The Importance of Deleting Old Stuff

Dear Nazis by Anonymous Coward · 2015-01-13 01:09 · Score: 3, Insightful

Official Nazi Memo

Please do not keep documents about Concentration-Camp details more than 3 Months.
If the gold in the inmates' teeth have been molten and the lamp-shades with their skin have been shipped all data about it can be shredded and burnt.
Once the Jews, the intellectuals and the gipsies have all been cremated, the documents about it can be safely destroyed.
We don't have to keep statistical data about the efficiency of the Zyklon B showers more than 1 month either, it's cheap enough.
Immediately dismantle showers and crematorium after use, we wouldn't want the public getting a bad impression.

PS. Do not make jokes about Leni Riefenstahl in your official communications.
No jokes about Sonja Henie as well.
Also, do not propose Jesse Owens as the next James Bond.

PPS. Don't talk to Goebbels about Company secrets, he keeps a diary.

PPPS. If anybody asks, Treblinka was a summer camp. //For the sarcasm-detector: this is a test

Re:Dear Nazis by turbidostato · 2015-01-13 01:16 · Score: 4, Insightful

"Please do not keep documents about Concentration-Camp details more than 3 Months."
Wow! Godwin law acomplished in the very first comment. That's a feat!
But then, I think you have a point: It seems to me that Sony's problems don't come from retaining old emails but from these emails being embarrasing to start with.
Schneier's position seems to be "don't worry about your poor ethics, just cover your tracks".
Re:Dear Nazis by gstoddart · 2015-01-13 01:31 · Score: 4, Insightful

Schneier's position seems to be "don't worry about your poor ethics, just cover your tracks".
In fairness to him, that's pretty much the industry position on data retention, and what the lawyers will tell you.
See, you are legally obligated to hold onto some things for a given period. Deleting it before then can get you into legal trouble if you suddenly find it needed.
Similarly, if you are under litigation and things have been requested, you are legally obligated to hold onto it because you're not allowed to delete stuff which is relevant to an on-going court case.
And, finally, once the base retention period has happened, and once your legal team confirms this stuff is legal to delete -- you want to get rid of it as soon as you possibly can, so that it's not lingering about to bite you in the ass.
This has been true of the legal landscape for document/records retention for at least a decade, because older information which should have been deleted can be a liability to your company.
The problem can be that employees hold onto stuff for their records, either as a CYA or a record of things they've worked on. And if that stuff pops up in discovery, even if the corporate version has been purged, it's legally admissible. But it's much harder to convince your employees they need to delete their copies of something, because their own personal interest means they care less about your corporate needs -- because who wants some ass of a manager coming back and blaming you for something you objected to?
I think this is pretty much standard records keeping since SOX came into play.
But don't think for a minute that it's just him saying essentially this same thing. This has been pretty standard stuff for quite some time, even if most people are clueless about it.

--
Lost at C:>. Found at C.
Re:Dear Nazis by BarbaraHudson · 2015-01-13 01:42 · Score: 2, Funny

If you have nothing good to say,
You might want to keep your mouth shut
You never know if there'll come a day
'Cuz the backups never go away
You'll regret calling your boss a real slut.
Burma Shave

--
"Transparent" is a shit show that trades on every stereotype going. A man in drag is NOT a transsexual.
Re:Dear Nazis by luis_a_espinal · 2015-01-13 01:46 · Score: 2

"Please do not keep documents about Concentration-Camp details more than 3 Months."
Wow! Godwin law acomplished in the very first comment. That's a feat!
But then, I think you have a point: It seems to me that Sony's problems don't come from retaining old emails but from these emails being embarrasing to start with.
Schneier's position seems to be "don't worry about your poor ethics, just cover your tracks".
That'd be his job as a security professional. Corporate ethics is another role that is obviously necessary, but that is not the subject of IT/enterprise security. It would be a stretch (and a very disingenuous one) to make inferences about Schneie's ethics from his professional position in the matter (in the context of security) alone.
Re:Dear Nazis by Anonymous Coward · 2015-01-13 02:03 · Score: 2, Insightful

See, you are legally obligated to hold onto some things for a given period. Deleting it before then can get you into legal trouble if you suddenly find it needed.
Similarly, if you are under litigation and things have been requested, you are legally obligated to hold onto it because you're not allowed to delete stuff which is relevant to an on-going court case.
There's a difference in holding on to for legal (or whatever) reasons and keeping online. The former doesn't necessitate the latter.
It's quite a bit easier to remotely hack an Exchange server than a bunch of offline tapes or drives stuffed in a safe ...
Re:Dear Nazis by Anonymous Coward · 2015-01-13 02:06 · Score: 1, Insightful

Fuck Godwin's law. That applied in the 1990's and 2000's when we lived in "end of history" times and Seinfeld nonchalance was a national attitude.
It's 2015. We've got religious fanatics abroad, corporations looting at home, western democracies in practical paralysis, and some kind of identity-political, fascism 2.0 popping up like mold all over the web.
The Nazi's were a lesson from history. Time to brush off the textbooks.
Re:Dear Nazis by DarkOx · 2015-01-13 02:25 · Score: 3, Insightful

Schneier's position seems to be "don't worry about your poor ethics, just cover your tracks".
I think you know we now live in a world where you can make a fairly benign statement and their exists a very real possibility someone with an axe to grind may strip it of its context and use it against you. I think you also know that behavior is normative. What is appropriate conversation with say all male company over beers after work, may not be appropriate while still in the office, might not be appropriate if a female colleague has joined you for those beers etc. That stuff might still land on the corporate backup server etc, if someone decides to use their corporate smart phone to video some of your night out. While none of it was ever said while on the clock, or in any official communication never the less through stupidity its found its way onto company assets; suddenly its discoverable etc.
So now that innocent comment between to men who were meeting not as employees of Innertrode, but just to buddies having drinks about how the waitress had a nice ass, can be used to demonstrait a pattern of hostile culture or whatever in some unrelated lawsuit. That is the world we live in. It could work the other way around too, your corporate stuff might get tied up in legal proceedings involving them personally that did not need to involve the company. This alone is why BYOD should be strangled in its cradle anytime someone brings it up. You don't want peoples personal lives tied to corporate assets. You don't want your file/e-mail/backup/messaging server to be evidence in their divorce proceedings, drug trafficking trial, etc.
Essentially my mothers advice is still the best, if you don't want someone to read don't write it down. Don't write it down, don't record it, don't photograph it. Do not keep in your diary under lock and key, do not keep it on your file server protected with AES-256, just don't record it. Also its not destruction of evidence you can't be guilty of deleting something that never existed.
So my advice is NO BYOD period, people putting personal assets on corporate networks should be escorted to HR to receive their pink slip and then out of the building; that should be the policy. As to data retention, yes a good data retention policy is important, but even more important is education on how corporate IT assets should be used, what type of language is never appropriate, not used for personal stuff, etc.

--
Repeal the 17th Amendment TODAY! Also Please Read http://www.gnu.org/philosophy/right-to-read.html
Re:Dear Nazis by war4peace · 2015-01-13 02:32 · Score: 4, Interesting

I keep all my e-mails in an offline folder. 13 GB and counting.
Saved my arse more times I am willing to count. After the first 15 or so occurrences, people generally leave me alone when I tell them "I could dig into my old e-mails for that information".
Deleting old stuff is definitely worse than keeping it secure, preferably encrypted using a separate tool and password.

