Blockchain Containing Child Porn Discovered, Legality of Blockchain Data in Doubt

From: The Guardian

Researchers discover illegal content within the distributed ledger, making possession of it potentially unlawful in many countries


“Our analysis shows that certain content, eg, illegal pornography, can render the mere possession of a blockchain illegal,” the researchers wrote. “Although court rulings do not yet exist, legislative texts from countries such as Germany, the UK, or the USA suggest that illegal content such as [child abuse imagery] can make the blockchain illegal to possess for all users.”

“This especially endangers the multi-billion dollar markets powering cryptocurrencies such as bitcoin.”

Read Complete Article


Financial Services Cybersecurity: NY DFS & NIST Align on Multi-factor Authentication

From: Security Boulevard

by Michael Magrath


Many of the provisions of the DFS regulation go into effect around the same time as the National Institute of Standards and Technology (NIST) will be finalizing the Framework for Improving Critical Infrastructure Cybersecurity, version 1.1.

According to NIST, version 1.1 of the Cybersecurity Framework “added a Subcategory to address authentication and some language refinements were made within the Identity Management and Access Control Category.”³ Version 1.0 did not specifically call out authentication, leading to confusion among the sectors.

Read Complete Article


What new email security standards mean for federal agencies

From: Federal Times

David Wagner, Zix

As of Jan. 15, all government agency domains are required to have Sender Policy Framework (SPF) and Domain-based Message Authentication, Reporting and Conformance (DMARC) records in place, according to an October 2017 order issued by the U.S. Department of Homeland Security — a major step in governmentwide cybersecurity.

SPF is a way of authenticating an email sender and detecting spoofing. Incoming emails are checked to ensure that they’re from a system authorized to send for that domain. If someone tries to spoof the “from” address, then the email is flagged.

Government Starts to Build New Links for Its Blockchain

Editor’s Note: The draft version of NIST Interagency Report 8202 is available here.

From: Nextgov

By John Breeden II

The National Institute of Standards and Technology is prepping the final version of a report on effective blockchain use—and when to avoid it.

One of my Nextgov predictions for technology and government in 2018 was a more mainstream use of blockchain technology in government and the private sector. And it looks like that one might be coming true, as the National Institute of Standards and Technology readies the final version of Interagency Report 8202, straightforwardly entitled Blockchain Technology Overview. The report is aimed at showing ways that government could use blockchain effectively and cautions about a few situations when it should be avoided.

The Facebook breach makes it clear: data must be regulated

Editor’s Note: See also What is Facebook’s Responsibility for Serving as the Sales Platform for Radioactive Counterfeit Cigarettes? and Facebook Continues to Profit from Illegal Tobacco.

From: The Guardian | Opinion

Companies use our personal information to enrich themselves. Regulation of this practice is long overdue



The big data companies are opaque to consumers and regulators alike, so few people understand the risks and companies can often hide data breaches for a long time. US law provides very little privacy protection, leaving consumers with little or no recourse when they are harmed.