A TREND MICRO BLOG

Jan 6

Move over Big Brother, Sister ELENA is here

Rik Ferguson

Filed under: Encryption, Opinion, data protection | RSS 2.0 | TB | Tags: , , | 11 Comments

On the 1st of January this year German employers became subject to a new legal requirement, one that has their own Data Protection Authorities, Trade Unions and Civil Rights groups appalled.

ELENA knows where you live.

 

From the beginning of 2010 every German employer must now submit detailed information on a monthly basis to the so-called ELENA database, ELENA is an acronym for Eleketronischer Entgeltnachweis which loosely translates to Electronic Payslip. This sounds innocent enough until you consider exactly what information employers are obliged to provide.

The information will cover every worker’s salary, all absenteeism and their participation in strike action whether legal or illegal. This data is to be submitted to a central hub and from 2012 it will be used to determine whether to pay out or refuse social benefits. Plans are in place to relieve employers of the necessity of printing paper-based pay statements for their employees and instead issuing each worker with a plastic “jobcard” again by 2012. This card would then need to be produced should the holder ever need to apply for benefits allowing for data retrieval to determine eligibility.

Peter Schaar, the German Information Commissioner is reported as saying

“I’ve got a big problem with this. Until now, such information on salary declarations has not appeared, and their general storage in a central file is not legally nor constitutionally allowed.”

 

My own (German) wife’s reaction to this news was more succinct “I thought these people had agreed that the Stasi was a bad thing?”. The German blogs I could find seemed to be equally opposed to the idea.

For now though, the legislation has entered into force and the reporting has begun. We can only hope that appropriate measures have been taken to store the data in a secure location, using appropriate encryption, that the data entry and retrieval mechanisms are protected with strong encryption and multi-factor authentication and that the appropriate organisational policies and procedures have been put in place to protect this highly sensitive data.

It is an absolute certainty that a centralised data repository of this size and significance will attract the hacking and cracking attentions of criminals, script-kiddies and “hobbyists” alike.


Bookmark
| More

This entry was posted on Wednesday, 6. January 2010 and is filed under "Encryption, Opinion, data protection". You can follow any responses to this entry with RSS 2.0. You can leave a response here, or send a trackback from your own site.

11 Comments

  1. Wednesday, 6. January 2010 um 11:02 pm

    [...] This post was mentioned on Twitter by Rik Ferguson, pramatr. pramatr said: Move over Big Brother, Sister ELENA is here http://bit.ly/5NoRRj [...]

  2. Thursday, 7. January 2010 um 12:54 am

    That is a perverse and barbaric retrograde step. One of many throughout the union in recent years.

  3. Thursday, 7. January 2010 um 4:40 am

    its actually “elektronischer Entgeltnachweis” and i think i also remember hearing about other stuff being recorded as well such as “bad behavior.” And of course with all databases security is an issue, this one even more so with the amount of information they are storing.

  4. Thursday, 7. January 2010 um 6:27 pm

    [...] Ferguson Counter Measures Blog January 7, [...]

  5. Thursday, 7. January 2010 um 7:23 pm

    Hitler would be proud.

  6. Thursday, 7. January 2010 um 10:32 pm

    [...] Move over Big Brother, Sister ELENA is here » CounterMeasures. Share and Enjoy: These icons link to social bookmarking sites where readers can share and [...]

  7. Friday, 8. January 2010 um 12:22 am

    Great article, Rik.
    I believe it deserves wider circulation.
    I run a grassroots newspaper here in BC, Canada.
    I’d like to ask permission to print this piece in our February issue.

    Please contact me.

  8. Friday, 8. January 2010 um 1:46 am

    [...] Rik Ferguson [...]

  9. Friday, 8. January 2010 um 4:09 am

    Looks like the Germans will be the first to mass chipped. Some poor sod will lose his plastic benefits card and that will be all she wrote.

    Germans have short memories, it appears.

  10. Friday, 8. January 2010 um 4:58 pm

    This creeping fascism is happening everywhere…under the guise of “war against terror” and “global warming”. Obama is even worse than Bush….going after the US citizens by extending the Patriot act (remember..he said he would get rid of it..!!)

  11. Friday, 8. January 2010 um 6:28 pm

    We already have this in the US ,its called your social security card or number! We been chipped and didnt even know it!

Leave a comment

XHTML allowed tags: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>

Spam protection

© Copyright 2010 Trend Micro Inc. All rights reserved.
Legal Notice. Disclaimer