--
...gis sdrawkcab (usually not responding to ACs; don't bother posting as AC)
Re:Dear Nazis by turbidostato · 2015-01-13 02:39 · Score: 3, Insightful

"It would be a stretch (and a very disingenuous one) to make inferences about Schneie's ethics from his professional position in the matter (in the context of security) alone."
I don't think so. The man is the slave of his words and the master of his silence. Schneier is completly free to give whatever advice he deems appropriate and of course everything somebody says (given it has not been put out of context) reveals his ethos, specially if, as it is the case, it is full of behaviour indications:
"[in regards to the attack against Sony Pictures] there's another equally important but much less discussed lesson here: companies should have an aggressive deletion policy.
[...]
Everything is now digital, and storage is cheap -why not save it all?
[...]
Saving data, especially e-mail and informal chats, is a liability.
[...]
If Sony had had an aggressive data deletion policy, much of what was leaked couldn't have been stolen and wouldn't have been published."
Schneier could said just as easily something like this instead:
"[in regards to the attack against Sony Pictures] there's another equally important but much less discussed lesson here: companies should have an aggressive policy enforcing high ethical standards.
[...]
Everything is now digital, and storage is cheap -why not save it all?
[...]
Allowing psycopaths in your company, is a liability.
[...]
If Sony had had an aggressive ethos policy, much of what was leaked wouldn't have been published or, if so, it would just showed what a high standards company it is."
See? Still Schenier pointed the former, not the later.
Re:Dear Nazis by Zeio · 2015-01-13 02:42 · Score: 1

Exactly right. Dont make things secure, dont keep the bad guys out. Dont make all this information searchable for future use.
Delete and change history? That's what we've come to? Delete evidence and history like this is some sort of Enron shredding party.
Meanwhile people who are directly damaged by Google-NSA by not being able to have the right to be forgotten cant escape, but companies can erase their past?

--
Legalize the constitution. Think for yourself question authority.
Re:Dear Nazis by bzipitidoo · 2015-01-13 02:45 · Score: 1

What's that saying that's used to justify spying on everyone? "If you have nothing to hide then you have nothing to fear".
You can't divorce security from ethics, because so much of security does not make everyone safer, it often makes a small group safer from the public, and that may not be in the public interest. Security against viruses is good for everyone but the few who want to use viruses to the detriment of the infected. Security against "pirates" is much more controversial, as "pirates" too often means everyone else. MS tried propaganda and strong arm tactics to pass off Windows Genuine Advantage as security for users. That was an insult to our intelligence, and a lie. Worse were Sony's music CDs with the root kit. I wonder if any of the leaked info has details about that, perhaps puts names to the people who decided make Sony's own CDs help spread viruses, including their own? With tax season around the corner, and Turbo Tax in the news again for anti-social behavior, the stunt they pulled a decade ago is worth mentioning again. Their "security" measures in their software screwed with the boot sector of their users' hard drives, risking the loss of all their users' data, in order to "protect" their software from piracy with, once again, DRM that does not work.
If you're a security expert, what do you do when you're asked to help cover something up, something that may be criminal and/or dangerous? Or, you're asked to use your knowledge to help make everyone less secure, by, for example, designing a root kit for music CDs? Blow the whistle, or follow orders? Whichever way you go could be trouble. Lose your career because no one wants to hire a whistleblower, and the government does a bad job of protecting whistleblowers, or lose your freedom when you are implicated in the cover up and sent to prison for it? Maybe you can blow the whistle without blowing your cover. No one was sure who Deep Throat was until long after Watergate. For the example of the root kit on the music CDs, you might make a judgment call. You would understand that this is a variation of DRM that will still be ineffective, the root kit is a clumsy idea, and therefore is unlikely to do much damage to the public. The outcome can only be what actually did happen, which is that the root kit was soon noticed and the only harm of significance was self inflicted harm when Sony lost much trust and was forced to recall all the infected CDs. So, your best course of action was likely some form of CYA, documents that you warned management that the root kit was a very bad idea, and that you were going ahead with it only under protest. You could still be blamed and fired of course. Maybe management will believe the root kit would have worked if not for your "treachery" in deliberately doing an incompetent job, despite any words anyone else tells them to the contrary.

--
Intellectual Property is a monopolistic, selfish, and defective concept. It is "tyranny over the mind of man"
Re:Dear Nazis by ShanghaiBill · 2015-01-13 02:46 · Score: 2

I keep all my e-mails in an offline folder. 13 GB and counting.
I do the same, except I auto-delete obvious spam, so mine is less than 1GB.
I don't see any real harm to Sony from the e-mail disclosures. Was anyone really surprised that the Sony execs thought Angelina Jolie was a spoiled brat? Who cares?
Re:Dear Nazis by turbidostato · 2015-01-13 02:53 · Score: 1

"their exists a very real possibility someone with an axe to grind may strip it of its context and use it against you."
And then, having full records showing both that the issue has been taken out of context and what a scumbag was the one doing so, is an asset, not a liability.
"What is appropriate conversation with say all male company over beers after work, may not be appropriate while still in the office"
Or is it that while a common behaviour it was not appropriate over the beers either? And then, even if what you say is the case, do you think are you serving well your company if you don't know the difference, nor enforce knowing the difference, between your corporate resources and an informal meeting over some beers after work?
"You don't want peoples personal lives tied to corporate assets."
If by "you" you mean "the company", then you are wrong: the company is perfectly happy having their employees' lives tied to corporate assets, which is part of the evil ethics culture that ends up bitting companies like Sony. It is the employees that should know better and not allowing their lives to be tied to the company. We are workers, not serfs or slaves.
Re:Dear Nazis by bkr1_2k · 2015-01-13 03:05 · Score: 2

What world do you work in where so much goes wrong so often that you've had 15+ occurrences where you had to "check my old email" to keep from being in a bad situation? Wherever it is, I'll stay the hell away.
I keep all my old emails, for the same reason, but I've used them once or twice in nearly 20 years.

--
"Growing old is inevitable; growing up is optional."
Re:Dear Nazis by houghi · 2015-01-13 03:16 · Score: 2

See, you are legally obligated to hold onto some things for a given period. Deleting it before then can get you into legal trouble if you suddenly find it needed.
In some countries keeping data, especially customer data, longer then needed can cause legal problems as well.
I for one am for "If you do not need it, trow it away." I do this at home and at the office. If I haven't touched it in a year, I don't need it and I trow it away. (Excluding music, records, photos and things of sentimental value)
You could do the same with data as well. The advantage is that looking for something will be much, much faster. Even now seaching for some codesnippet will be faster with google then on my own machine looking for something that I might have had.
That said, I don't do with data as I do with other things. Why not? Because it is easier to keep it then to throw away what I might not need anymore. Hoarding data does not give me a financial gain. So what that I did not read these mails in 10 years? In comparison it does not contain a lot of space, so no real gain.
Official papers need to be kept for 5, 10 or even 30 years and they take up place. There is a rent cost to be payed for by companies (e.g. in Belgium all contracts still need to be signed and the original must be kept for X years).
So if they reduce that from 30 to 20 years, you pay X amount less.
Keeping data is, for now, cheaper then deleting it. Just add some HDs and the issue is solved. I believe that is the real reason. And if you have done something wrong, somebody somewhere will have either a copy or will testify without a copy. It just makes it a bit harder, but in the end it is security through obscurity, so you can't rely on it.

--
Don't fight for your country, if your country does not fight for you.
Re:Dear Nazis by ArmoredDragon · 2015-01-13 04:24 · Score: 1

Nonsense. The lamp shades were a myth and Zyklon B was actually gift gas!
https://en.wikipedia.org/wiki/...
Re:Dear Nazis by Anonymous Coward · 2015-01-13 04:37 · Score: 3, Informative

Not the op but keep away from corporate security. While it seems like most of us are assholes, its because you get used to looking past the smiles of the assassin's coming for you that week.
I find I need to go pull something out of a mail archive 3-4 times a year, when someone tries to blame me for something being insecure, and in my notes I have details of how I tested it, found it bad, highlighted same and some manager overrode my concerns because there was a business need to do so taking a decision they were not qualified to take. When the shit starts to fly, you need to produce these or a baying mob of all the people you've ever disrupted their cosy plan for timescales with the utterance "don't do that, its a *really* bad idea" will form and lynch you irrespective if you were right or wrong. It usually comes out in the wash when you produce the mail documenting this, the hysteria is being whipped up by someone connected to that very decision trying to bury the traces of the source of the braindead decision.
I've also noticed the more clued up people send suspect things in encrypted mail, because they know damn well our corporate IT will balls up the certs on our corporate machine every year and we'll have to get new ones with no access to the old.
Delete my mailbox every 3 months? not a chance. I have stuff going back 6 years for some of the rasher decisions.
Re:Dear Nazis by ultranova · 2015-01-13 05:58 · Score: 1

That'd be his job as a security professional. Corporate ethics is another role that is obviously necessary, but that is not the subject of IT/enterprise security. It would be a stretch (and a very disingenuous one) to make inferences about Schneie's ethics from his professional position in the matter (in the context of security) alone.

tl;dr He's only following orders.
Ethics, either for organizations or individuals, isn't something that can be slapped on as an afterthought. It's either part of every role, every process, every decision, or it's non-existent. Trying to make corporate ethics the responsibility of an "ethics department" simply makes that department an obstacle everyone and their dog will do their best to sidestep, avoid, and keep in the dark at every turn. It might make for fine black comedy, but it's not even remotely related to ethics.
So yes, we can absolutely make inferences about Schneier's ethics based on how he conducts his job.

