IP adresy v kybernetické bezpečnosti
Title in English | IP addresses in Cyber Security |
---|---|
Authors | |
Year of publication | 2015 |
Type | Article in Periodical |
Magazine / Source | Revue pro právo a technologie |
MU Faculty or unit | |
Citation | |
web | Open access časopisu |
Field | Law sciences |
Keywords | Personal Data Protection; Cyber Security; Personal Data Processing; Legitimate Interest of Data Controller; CSIRT |
Attached files | |
Description | Cyber Security Response Teams (CSIRT/CERT) are processing information on the course of protection of information networks. IP addresses of devices involved in the security incidents are the key element for traffic analysis and other techniques used for investigation of incidents. In the first part, this article summarises and briefly describes the function of CSIRT teams. An analysis of "personal data" is provided in the second part of the article. It reaches the de lege lata conclusion that IP addresses are personal data. Therefore, CSIRT teams fall within the scope of the directive 95/46/EC and have to fulfil all the duties prescribed for data controllers. The third part of this article discusses way to achieve lawful processing of personal data and further explores the possibility to use the legitimate interest of the controller or a third party for this purpose. |
Related projects: |