handle.net/10962/430235
Identifier: vital:72676
Identifier: https://doi.org/10.1145/2664591.2664600
Description: Various reasons exist why certain types of information is deemed personal both by legislation and society. While crimes such as identity theft and impersonation have always been in existence, the rise of the internet and social media has exacerbated the problem. South Africa has recently joined the growing ranks of countries passing legislation to ensure the privacy of certain types of data. As is the case with most implemented security enforcement systems, most appointed privacy regulators operate in a reactive way. While this is a completely acceptable method of operation, it is not the most efficient. Research has shown that most data leaks containing personal information remains available for more than a month on average before being detected and reported. Quite often the data is discovered by a third party who selects to notify the responsible organisation but can just as easily copy the data and make use of it. This paper will display the potential benefit a privacy regulator can expect to see by implementing pro-active detection of electronic personally identifiable information (PII). Adopting pro-active detection of PII exposed on public networks can potentially contribute to a significant reduction in exposure time. The results discussed in this paper were obtained by means of experimentation on a custom created PII detection system.
Format: 8 pages
Format: pdf
Language: English
Relation: Proceedings of the Southern African Institute for Computer Scientist and Information Technologists Annual Conference 2014 on SAICSIT 2014 Empowered by Technology
Relation: Swart, I., Irwin, B. and Grobler, M., 2014, September. On the viability of pro-active automated PII breach detection: A South African case study. In Proceedings of the Southern African Institute for Computer Scientist and Information Technologists Annual Conference 2014 on SAICSIT 2014 Empowered by Technology (pp. 251-259)
Relation: Proceedings of the Southern African Institute for Computer Scientist and Information Technologists Annual Conference 2014 on SAICSIT 2014 Empowered by Technology volume 2014 number 1 251 259 2014 978-1-4503-3246-0
Rights: Publisher
Rights: Use of this resource is governed by the terms and conditions of the ACM Digital Library Statement (https://libraries.acm.org/digital-library/policies#anchor3)

Hits: 137
Visitors: 138
Downloads: 5

Collections

Irwin, Barry V W (Prof)

RU Department of Computer Science

SDG 09. Industry, Innovation and Infrastructure

		Thumbnail	File	Description	Size	Format
View Details Download			SOURCE1	On the viability of pro-active automated PII breach detection.pdf	675 KB	Adobe Acrobat PDF	View Details Download