--
Forget magic. Any technology distinguishable from divine power is insufficiently advanced.
Re:Dear Nazis by skids · 2015-01-13 06:11 · Score: 1

In some countries keeping data, especially customer data, longer then needed can cause legal problems as well.
Just about anywhere where a discovery motion can compell you to spend your own staff's time and effort answering questions about whether or not you have data X and please give data X to the lawyers, you want a data retention policy so that when you get that letter, you can just say "it's our policy to delete stuff older than Y, so X is long gone." Otherwise your techs are fumbling around in desk drawers and tape archives for old backups so you can say "yep, we looked."

--
Someone had to do it.
Re:Dear Nazis by Jawnn · 2015-01-13 06:28 · Score: 1

Insightful? Really? For a post that truly did miss Bruce's point? That point was, BTW, that if you don't have a good reason for keeping something, don't. Make that a policy and enforce it. Anything, not just evidence of corporate sleaze, can become a liability. Only a fool would keep potentially dangerous garbage when she didn't have to.
Re:Dear Nazis by turbidostato · 2015-01-13 07:00 · Score: 1

"Only a fool would keep potentially dangerous garbage when she didn't have to."
Only a fool would throw away potentially valuable information when she didn't have to.
So, back to square one, right?
Re:Dear Nazis by war4peace · 2015-01-13 07:29 · Score: 1

It's all about corporate culture. When the majority of your colleagues and management chain don't read their e-mails and forget a phone conversation immediately after hanging up, there will be many occasions when they come back to you after a couple months and ask "why wasn't I told about this???". So you show them they were told, but their incompetence stood in the way. They're mostly looking for scapegoats and I show them I can't be one.
You might be lucky by working for a company with proper employees. Me, not so much. But salary is good and the company overall is successful (although hated here on /.). Meh, it's just a job. Keeps me and my family fed.

--
...gis sdrawkcab (usually not responding to ACs; don't bother posting as AC)
Re:Dear Nazis by war4peace · 2015-01-13 07:30 · Score: 1

Pretty much this.

--
...gis sdrawkcab (usually not responding to ACs; don't bother posting as AC)
Re: Dear Nazis by BellyJelly · 2015-01-13 08:03 · Score: 2

Can't you just have a hard drive failure? Works for the IRS........ A rolling program of scheduled hard drive failures should minimise the amount of embarrasment.
Re:Dear Nazis by radarskiy · 2015-01-13 10:21 · Score: 1

'Schneier's position seems to be "don't worry about your poor ethics, just cover your tracks".'
-1, self-refuting
This is an example of why you would want to expire a perfectly ethical message, since while you can control what you preserve you cannot control how much context someone else must use.

Air-gap. by ledow · 2015-01-13 01:15 · Score: 3, Insightful

Retain everything.

Just make sure that anything past your legal retention limit is only retained offline.

How hard is that? Standard practice as far as I'm concerned - when you hit the limit on what you need to store, archive it to get your space back but keep the archives around just in case you need them later (e.g. lawsuits, etc.). There's nothing stopping you putting your old tapes, or old NAS disks, into storage because by the time the data is about to retire, so are the old units that stored it.

Not saying keep them around forever, but just keep what you don't NEED to keep offline. Otherwise you're just chewing disk space for no good reason anyway.

Then when you do come across your (encrypted) backup tapes in the archives in a few years time, you know you can safely ditch anything there should you be short of space, and that you can probably restore anything that might be there if the lawyers send you in. And nobody can access it but you. Hell you could store it live, but encrypted, and just archive the encryption key for each year that you don't need.

Air gap and encryption, people. Seems like it should be pretty basic stuff to a company as HUGE as Sony.

Re:Air-gap. by Drethon · 2015-01-13 01:21 · Score: 1, Insightful

I work for a contracting company, our data retention limit is the end of time. Though knowing that all of our e-mails are kept stored for possible contract issues also means I try not to send highly embarrassing e-mails on work e-mail...
Re:Air-gap. by twitnutttt · 2015-01-13 01:28 · Score: 1

It's called digital hoarding, and I've got the bug too. =)
Keep it all! Create a git repository in the root of your documents folder and keep every version of every file you've ever saved, or use a remote cloud backup with versioning. Either way use a remote cloud backup plus external hard drive backup!
Only this way can you be sure to never lose any thought you ever had.
I jest, but not really.
Re:Air-gap. by Shakrai · 2015-01-13 01:31 · Score: 1

I have every file from every computer system from every OS upgrade/re-install. In Windows the heirarchy looks like this: C:\old c\old c\old c\old c\old c
Oh, I need that file from 1996? Well duh, it's under C:\old c\old c\old c\old c\old c\old c\old c\old c\old c\stuff\
2001? C:\old c\old c\old c\documents and settings\shakrai\my documents\
Works in Linux too, where it's just /oldroot/oldroot/oldroot/

--
I want peace on earth and goodwill toward man.
We are the United States Government! We don't do that sort of thing.
Re:Air-gap. by jellomizer · 2015-01-13 01:35 · Score: 1

There are Legal Reasons to keep everything. If something goes wrong, you better be able to show up evidence or you may be in trouble for appearing to hide data.
There are political reasons too. Where I work can be very political, with a lot of finger pointing. If you can dig up data to prove that someone did it. You can stop all the nonsense and get back to work. If you delete your record that you have done something years ago, something that you may have disagreed with but was told to do it anyways. Chances are you (especially the IT Guys) will be blamed for the mistake.

--
If something is so important that you feel the need to post it on the internet... It probably isn't that important.
Re:Air-gap. by jbmartin6 · 2015-01-13 01:41 · Score: 3, Insightful

You aren't going to appear to hide data if it is part of your data retention practice. If you can say that you were deleting everything over five years old long before any issues came to light, that isn't going to be a problem. Now if you start deleting it the day before you get the subpoena, you've got a problem.

--
This posting is provided 'AS IS' without warranty of any kind, implied or otherwise.
Re:Air-gap. by kent_eh · 2015-01-13 01:49 · Score: 3, Insightful

my old emails (especially) are kept in the "CYA" file heirarchy.
It has served my intrerests a few times. "why didn't anyone warn us?"..."I did in this e-mail from 6 years ago (attached)".

--

---
"I can't complain, but sometimes still do..." Joe Walsh
Re:Air-gap. by rgmoore · 2015-01-13 01:55 · Score: 1

Just make sure that anything past your legal retention limit is only retained offline.
That won't help much against an attack by an insider, who will have access to the off-line repositories. Of course doing that would reveal that it was an insider attack rather than an outside hack, but the damage would still be done.

