Petraeus affair reveals risks of email
Computerworld - The scandal that caused the resignation of Gen. David Petraeus, one of the country's most decorated military professionals, has a lot of observers wondering: If the head of the CIA can't figure out how to keep his emails private, do the rest of us even stand a chance?
In a word, no -- or at least not without some real planning. "If you're just a normal person sending email, then it's pretty easy to trace," said Keith Jones, a computer forensic investigator. Every server an email hits en route to its destination "puts a little identifying line in there," Jones explains. "It's like a chain of custody, showing who had the email."
Petraeus had reportedly used a pseudonym to set up multiple email accounts that he used to send his mistress messages, including some on Gmail. One was a shared account that the two used to communicate via messages that they left in a drafts folder but never actually sent.
The idea was that if they left emails in the drafts folder -- known as an electronic drop box -- the messages wouldn't leave a trail and would be difficult for anyone to find.
There are ways to hide the e-bread-crumb trail, Jones said. For example, an anonymizer, also known as an anonymous proxy, can hide the sender's identifying information by accessing the Internet on the sender's behalf. It's akin to enlisting someone to deliver an envelope for you, Jones explained.
But most people -- whether they're sending memos about corporate marketing plans or messages to mistresses -- don't think about using such techniques.
"Most individuals and businesses don't think twice about sending private or confidential information over email," said Patrick Moorhead, an analyst at Moor Insights & Strategy. "For work email, assume someone is reading your email, as someone or something probably is."
This version of this story was originally published in Computerworld's print edition. It was adapted from an article that appeared earlier on Computerworld.com.
Read more about Internet in Computerworld's Internet Topic Center.
- Social Media Education: The New Edge for Success Failure to train for social media will cost your business money. A recent report showed how digitally prepared companies can unlock up to...
- Social Media in Technology: A Unified Strategy for Success Find out how social media is sparking a new era of customer and industry-understanding in technology enterprises and how industry leaders are overcoming...
- How Network Connections Drive Web Application Performance Users around the globe, on all sorts of devices, expect Web applications to function as seamlessly as desktop applications. This paper discusses the...
- Agility & Scalability for Oracle EBS R12 and RAC on VMware vSphere 5 This white paper outlines extensive performance and scalability testing of Oracle EBS applications on a Vblock™ Systems with vSphere 5.
- Keep Servers Up and Running and Attackers in the Dark An SSL/TLS handshake requires at least 10 times more processing power on a server than on the client. SSL renegotiation attacks can readily...
- On Demand: Mastering the Art of Mobile Content Management Mobile device usage in the enterprise has skyrocketed, and it continues to escalate. IT must answer to users who demand access to their... All Internet White Papers | Webcasts
Our new bimonthly Internet of Things newsletter helps you keep pace with the rapidly evolving technologies, trends and developments related to the IoT. Subscribe now and stay up to date!