Slashdot Mirror

← Back to Stories (view on slashdot.org)

Japanese Gov't Accidentally Shares Internal Email Over Google Groups

Posted by Soulskill on from the top-secret-for-everyone's-eyes-only dept.

itwbennett writes "An official at Japan's Ministry of the Environment created a Google Group to share email and documents related to Japan's negotiations during a meeting held in Geneva in January, but used the default privacy settings, which left the exchanges wide open. According to Japan's Yomiuri Shimbun newspaper, over 6,000 items, including private contact information of government officials, was publicly accessible. Michihiru Oi, a ministry official, said the ministry has its own system for creating groups and sharing documents, but it doesn't always function well outside of Japan, sometimes leading to 'poor connections' and a 'bad working environment.'"

7 of 25 comments (clear)

  1. They should always operate this way by ebno-10db · · Score: 5, Insightful

    This mistake should be the standard way of working for all governments.

    1. Re:They should always operate this way by Frontier+Owner · · Score: 2

      should, but the officials personal contact details, perhaps not.

  2. Security backfire? by Urban+Garlic · · Score: 3, Insightful

    So the article and summary hint at a common problem -- "the ministry has its own system for ... sharing documents", which "doesn't always function well outside of Japan". I've seen this in more than one enterprise, where the IT guys meet the need of users to securely move data around by buying or building a secure solution, and they pay very careful attention to the security, but less attention to the usability. Users will go for ease-of-use every time, and aren't thinking about security, so mistakes like this happen.

    The obvious solution is to make the secure system easy to use, but usability itself is hard to get right, secure usability is very hard.

    --
    2*3*3*3*3*11*251
  3. Too Easy by Anonymous Coward · · Score: 2, Funny

    Come on guys. You can't make it too easy for the NSA or they'll suspect a honey pot.

  4. Oh Japan.. by paysonwelch · · Score: 2, Insightful

    The scary thing is that they were using Google a private US company to share private international secrets. This is just sloppy in my opinion. I mean.. come on how seriously are they trying to protect this sensitive information if they are uploading it to third party servers which probably never delete data and just deep freeze it?

  5. Japan is more advanced than us by gubon13 · · Score: 4, Funny

    They've already accepted that Google has all of their information anyhow.

  6. You still risk jail time if you look at the files. by 140Mandak262Jamuna · · Score: 3, Insightful
    The way most official secrets acts are written, it has some boilerplate language with a whole bunch of "whereas" and "notwithstandings" and eventually boil down to making it a crime to access government secrets, no matter how trivial or non-existent the protections were nor how clueless and braindead the officials were. Usually it has no due-diligence requirements on the part of the government to protect the secret data. It is usually a crime to look at what the government considers secret even if it was done accidentally, inadvertently.

    Laws are actually drafted by government officials and they insert enough language to protect their tails.

    --
    sed -e 's/Chuck Norris/Rajnikant/g' joke > fact