--
There's no point in questioning authority if you aren't going to listen to the answers.
Re:Air-gap. by ledow · 2015-01-13 02:04 · Score: 1

For personal stuff? Yes, I have the same.
"Old laptop files" etc. feature heavily on any new disk I buy.
Similarly, for email, I can query nearly 15 years worth of email from the narrow-down search in my mail browser. You don't even notice - given how quickly it can do it - but, damn it's useful when you've forgotten the login to that website you signed up to years ago and never thought you'd need ever again.
But at work, disk space is always tight because hundreds of users try to do the same on one network. So I keep to the official retention periods, then have a bunch of encrypted disks in the basement should the extraordinary be required. Never been asked for it (have been asked if I can ditch some of it, to which the answer is "throw out what you want from that room, just start with the oldest first").
Hell, first job of making a new personal RAID array? Copy all the old one onto it, then retire the old one and file the disks somewhere safe.
Re:Air-gap. by OneSmartFellow · 2015-01-13 02:29 · Score: 1

I have every file from every computer system from every OS upgrade/re-install. In Windows the heirarchy looks like this: C:\old c\old c\old c\old c\old c
Oh, I need that file from 1996? Well duh, it's under C:\old c\old c\old c\old c\old c\old c\old c\old c\old c\stuff\ 2001? C:\old c\old c\old c\documents and settings\shakrai\my documents\
Works in Linux too, where it's just /oldroot/oldroot/oldroot/
How idiotic is that.
Why not give them year names or anything/something to help you navigate quickly.
Why struggle with trying to figure out the relative 'old' path. That's just plain dumb.
Re:Air-gap. by putaro · 2015-01-13 02:32 · Score: 2

This is very true. Another issue is not that there's anything embarrassing or bad, but the sheer work of producing documents for a lawsuit can be be very expensive. If you do keep emails or other records beyond the legal retention limits they can still be subpoenaed, but if you destroy them on a regular schedule, well, can't produce what you don't have.
Re:Air-gap. by mrchaotica · 2015-01-13 03:05 · Score: 1

Because if the number of times you need something times the time it takes for you to search for it is less than the time it takes to organize it carefully, then it's not worth organizing.
Part of my "filing" system is literally a pile of papers in a box, stacked in roughly-chronological order. Insertion is O(1); retrieval is O(n) (maybe faster if I know how old the thing I'm looking for is). I insert much more often than I retrieve, so it works just fine.

--
"[Regarding the 'cloud,'] ownership was what made America different than Russia." -- Woz
Re:Air-gap. by houghi · 2015-01-13 03:27 · Score: 1

but just keep what you don't NEED to keep offline
OK, tell me what you don't need and we will take it offline.
When I look at the shared directories at the various companies I worked and work at, it would not only be a great idea. In a small company I moved anything that I saw and that was older then 2 years to a directory "Backup". In several years nobody complained and asked where the data was.
In companies where I proposed it, the answer was always: "We might still need it." Just look at what people have in their cabinet. They are unable to throw away the presentation you have in 2005, because reason.
And now you want to throw away data that might have been useful? Perhaps you are different, but the majority of people don't do this with their own data.

--
Don't fight for your country, if your country does not fight for you.
Re:Air-gap. by rssrss · 2015-01-13 05:05 · Score: 2

IAAL: I always told clients that it is far better not to have a written record of what you said and did. It is always to your advantage to have to rely on your self serving memories than to have your memory contradicted by written evidence.
There are some documents that you must retain by law. You should work with your counsel and accountants to identify those categories of documents and to retain them. But not one day longer than necessary.
That said. notes and drafts are very seldom subject to legal retention guidelines. Once a document is finalized, notes and drafts should be destroyed.
Finally, the easiest document to deal with is one that was not created. Business processes should be engineered to avoid document creation to the extent possible.

--
In the land of the blind, the one-eyed man is king.
Re:Air-gap. by TemporalBeing · 2015-01-13 05:33 · Score: 1

Just make sure that anything past your legal retention limit is only retained offline.
That won't help much against an attack by an insider, who will have access to the off-line repositories. Of course doing that would reveal that it was an insider attack rather than an outside hack, but the damage would still be done.
It will also fairly quickly point out who the attacker is since the offline copies are usually locked up securely that only a very few people have access to, access that is logged.

--
Truth is like the sun. You can shut it out for a time, but it ain't goin' away. - Elvis Presley (source: imdb.com)
Re:Air-gap. by TemporalBeing · 2015-01-13 05:36 · Score: 1

IAAL: I always told clients that it is far better not to have a written record of what you said and did. It is always to your advantage to have to rely on your self serving memories than to have your memory contradicted by written evidence.
There are some documents that you must retain by law. You should work with your counsel and accountants to identify those categories of documents and to retain them. But not one day longer than necessary.
That said. notes and drafts are very seldom subject to legal retention guidelines. Once a document is finalized, notes and drafts should be destroyed.
Finally, the easiest document to deal with is one that was not created. Business processes should be engineered to avoid document creation to the extent possible.
Very true. It has bitten people more often than not having the written record.

Though you're final drafts should also have a note about their taking precedence over any previous versions, drafts, notes, etc so as to establish their finality on the matter to prevent issues like with SCOG v Novell where SCOG claimed that the drafters knew the intentions that were suppose to be reflected yet the document clearly stated that it was the final work as intended.

--
Truth is like the sun. You can shut it out for a time, but it ain't goin' away. - Elvis Presley (source: imdb.com)
Re:Air-gap. by neurovish · 2015-01-13 07:37 · Score: 1

Seems like it should be pretty basic stuff to a company as HUGE as Sony.
You're not thinking evil enough...this is advice for businesses. A subpoena can bridge an air gap.
Re:Air-gap. by antdude · 2015-01-13 11:28 · Score: 1

Basically, prove it when needed. ;)

--
Ant(Dude) @ Quality Foraged Links (AQFL.net) & The Ant Farm (antfarm.ma.cx / antfarm.home.dhs.org).
Re:Air-gap. by Aqualung812 · 2015-01-15 01:38 · Score: 1

Just make sure that anything past your legal retention limit is only retained offline.
Do you think that because it is no longer required for you to keep certain documents, that it will prevent a subpoena from demanding them if they exist?
So, every time there is a lawsuit, you have to re-plug all of those air gaps archives to search for whatever documents the opposition deems relevant. There went February's IT productivity.
NO. As soon as you don't need it, delete it automatically. Make it a written policy. After X years, everything is deleted unless it is placed in a certain archive manually. That archive will be small and certain to only be used to your company's advantage.

--
Grammer Nazis - I mod you "troll" unless you actually add something on-topic. Yes, I know I have mispellings in my sig.

Screw data retention policies by Anonymous Coward · 2015-01-13 01:17 · Score: 4, Interesting

My company deletes emails after 90 days unless you jump through burning hoops to save a limited number of them. And has IM logging forced to disabled. This REALLY sucks when you want to go back to refer to something. And is so transparently a CYA move.

How about instead of deleting everything people just are not a-holes? And if they can't help themselves maybe they should be exposed. Instead they make us all work in circles as we forget our past.

Re:Screw data retention policies by Anonymous Coward · 2015-01-13 01:43 · Score: 1

Totally agree. We have a similar policy, and so much context and useful background has been lost to the auto delete monster.
Yes ideally we should all be using better ways of managing information, but here in reality email chains are one of the main ways information moves around this company.
Re:Screw data retention policies by nospam007 · 2015-01-13 02:50 · Score: 1

"My company deletes emails after 90 days unless you jump through burning hoops to save a limited number of them. And has IM logging forced to disabled. This REALLY sucks when you want to go back to refer to something. "
Is sending a BCC to a personal account and a filter to forward incoming mails to the same account also forbidden?

Huey Long's Philosophy applies here.... by Shakrai · 2015-01-13 01:20 · Score: 5, Interesting

Things we used to say in person or on the phone we now say in e-mail, by text message, or on social networking platforms. ... Everything is now digital, and storage is cheap — why not save it all?

Sony illustrates the reason why not. The hackers published old e-mails from company executives that caused enormous public embarrassment to the company. They published old e-mails by employees that caused less-newsworthy personal embarrassment to those employees, and these messages are resulting in class-action lawsuits against the company.

Never Write what you can Phone;
Never Phone what you can Say;
Never Say what you can Whisper;
Never Whisper what you can Nod;
Never Nod what you can Wink.

--
I want peace on earth and goodwill toward man.
We are the United States Government! We don't do that sort of thing.

Re:Huey Long's Philosophy applies here.... by ripvlan · 2015-01-13 05:46 · Score: 1

hah. I worked at a place where that actually was the policy.
When dealing with lawsuits...
Talk in person - in closed rooms
If you do Phone - never leave voicemail messages.
Do not use email - if you must....
Email should not hint at the topic of conversation.
Email should stick to the facts and not contain strategy or speculation.

So the whole world is now like my Mom? by retroworks · 2015-01-13 01:23 · Score: 1

She never forgets anything I say. ever.

--
Gently reply

Re:So the whole world is now like my Mom? by meta-monkey · 2015-01-13 02:18 · Score: 1

Sounds like your wife is a bitch.
You chose...poorly.

