Metadata in Vista Could Be Too Helpful

linumax writes "Windows Vista will improve search functionality on a PC by letting users tag files with metadata, but those tags could cause unwanted and embarrassing information disclosure, Gartner analysts have warned. Search and organization capabilities are among the primary features of Windows Vista, the successor to Windows XP due out late in 2006. While building those features, Microsoft is not paying enough attention to managing the descriptive information, or metadata, that users can add to files to make it easier to find and organize data on a PC, according to Gartner. 'This opens up the possibility of the inadvertent disclosure of this metadata to other users inside and outside of your organization,' Gartner analysts Michael Silver and Neil MacDonald wrote in a research note published on Thursday."

Easy solution

[crazdgamer]

If my metadata could be viewed by other people inside and outside my organization, there's an easy solution to this.

Don't fill out the metadata fields!

Re:Easy solution

[shokk]

Or how about... watch how you tag things!! If you go tagging files "my secret romp with Goatse dude" AND you might be embarrassed about it, then _don't tag it_. However, if you're one to shout that kind of crap out to the world, tag away. I think the old adage still applies: "don't do anything you wouldn't want everyone to see in the news."

It has everything to do with human behavior and nothing to do with computer security. As it is, desktop search tools are opening up whole avenues to quickly find the secret smut on your desktop. Do you have a Google account AND search history enabled? Go to google.com and do a Search History and see what stuff you've been searching on that Google knows about. You shouldn't have done a search on "merkin".

Oh Great

Now we have a business analyst group trying to direct a computer software company how to write its software. When Gartner starts making new technology or being otherwise reasonably involved in technology, they can have a seat at the table. For now, this is just horrendously bad policy. Anyways, the Microsoft DOC format already contains a horrendous amount of metadata, the full history of changes that led to the current document, among other things. Where's Gartner's whines about that?

Hahaha, must have opened porn....

[ShyGuy91284]

Nothing worse then searching for one thing, and coming up with a "*ultra-midget-fetish-sex-in-chocolate*" result when your g/f is around.......... That's my biggest gripe of indexers. Too easy to accidently find files. Like search for your g/fs name if you want pictures of her (and she is hooking over your shoulder wanting them), she may see her name come up in a convo between you and your bud that you'd rather her not see.

Stupidity 101 ?

[Tom]

Help me out here, but what's so difficult about not storing metadata in-line ?

After 10 years of M$ Word disclosing secret information, you'd have guessed that "a removal tool" as mentioned in the article is obvious to anyone with half a brain as not good enough.

Storing the meta-data in a seperate file, or how about with the other metadata (i.e. with the inode) isn't so hard, is it? And it is quite obviously the right thing. There's even a big, red hint right there in your face: It's called meta-data. Might want to treat it different from the actual data, you know?

Re:Stupidity 101 ?

[$RANDOMLUSER]

I'm sure I don't really need to point out to a 3 digit UID that Microsoft's other efforts with meta-data (the registry) have been less than stellar. Seems like we're doomed to lack of security or a single point of failure.

This is a BETA, Right?

[drsmack1]

I find it a little annoying when someone does a "doom and gloom" review of a beta product, focusing on bugs or immature features. Its like doing a review of a building in progress and shouting out: "It has no roof! The rain will come right in! What are they thinking!"

The 2008 Toyota Prius

[DogDude]

I hear that the 2008 Toyota Prius will have a 7' high spoiler. What's up with that?

Oh, sorry... I just figured that we're talking about products that are still a few years down the pipe that haven't been anywhere close to finalized yet.

I don't know about anybody else, but we not only don't evaluate software years before it's released, but we generally wait until the software has been out for at least a year before even looking at it. I don't know what the point is of reviewing a product this early. The only thing that I can figure out is that it's a way to get a few more pageviews.

Yawn, non-story

[mopslik]

For example, a user might use "good customers" and "bad customers" as keywords on contract files. If such a contract is sent to the customer with the keyword still attached, it could cause embarrassment or even loss of business, the analysts wrote.

How is this different than naming your file "Invoice for Asshole Larry.doc" and mailing it to the client? Simple solution: don't put potentially embarassing stuff in the metadata fields.

Do people really need an analysis to tell them this?

Re:Windows Insecure???

[antifoidulus]

I know it's trendy here to bash windows, but this is FAR from a windows specific problem. Any file system that contains metadata could enable inadvertant disclosure of information, be it windows, mac, linux etc. The solution basically is to ensure that either a)your users are aware of what metadata is and how it works and to make sure that they get rid of any metadata on sensitive documents that they may send out or b) failing that, don't use the metadata.

Usefulness of metadata

[paologat]

Adding flexible metadata at the level of files does not seem such a good idea to me, especially for files that need to be transmitted or shared with others. Catalogation systems are going to be different from user to user, and from organization to organization - which is going to be messy if you mix multiple systems together.

Having something like "post-it notes" that do not stick to the file, but instead are part of the directory entry for that file, might be more useful and safer. If someone sends me a file, I don't want that person's metadata to pollute my classification of files.

That's somewhat like what happens with e-mail - I receive plenty of mails that the sender marked as "high priority", but that are low priority to me. Metadata on the file should be objective; subjective information should be stored somewhere else and not be transmitted together with the file.

Re:I don't get it..

[Roofus]

I would *hope* ( and no, I didn't read the article ), that the meta data for each file would have the same security permissions as the original file.

Otherwise, you'd be able to search for the meta data in the private files of other users.

Re:I don't get it..

[mzwaterski]

Someone got up on the wrong side of the bed. I'm pretty sure he was making an argument by analogy. It seemed pretty clear to me. Airbargs are a good thing. They save a lot of lives, but if used improperly (e.g., placing a child's car seat right in front of the airbag) they can be a bad thing (read: deadly).

Turning to the metadata: Having lots of metadata to search can be a very good thing. But, if used improperly (e.g., having the index not properly secured from outside access or malicious software) they can be a bad thing (read: security risk).

So, as the grandparent said: "Like Big Bird says, remember to put your infants in the back seat, so the "safety" devices don't kill them."