AUTHORS
CATEGORIES
- Airsoft (2)
- Austin (8)
- Books (9)
- Cooking For Engineers (20)
- Credit Cards (2)
- Current Events (9)
- Deals (4)
- Dining (37)
- Fanpop (4)
- Food (808)
- Games (5)
- Hairy (6)
- Kitchen Gear (7)
- Life (24)
- Miscellaneous (6)
- Movies (15)
- Orthogonal Thought (6)
- Personal Computers (10)
- Photography (158)
- Rant (9)
- Ruby on Rails (2)
- San Francisco (5)
- Soap Making (5)
- Television (11)
- Texas (1)
- Things We Like (11)
- Travel (11)
- Wear or Not (1)
- Web 2.0 (9)
- What I Ate (861)
- Wikipedia (5)
- Windows 10 (3)
- Windows Mobile (1)
- WordPress (1)
ARCHIVE
- September 2018 (1)
- September 2017 (1)
- March 2017 (1)
- September 2016 (2)
- August 2016 (2)
- September 2015 (1)
- November 2014 (1)
- August 2014 (1)
- January 2014 (1)
- September 2013 (1)
- December 2012 (1)
- November 2012 (3)
- September 2012 (1)
- August 2012 (2)
- June 2012 (2)
- February 2012 (1)
- January 2012 (4)
- December 2011 (4)
- October 2011 (2)
- September 2011 (5)
- August 2011 (1)
- July 2011 (2)
- April 2011 (2)
- February 2011 (5)
- January 2011 (12)
- December 2010 (37)
- November 2010 (30)
- October 2010 (25)
- September 2010 (30)
- August 2010 (32)
- July 2010 (34)
- June 2010 (31)
- May 2010 (35)
- April 2010 (35)
- March 2010 (33)
- February 2010 (34)
- January 2010 (33)
- December 2009 (30)
- November 2009 (31)
- October 2009 (30)
- September 2009 (31)
- August 2009 (34)
- July 2009 (34)
- June 2009 (34)
- May 2009 (33)
- April 2009 (32)
- March 2009 (42)
- February 2009 (38)
- January 2009 (57)
- December 2008 (40)
- November 2008 (30)
- October 2008 (33)
- September 2008 (22)
- August 2008 (5)
- July 2008 (5)
- June 2008 (11)
- May 2008 (13)
- April 2008 (10)
- March 2008 (29)
- February 2008 (18)
- January 2008 (28)
- December 2007 (1)
- November 2007 (4)
- October 2007 (5)
- September 2007 (10)
- August 2007 (14)
- July 2007 (10)
- June 2007 (9)
- May 2007 (21)
- April 2007 (21)
More Social Security Numbers Publicly Available
Posted 20 April, 2007 at 1:19pm by Michael Chu
The New York Times reported today that the social security number of 30,000 people "who received loans or other financial assistance from two Agriculture Department programs were disclosed for years in a publicly available database, raising concerns about identity theft and other privacy violations". The first question that comes to mind, is why does this stuff keep happening?
Then, I think about it and it seems inevitable that SSN's will be leaked or made available by accident as long as we use them as our primary form of identification in the United States. Since it's a unique number that is issued by the government to almost all U.S. citizens (apparently, after talking to my friend Harold, children who are home birthed take a little longer to get their numbers depending on which county you live in), it's basically the primary key into the citizens database of the U.S. It's bound to get out (you give it out all the time to strangers when you need to access your accounts, apply for credit, buy anything worth more than a few thousand dollars, etc.), so we should have something else in place as authentication. Then we won't be so worried about letting our SSN out all the time. Also, some financial institutions are starting to match other pieces of "public" information to authenticate - you need your SSN and your current address. If a database or a piece of mail has your SSN on it, wouldn't it have your address too?
I'm not sure what the solution is - assign everyone a credit card sized device that has a unique private key built in and generates the appropriate response to a challenge code that the credit card company, bank, or other business issues? That could work, but many people would lose it (just like people lose their social secury cards) and batteries would go dead and it wouldn't be as cheap for the goverment to produce as a piece of thick paper with a number printed on it.
Unfortunately, I have to go back to work and I should be using my time coding instead of thinking up a new solution for identity theft.
1 comment to More Social Security Numbers Publicly Available
Jesse Harris, April 20th, 2007 at 2:10 pm:
-
The real stupidity of the SSN as an identifier is that it's the equivalent of a username with no password. Unfortunately, there's no incentive for credit reporting agencies to discourage ID fraud since it's all on the consumer to prove they don't owe the money, something that can take months or years if it's even possible.
When you ask for a credit report online, you're asked a series of 5 questions about your credit history. Why is it that they don't ask those same questions when doing a credit check to make sure it's you? The system is already in place and it would almost entirely shut down fraudulent use of the SSN for loans and credit cards. Even basic checks against place of birth, age and gender would kill a lot of the fraud and the government has that checking system in place as well.
We have the solutions, we just choose not to use them. Stupid, stupid, stupid.