--
We don't have a state-run media we have a media-run state.
Re:So the whole world is now like my Mom? by OneSmartFellow · 2015-01-13 02:33 · Score: 2, Funny

I know, now, that my ex-wife used to make up shit that she would then claim that I said.
I used to think I was insane because I could never remember saying stuff she would claim that I said. Lots of it wouldn't even sound like something I would say, yet she would -supposedly- quote me verbatim.

Bitch !

You have been warned.
Re:So the whole world is now like my Mom? by amalcolm · 2015-01-13 02:43 · Score: 1

Like the Indiana Jones quote - Kudos!

--
Time for bed, said Zebedee - boing

Research data by Enry · 2015-01-13 01:30 · Score: 3, Interesting

Research data usually needs to be kept for 7-10 years after the conclusion of the grant, then usually stored much later after since the people involved have left and nobody knows what to do with it. In our research of a 2PB file server, over 1/2 of the data hadn't been touched in over a year. The desire there is to move the data to cheaper tape backup and free up spinning disk. The problem with that is it's cheaper to buy more spinning disk than it is to buy a brand new tape array that will last for 10-15 years and be able to store a few PB of data. Think of it as initial vs. incremental cost.

But the part about employees leaving and not knowing what to do with their data is a big one. I'm sure there's leftover data from when I parted ways with my previous employer - I was there for 11 years and did a lot of work for them during that time, with data scattered all over the place. But since I'm gone there's no way they can ask me to come back and help, so all they have is what's left and if they delete any of that they have no idea what they're going to lose.

Re:Research data by mrchaotica · 2015-01-13 03:33 · Score: 2

Research data really ought to just get published with the paper. Then (A) it's easier to peer-review / reproduce / verify the research, and (B) storing it becomes somebody else's problem. As Linus said, "Only wimps use tape backup: real men just upload their important stuff on ftp, and let the rest of the world mirror it ;)"

--
"[Regarding the 'cloud,'] ownership was what made America different than Russia." -- Woz

Always delete by smooth+wombat · 2015-01-13 01:32 · Score: 1

This is why I kept telling people to delete emails. Don't save everything, get rid of it. Set Outlook to auto delete on exit and don't give people the option to delete.

But no, they whine and whine that they need to keep stuff even though they haven't looked at it in five years and the project it referred to is gone.

Delete, delete, delete.

--
We will bankrupt ourselves in the vain search for absolute security. -- Dwight D. Eisenhower

Re:Always delete by bill_mcgonigle · 2015-01-13 01:57 · Score: 1

Cute. Meanwhile, if they live under any kind of fascist government regime, they usually have minimum seven-year retention policies on many kinds of data, or risk facing prison sentences.
I know, if she didn't want her emails stolen, she shouldn't have been using such a cute ad-dress.

--
My God, it's Full of Source!
OUTSIDE_IP=$(dig +short my.ip @outsideip.net)
Re:Always delete by nospam007 · 2015-01-13 02:51 · Score: 1

"This is why I kept telling people to delete emails. Don't save everything, get rid of it. Set Outlook to auto delete on exit and don't give people the option to delete."
Exactly! There is no philosophical wisdom in there that could benefit mankind.
Only dickpics.
Re:Always delete by Russ1642 · 2015-01-13 03:23 · Score: 1

I keep personal emails. However, I've worked at companies where they had a strict email deletion policy at 3 months. If the emails don't exist they can't be used in investigations against them. And it makes sense. After 3 months most people forget what they were conversing about anyway and can't provide the necessary context for emails, so they can be highly misleading and are a significant liability for the company.
Re:Always delete by pla · 2015-01-13 10:18 · Score: 1

After 3 months most people forget what they were conversing about anyway

Yes, they do, except I draw a different conclusion from that than do you.

I get questions literally on a weekly basis along the lines of "Why the hell did you do it that way?"

I find it somewhat satisfying to answer by simply forwarding the asker an email, usually their own, in which they insisted I do it that way, typically over my objections that it wouldn't work correctly "that way."

I have a simpler policy by 0123456 · 2015-01-13 01:34 · Score: 4, Insightful

I don't do or email anything that would "cause enormous public embarrassment" to the company if it got out.

Re:I have a simpler policy by davidwr · 2015-01-13 03:34 · Score: 1

It wouldn't have occurred to you to check if a thing is legal if you didn't know that it was unethical, otherwise you would have just thought that it was obvious that it was OK.
Um. Nope.
There are plenty of things that are ethical and even commendable on their face but due to a law, contract, or some other thing that you, the employee or manager, don't know about, it may be illegal or violate a contract if you do it.
In a well-run company, upper management will tell everyone the broad areas that must be run through legal/finance/upper management for approval, and make sure the approving departments/managers have all the information they need to make quick, correct decisions on almost all cases. In a very-well-run company there may even be do-it-yourself pre-screening checklists, so if the "broad area" is "doing business with a foreign country or foreign national who isn't also a US citizen or permanent resident" the checklist can give the employee a quick "it's okay/it's not okay/ask legal" answer.

--
Knowledge is how to play a game, intelligence is how to win, wisdom is knowing what game to play.
Re:I have a simpler policy by bws111 · 2015-01-13 04:07 · Score: 3, Insightful

So you never give an honest negative opinion about a product under development, for instance? You would never report any suspicion of wrong-doing? You would never give an opinion of a fellow employee if asked?

I worked for a corp with a 30 day retention policy by laird · 2015-01-13 01:34 · Score: 1

I worked for one corporation with a 30 day email retention policy, and the servers were configured that way. After that, anything of importance was supposed to be printed and filed for future reference. And this was in the 90s. Of course, people still had email on their desktops, etc., but I'd guess it let them respond to lawsuits' discovery in a more limited manner than trawling through all email ever sent by anyone about anything, limiting risk of embarassment. I follow the logic, but pragmatically speaking it's convenient to have past emails easily searchable.

--
Enable 3D printed prosthetics!

Sony could have archived by Karmashock · 2015-01-13 01:34 · Score: 4, Insightful

You don't need to keep everything on line. That was the thing that was so stupid. They had everything online with a common key to access everything.

First, Sony knew they had a problem over a year ago. They're refusing to admit it but everyone knows.

Second, they way Sony laid out their network was dumb. They should have compartmentalized and archived.

Third, when you know you are getting hacked don't just sit there with your thumb up your ass. Do something about it.

--
I've decided to stop wasting my time responding to AC trolls/sockpuppets... so if you want a response from me... login.

Re:Sony could have archived by Anonymous Coward · 2015-01-13 01:50 · Score: 2, Interesting

Sony have had problems in 2008 via SQL injection attacks. 2011, same thing, but this one resulted in the PSN going down for a month. 2014, oops, another SQL injection attack, but this one was covered up, Sony have managed to get the marge media outlets to remove items mentioning.
Re:Sony could have archived by Karmashock · 2015-01-13 02:43 · Score: 1

I've noticed. It is sort of sad how corrupt the media has become. They don't even realize it themselves. You talk to them, and I do talk to newspaper people on occasion... and they just don't see it.

--
I've decided to stop wasting my time responding to AC trolls/sockpuppets... so if you want a response from me... login.
Re:Sony could have archived by Karmashock · 2015-01-13 04:57 · Score: 1

I could have personally put a tourniquet on it in under a week.
And I say this as someone that manages a large network at a major corporation. It is really not that hard.
You might have to get drastic but when your house is on fire, I don't want to hear whining about people skuffing up your carpet.
A really quick example of something that would work instantly:
Terminal servers. First, isolate the servers getting pilfered. And then plot a few terminal servers down in that network and then give everyone that needs access to that information a login credential to the terminal servers. No file sharing between the system. If you want to access the data... then do so. No file transfers. No executable code transfers. No script transfers. You can still print from the terminal to the remote user's workstation.
That is an EXTREME solution. But anyone that tells me these things are hard or take a long time is either trying to avoid mussing up someone's hair or they're not aware that there are always drastic solutions. You do not let an on going hack continue for a year like that. It is indefensible incompetence.

--
I've decided to stop wasting my time responding to AC trolls/sockpuppets... so if you want a response from me... login.
Re:Sony could have archived by rainer_d · 2015-01-13 08:11 · Score: 1

Someone needs to make a wiki-page about all those times Sony has been hacked.
They're already too many to keep track of in your head

--
Windows 2000 - from the guys who brought us edlin

Re:Dear Nazis (Scöre 5: Redundant) by Anonymous Coward · 2015-01-13 01:36 · Score: 1

Frosty godwin

I have another idea... by Floyd-ATC · 2015-01-13 01:38 · Score: 5, Insightful

If huge corporations started following some basic legal and ethical guidelines, they wouldn't have to worry so much about old documents getting leaked. If your business strategy is to f##k your customers and/or your partners, sooner or later you will pay for it, documents or no documents.

--
Time flies when you don't know what you're doing

Re:I have another idea... by UnknownSoldier · 2015-01-13 02:26 · Score: 1

What, Sony respect their customers?
BWAHAHAHA
That's a good one!
Corporations only care about short-term profit; they forget their long term reputation because it can't be written down in the books.
Re:I have another idea... by swillden · 2015-01-13 07:56 · Score: 1

If huge corporations started following some basic legal and ethical guidelines, they wouldn't have to worry so much about old documents getting leaked. If your business strategy is to f##k your customers and/or your partners, sooner or later you will pay for it, documents or no documents.
This is an appealing idea, but it's just not true in the world we live in. People make mistakes, say things they shouldn't, joke about things they shouldn't. Worse, attorneys are masters at finding evil implications and subtexts even where they don't exist. It's very easy for companies who are really trying to be good corporate citizens, serve their customers well, treat partners fairly and generally behave well to end up shafted by something that turned up in discovery in a malicious lawsuit.
To reduce the chance of that, the company's lawyers need to go through all of the retained data with a fine-toothed comb, checking every item to see if it needs to be turned over, and if some of it should be redacted. This process gets insanely expensive when retained data is measured in terabytes.
This is why good companies with competent legal counsel define and implement retention and destruction policies. Having a standard policy that you always follow means that data destroyed per policy is not destruction of evidence, but just housekeeping. Setting that policy to be relatively aggressive about destruction reduces the quantity of material available for discovery, so the attorneys don't have to wade through all of it. Even better, there is NO chance that something in deleted data can be twisted or taken out of context, or that some employee's joke or fit of anger could cost the company a huge settlement.
Of course, unethical companies are generally really aggressive about destroying old data, for exactly the reason that per-policy destruction of evidence is not, legally, destruction of evidence. One way to tell the difference is to look at the policy. Most companies retain data for six months to a year, and recommend to employees that they be careful what they say in stored communications. Shady companies often have policies mandating destruction in as little as 30 days, as well as a strong corporate culture of never putting anything important in storable form.

--
Note to ACs: I usually delete AC replies without reading them. If you want to talk to me, log in.
Re:I have another idea... by Floyd-ATC · 2015-01-14 21:25 · Score: 1

Here's a thought. What if you accidently keep one bit of information that could be turned against you when out of context, and you diligently deleted the very documents that would have shown the redeeming context? If one of your employees step out of line and produces something that could be turned against you, then act on it. If the paper trail shows you did, then you have nothing to fear from sensible people. Never trust a company which goes to great length to cover up their past. Lawyers and media? Those will attack you anyway, with or without evidence. Stop feeding them.

--
Time flies when you don't know what you're doing
Re:I have another idea... by swillden · 2015-01-15 09:48 · Score: 1

Here's a thought. What if you accidently keep one bit of information that could be turned against you when out of context, and you diligently deleted the very documents that would have shown the redeeming context?
Then you explain the context, and have the relevant people testify about their recollection of it. With no documentation to trip them up, and with the benefit of hindsight. This actually happens a lot, when some of the documentation still exists while other documentation has already been deleted.

If one of your employees step out of line and produces something that could be turned against you, then act on it. If the paper trail shows you did, then you have nothing to fear from sensible people.
That assumes you recognize it before it becomes a problem. Which, besides being difficult on its own, raises the question of who the "you" is. An e-mail communication between two employees, neither of whom sees a problem, won't ever come to the attention of management, much less the legal staff. Not until a discovery search, at which point it's far too late. Acting at that point could actually make things worse.
Perhaps you want management and legal to be responsible for reading every e-mail, chat and document sent or received by any employee? That would be even more insanely expensive than trawling through terabytes of old data because in the discovery case the searchers at least have some notion of what they're looking for and can ignore much irrelevant documentation. Not to mention the chilling effect on employee productivity and/or morale.

Never trust a company which goes to great length to cover up their past.
Agreed. But having a reasonable retention policy is not going to "great length".

Those will attack you anyway, with or without evidence.
Without evidence, suits get dismissed and media gets bored and moves on.

Stop feeding them.
Yes, that's exactly the point of a retention policy, to eliminate litigious lawyer-feed.

--
Note to ACs: I usually delete AC replies without reading them. If you want to talk to me, log in.

Risk Management by jbmartin6 · 2015-01-13 01:43 · Score: 2

This is the most effective form of security, and often the hardest. If you have nothing of value, there is no risk. Of course that ideal state is impossible but that doesn't mean opportunities to reduce risk by reducing the impact are overlooked.

--
This posting is provided 'AS IS' without warranty of any kind, implied or otherwise.

Best place ever for records retention policies by kilodelta · 2015-01-13 01:45 · Score: 1

Was when I worked for the RI Secretary of State's office. The Archives divisions prepared all sorts of data retention schedules and we used them.

Re:Best place ever for records retention policies by davidwr · 2015-01-13 03:51 · Score: 1

Were they sensible or was there a lot of "this seems stupid, but it's policy so we'll follow it" going on?

--
Knowledge is how to play a game, intelligence is how to win, wisdom is knowing what game to play.

Finally! by Applehu+Akbar · 2015-01-13 01:54 · Score: 1

A philosophical argument for those cheap Western Digital external disks.

Schools by ncmathsadist · 2015-01-13 02:12 · Score: 1

I work in a school. When a term or a year closes, I do a big deletion of email that becomes moot at the end of that term or school year. A year-end cleanout often ends up with my inbox being chopped about 75%. If you have frequent senders who send mails with temporary topicality, you can sort by sender and get rid of their older mails.

Many have the policy, what's the practice? by frooddude · 2015-01-13 02:17 · Score: 1

Every company I worked for had a specific retention policy. What they didn't have is any automated means of enforcement.

While a central server hack will get the stuff that's most easily handled automatically, lawsuits get to dig into the ugly bits that are still hanging out on the laptops of the employees waiting to be discovered.

Risk management? by mark_reh · 2015-01-13 02:17 · Score: 3, Insightful

I think a lot of company communication retention policies are based on risk management. They are afraid to delete anything in case they get sued. Depending on the industry they may be required to retain data by law.

It seems this can work equally in their favor or against them.

I have worked for a lot of big companies and realized from day one of email that there is literally zero privacy. Once you hit the send button you have no idea who is going to read what you wrote. I have always refrained from putting anything in a company email (or in a personal email accessed via company networks) that could come back and bite me in the ass. No jokes, no comments about coworkers, the boss, or management in general, no comments about the futility of the project I'm assigned to, etc. Keep it strictly business. Likewise for telephone conversations where one or both ends are in the company phone network. Likewise for web browsing and searches.

Anyone who thinks any form of communication at their place of employment is private is an idiot. Always assume every word said, written, or typed will be heard/read by someone who was not intended to be part of the communication, either now or in the future.

Re:Risk management? by mark_reh · 2015-01-14 00:06 · Score: 1

You apparently have not been reading the news in the last couple years.
There is no such thing as privacy, anywhere. All computer and phone communications are being vacuumed up and can eventually be used to justify doing anything they want to you, from stealing your girl to having you assassinated.
Don't be a fool!

Delete after one year, unless flagged by gurps_npc · 2015-01-13 02:21 · Score: 1

My company has a policy - anything left in your inbox more than a year gets deleted.

If you think it is necessary to save it, create another folder and move it there.

My personal emails I just keep forever, but work stuff get's deleted.

--
excitingthingstodo.blogspot.com

The question was asked a very long time ago by fustakrakich · 2015-01-13 02:23 · Score: 1

Why didn't you burn the tapes?

He says because he was under medication...

--
“He’s not deformed, he’s just drunk!”

Wheatons Law by milgner · 2015-01-13 02:25 · Score: 1

Don't be a dick. Should be easier to manage than a complicated document-deletion-strategy.

Sarbanes-Oxley Act says only delete within policy by stiggle · 2015-01-13 02:44 · Score: 1

The Sarbanes-Oxley Act says you should retain company/corporate documents, and emails are company documents despite the triviality on the comments within.

So by all means delete the emails, and then when the SEC comes knocking and asks about the deleted emails you've got to convince them they were only pics of cute kittens off the internet and not insider dealing. So to cover yourself you backup and retain everything for a period as designated in company policy.

So ensure you have a short retention policy.

You'd think they would have learned by now by Virtucon · 2015-01-13 02:46 · Score: 1

After all the e-mails that were flouted around in the Microsoft Antitrust case, you would have thought that businesses would have caught on by now. Having an active retention policy and following it does provide some collective amnesia because in any litigation situation if the information still exists it's discoverable. Personally I don't want someone delving around my e-mails from 20 years ago but unfortunately it has happened to me. The last thing you want is to be sitting in a deposition while opposing council tries to dissect your intonations and try and determine the definition of what "is" is. If you don't need it, delete it.

--
Harrison's Postulate - "For every action there is an equal and opposite criticism"

Re:You'd think they would have learned by now by davidwr · 2015-01-13 04:04 · Score: 1

The last thing you want is to be sitting in a deposition while opposing council tries to dissect your intonations and try and determine the definition of what "is" is
The flip-side is that you don't want opposing council to have copies of cherry-picked email that their client kept that makes you look bad and not be able to produce the emails that put those cherry-picked emails in the proper context, one that proves the complaint against you is bogus.
The bottom line: If you retain stuff, you may be screwed, if you don't, you may be screwed.

--
Knowledge is how to play a game, intelligence is how to win, wisdom is knowing what game to play.

The economics are against it by Espen · 2015-01-13 02:56 · Score: 2

The big problem with this is that storage is too cheap. ie. it's cheaper to keep buying more storage than to spend the time deciding on what to retain and what to delete.

And this was a point made 5 years ago, not by me, but a senior exec from storage division of a technology giant developing new ways of increasing hard disk capacity!

Retain docs they win, destroy them you lose :( by davidwr · 2015-01-13 03:01 · Score: 1

As others have already alluded to, you are screwed if you retain and screwed if you don't.

If you retain data "forever" then you can be subpoenaed "forever."

If you destroy documents or entire categories of documents on a regular schedule and you are sued or prosecuted for crimes that have very-long statutes of limitations (certain tax frauds, for example), you won't have documents that exonerate you.

If you cherry-pick which documents to destroy, or destroy them (other than on a longstanding destruction schedule) shortly before a prosecution or lawsuit, you'll be accused of deliberately destroying evidence.

--
Knowledge is how to play a game, intelligence is how to win, wisdom is knowing what game to play.

Re:I worked for a corp with a 30 day retention pol by aaarrrgggh · 2015-01-13 03:14 · Score: 1

I get about 10GB of email a year, and do my best to purge what I can up front, but also try hard to save everything. Most of the girth is due to file attachments... And yes they really should have been saved to the file server, but sometimes it is missed. Little obscure pieces of information often come up as being useful years later-- one recent example was trying to figure out how certain financial information was derived 5 years ago.

But the bottom line is 99% of the information stored will never be used again after 6 months. Automatic expiry assignments would be cool, but wow that would be tough to track.

90-day data destruction? Blame the lawyers by davidwr · 2015-01-13 03:16 · Score: 1

A common answer to the question "why do you/your company do something that seems so utterly stupid" is "because our insurance company/contracts/applicable laws make us do it and/or our lawyers tell us that it's better if we do it that way."

I've worked for companies that had short data-retention policies. I'm going to go out on a limb and say that most rank-and-file employees whose productivity depended on holding on to old data probably found some way to do so. Maybe they printed out all emails except the obviously ephemeral. Maybe they exported them. Maybe they bulk-forwarded them to themselves every 89 days. Maybe they [insert other easy solution that worked for them]. You get the idea.

--
Knowledge is how to play a game, intelligence is how to win, wisdom is knowing what game to play.

Document Retention Rules. by mschiller · 2015-01-13 03:30 · Score: 5, Insightful

Rules:
1) Don't delete other people's stuff. IT workers / Lawyers I'm looking at you. You should never delete something without a specific verbal or written OK from the document owner. When you automatically delete my stuff I find ways around your scripts.. It does no good, because I WILL retain my records indefinitely. So just stop wasting my time and leave my stuff alone.... The only justifiable reason to delete my files is: the Server harddrive is full. But it costs less to buy a freaking hard drive, than to decide what documents can be deleted...
2) Document Retention Policy: Min: Legally required length of time Max: FOREVER. See Rule #1. You should NEVER touch my inbox, Network Drive, or any other place I store documents with an automated script, deletion of files should only occur by hand by the document owner...
3) Don't do unethical things. You don't have to worry about what's in the document if you did the right thing in the first place... You should fire any employee who is unethical and as a corporation take responsibility if those unethical things embarrass the company. This is what reviews (code, business, technical etc) are for, you're supposed to check that your employees are following good practices... Then that circumspect code, business practice etc, would've never seen the light of day in the first place. When a corporation fails that they shouldn't hide it, they should admit it and take their licking...

My email contains important technical information that I may need for years after I composed that email. When you delete it for me. You waste valuable company time as I recreate the exact same information I already "knew" which may have never made it into a formal document.

JUST STOP IT. There is nothing illegal about keep business documents forever. There is something highly unethical (and possibly illegal!) about a practice that stems from the idea of destroying evidence. So stop it. The ethical, right, and more reasonable thing to do is enforce from the IT perspective the minimum retention policy. After that, (ie when you delete) should be based on business need: 1) I really will never need this again and 2) The storage costs don't justify the (low) possible future return. Since storage is CHEAP, #2 should pretty much never come into play...

Re:Document Retention Rules. by mschiller · 2015-01-13 06:51 · Score: 2

Effort??? *blink* *blink* *blink*. I suppose the IT person does backups 100% manually??? Sheesh the effort should be marginal, and if the file isn't changing it's not like you need to re-back it up every week or whatever. So let's see:
For each TB of *stale* documents:
1) ~$250 for Tapes (1 local + 1 offsite)
2) $100 for hard drives (1 local online + 1 offline backup)
3) 20 minutes of IT person support (multi-tasking, since all he has to do is plug in hard drive or insert tape and press go) = $40 (assumes $120/hr effective rate)
This assumes you have a small shop, without automated tape loading etc....
So It'll cost a whopping $400 to have 3 backups of the data and have a hard drive ready to spin up if the data is needed...
Yes it might be more complicated in an enterprise level house. But seriously, the price seems reasonable for what you get. I've generated well less than 1TB of documents/emails/etc in 12 years of engineering... Yet I've lost at least a week of accumulated engineering time due to retention policies deleting my email..... 1 week of Engineering time (~$100/hr effective rate) is $4000. Seems like $400 is a good investment to me!
[Note this assumes that DATASETS are treated differently. Transitory data such as: Compilation runs, Recorded Engineering data, etc should never be backed up in the same way as a document. I've probably generated ~1PB of datasets But who needs 1000's compilation runs most of which ended in errors or failed miserably when ran through testing. With the exception of released code, these are useless after a few months because I probably won't be able to figure out what the heck I was debugging anyway. But transitory datasets of this nature rarely fall victim to the data retention policy anyway, precisely because they are transitory... I don't keep the builds. I use a revision control system to allow me to recreate the builds if I needed them for some reason....]
Re:Document Retention Rules. by MozeeToby · 2015-01-13 07:28 · Score: 1

My email contains important technical information that I may need for years after I composed that email.
Why the hell are you storing important technical information on an email server? That's a much bigger wtf than IT and legal doing their jobs.
Re:Document Retention Rules. by mschiller · 2015-01-13 07:50 · Score: 1

Simple...
Email = Memo or Engineering Notebook from yesteryear
Let's say your in the early design phase for an engineering program
You've come up with 5 different ways to approach a problem. You prepare some thoughts about how to solve the problem in those 5 ways. You type them up (say 1 page per an idea) and send them to your colleague for their thoughts. They aren't formal documents and you aren't holding a meeting over it (so theres no powerpoint slides). But you've done some calculations, thought about pro/cons of each potential approach...
The project eventually goes done path 2, so you discard the other 4 ideas and generate formal documentation for path 2. 5 years later, a new derivative project with different requirements comes along. You realize the idea you had 5 years earlier is a perfect fit for the new problem. So you do a 5 minute Email search, and BAM you just reminded yourself of your thoughts from 5 years earlier
It's good company policy to RETAIN my email. For the sole purpose that my emails contain useful tidbits like this....
Sure I could put them in documents on the server... But the retention policy would still delete them because these sorta things aren't tied to a released formal document.
Re:Document Retention Rules. by neurovish · 2015-01-13 08:05 · Score: 1

Sorry, if it is on the company's servers, then it is the company's data and not yours. You are not as important to the company as you think you are. If you *actually* are, then they will put you in an exception list. If the policy is causing the company to lose a lot of money from all the "waste of valuable company time", then it will either change the policy or go out of business.
Re:Document Retention Rules. by Alan+Shutko · 2015-01-13 08:34 · Score: 1

My email contains important technical information that I may need for years after I composed that email. When you delete it for me. You waste valuable company time as I recreate the exact same information I already "knew" which may have never made it into a formal document.
The counterargument is that it's cheaper for you or someone else to reinvent that wheel than it would be for lawyers to pour over terabytes or petabytes of data that have been stored forever in the event of a lawsuit discovery.

This is a good opportunity! by MagickalMyst · 2015-01-13 03:34 · Score: 2

What I see is the opportunity for evidence of wrong doing to be leaked to the public.

Sony is "embarrassed"? Sony is a corporation, not a human. As such it cannot be embarrassed.

But it can be found guilty of it's crimes, as can any other corporation.

Let the madness begin!

--
Political correctness is really just herd psychology pushed by insecure people who desperately seek social conformity.

Re:Wrong lesson by davidwr · 2015-01-13 03:57 · Score: 1

The lesson is always assume whatever you put in a computer will eventually become public.

I think it will be quite useful if my entire life, from birth to death, became public 100 generations (or 2000 years, whichever comes later) after I die. Apply that to a representative sample of every culture that ever lived or will live and it would be a boon to anthropologists 2000 years from now.

However, once you start talking about making my life public within a few generations of living memory, or worse, within living memory, that could get dicey and cause real harm to specific people who are still alive ("your great-great-great-great-great-great-grandfather screwed my ancestor out of a plot of land, I'm going to kill you and all of your relatives" kind of thing).

In cases where knowing my life 2000 years from now is likely to cause or inflame ancient-but-still-living hatreds (think: some of the conflicts in and around the location of the modern state of Israel), push the date back further until this is no longer an issue. In other words, 2000 years/100 generations may be too short of a time before my life can be made public without hurting people.

--
Knowledge is how to play a game, intelligence is how to win, wisdom is knowing what game to play.

Cardinal De Richelieu on six lines by Paul+Fernhout · 2015-01-13 04:46 · Score: 2

"I think you know we now live in a world where you can make a fairly benign statement and their exists a very real possibility someone with an axe to grind may strip it of its context and use it against you. "

Nothing new; see Cardinal De Richelieu (1585 -- 1642): "Give me six lines written by the most honorable person alive, and I shall find enough in them to condemn them to the gallows."

As a socially-minded countess who lived through WWII told me once somewhat tounge-in-cheek yet also very seriously (paraphrasing, and she probably got it from elsewhere in those times):
"If you think, don't talk;
If you talk, don't write;
If you write, don't publish;
If you publish, don't sign."

So, again, this is not a new issue. That is one reason for the protections in the US constitution against "fishing expeditions" in people's lives. "Selective enforcement" of the law or "selective scrutiny" of political adversaries is a corrosive thing in a democracy.

But the problem is, in order to make social change on a broad scale, such as Martin Luther King was involved with regarding civil rights, is that you have to think, talk, write, publish, and sign. And as I've said before, that is the problem with an emphasis on security through "encryption" as opposed to community if you are interested in social change, because in order to make social change you need to spread a message generally in a very public and committed way. Related comments by me:
http://slashdot.org/comments.p...
http://p2pfoundation.net/backu...

--
A 21st century issue: the irony of technologies of abundance in the hands of those still thinking in terms of scarcity.

Re:Cardinal De Richelieu on six lines by turbidostato · 2015-01-13 05:24 · Score: 1

"Nothing new; see Cardinal De Richelieu (1585 -- 1642): "Give me six lines written by the most honorable person alive, and I shall find enough in them to condemn them to the gallows.""
Yes. And the best defense here is:
1) Don't allow for Richelieu-level authority (aka dictators) to rise.
2) When confronted with this six line text, be ready to offer the jury the other 594 lines of text that were deleted so they can see them in context.
Regarding point 2, remember that even if you have in place an "aggressive data deletion policy" as per Schneier words, this doesn't mean your foe will play by the same rules, and then you will have private yourself of your best line of defense against him.

Martin Lomasney had it right by paiute · 2015-01-13 04:47 · Score: 1

Perhaps people will now be more circumspect in what they put in emails. As Martin Lomasney allegedly said, ""Never write if you can speak; never speak if you can nod; never nod if you can wink."

--
If Slashdot were chemistry it would look like this:Cadaverine

Mod parent up insightful! by Paul+Fernhout · 2015-01-13 04:57 · Score: 1

Well said, turbidostato, well said!

See also a book by a founder of MasterCard which even included a section on the importance of "open books [for accounting]" that can be inspected by all employees and customers:
"Honest Business" By Michael Phillips
http://www.amazon.com/Honest-B...
"An inspirational guide to ethical business practice explains how to create and manage a small business that emphasizes openness, personal integrity, and community involvement as the keys to success."

Another related thing is Dee Hock's (founder of Visa) work on the Chaordic Commons as value, purpose, and principles-driven fractally-organized organizations:
http://en.wikipedia.org/wiki/C...
http://www.griequity.com/resou...

That said, I have a lot of respect for Bruce Schneier, especially for writing stuff like this:
"The War on the Unexpected"
https://www.schneier.com/blog/...
"We've opened up a new front on the war on terror. It's an attack on the unique, the unorthodox, the unexpected; it's a war on different. If you act different, you might find yourself investigated, questioned, and even arrested -- even if you did nothing wrong, and had no intention of doing anything wrong. The problem is a combination of citizen informants and a CYA attitude among police that results in a knee-jerk escalation of reported threats...."

--
A 21st century issue: the irony of technologies of abundance in the hands of those still thinking in terms of scarcity.

Re:Mod parent up insightful! by turbidostato · 2015-01-13 05:09 · Score: 1

Curious that Schneier sees that "The problem is a [...] CYA attitude among police that results in a knee-jerk escalation of reported threats...." but still sees no problem in the same CYA attitude when it is the corporations the ones supporting it.

"Netscape engineers are weenies!" by Anonymous Coward · 2015-01-13 05:18 · Score: 1

I work for a company that has very strict data retention policies. As a matter of fact one of the things you sign when hired is an explanation of these policies and that you both understand them and will adhere to them.

After the legal mumbo jumbo there is a paragraph that basically says "since we retain this stuff for years never put something in an email or code comment that may embarrass you in the future."

At the time it made me think of the MS engineers who used "Netscape engineers are weenies!" as a decoding phrase in a .dll I am sure it was good for a laugh in the lab but they looked pretty stupid when it got exposed.

Anytime I warn someone about something they have written that they shouldn't have - that incident always comes to mind.

There is no sure way to delete by Tony+Isaac · 2015-01-13 07:02 · Score: 1

Once you type words into a computer, whether as email text or documents, you have to assume they will be retrievable by someone at any point in the future. Even if your company has automated retention policies, somebody could easily forward or save whatever you write, an email server somewhere could retain what you sent, a backup system could archive it.

Document retention policies are like school zero-tolerance rules. They are stupid to begin with, and they don't achieve the desired result.

Slashdot Mirror

The Importance of Deleting Old Stuff

109 of 177 comments (clear)