Date: 2025-10-06 11:25 am (UTC)
aldabra: (Default)
From: [personal profile] aldabra
2. How can you have a data structure that doesn't allow for backups? Why wouldn't a recursive search-and-copy work? I mean, I am right now trying to design a backup approach for some software we are using and it doesn't work in the places where we can't see and don't own the proprietary data "structures" they are using, but the Korean government presumably could in principle see what they were working with? Those 750,000 civil servants are saving files in a directory structure? You can traverse that.

Date: 2025-10-06 12:10 pm (UTC)
simont: A picture of me in 2016 (Default)
From: [personal profile] simont
Off the top of my head: if a lot of the data is confidential and any given person is only allowed to access the parts their particular job gives them a need to know, then there might be nobody who can do a single recursive trawl of the whole filesystem and catch everything? So instead you'd have to cat-herd a ton of smaller sub-organisations or perhaps even individual people into each arranging to run reliable backups of their own little bit. And I expect that would go about as well as actual cat-herding: most of those people would hear "you must do this", interpret it as "you must have sorting this out on your backlog somewhere", and then prioritise everything else above it for years on end.

Of course, someone in the datacentre with physical access to the machine could surely back up the whole lot at the layer below per-file access control – just image the whole hard disk. But it might very well be arranged that when the system is running normally nobody gets full access to everything, so that you couldn't do that without a full shutdown and reboot into Special Administrator Mode. If you were storing that much sensitive data, that might look like a good idea, to reduce the risk of a single bribed, blackmailed or disgruntled official exfiltrating the whole lot in one go. You might also make an admin-mode reboot require a huge amount of special authorisation paperwork from three branches of government and be illegal as hell to do otherwise.

Reliably backing up secrets is hard: secrets should be in as few places as possible, but backups should be in many, and there is a tradeoff. Even I – with a much smaller computing infrastructure handling at least one or two moderately important secrets – struggle with deciding how best to do it. And I don't have soundbite-influenced politicians trying to second-guess my technical decisions!

Not saying that mistakes were not made. But I don't see this as a totally incomprehensible foulup. On the contrary, an all too plausible one.

Date: 2025-10-06 01:20 pm (UTC)
bens_dad: (Default)
From: [personal profile] bens_dad
Who do you trust to synchronised the keys between datacentres ?

Remember that the South Korean president was impeached for declarjng Martial Law https://en.wikipedia.org/wiki/2024_South_Korean_martial_law_crisis then the PM was suspended for failing to appoint some new judges
(overturned by a court) https://edition.cnn.com/2025/03/23/asia/south-korea-court-reinstates-prime-minister-martial-law/

Date: 2025-10-06 01:21 pm (UTC)
simont: A picture of me in 2016 (Default)
From: [personal profile] simont
I agree that encryption is part of the solution. Even so, the encryption key also needs to be backed up, and then you need to try to arrange that the offsite copies of the key and the encrypted data at least aren't stored together, and ideally, stored in such very different places that it would be really hard to get at both together.

But also, encryption is even more likely than ordinary data storage to be misunderstood by either politicians or the people they're trying to impress, leading to misguided attempts to interfere!

Date: 2025-10-06 12:24 pm (UTC)
bens_dad: (Default)
From: [personal profile] bens_dad
How can you have a data structure that doesn't allow for backups?
The article says no external backups. If the system is heavily loaded, keeping a remote backup synchronised with a live system is a tall order.

don't own the proprietary data "structures" they are using, but the Korean government presumably could in principle see what they were working with?

Horizon suggests to me that we cannot assume that the Korean government would have practical access to the proprietary data "structures". It could easily be mediated through the suppliers.

Those 750,000 civil servants are saving files in a directory structure? You can traverse that.

I don't know much about databases but IIUC when I left UCAM, MISD the merging university central IT teams had storage systems based on a database with no separate underlying filesystem. It isn't clear to me that those would have had a directory structure.

In my experience, cost per unit of storageincreases with size of the collection, so I would not be surprised to find that a nationwide system has cut some corners.

Re: 1.

Date: 2025-10-06 11:28 am (UTC)
channelpenguin: (Default)
From: [personal profile] channelpenguin
Very important. Means it's provably real, can be detected with high confidence and has a plausible mechanism that might be amenable to treatment. This could definitely be helpful for those dealing with disbeliving doctors, employers and insurers. Should. I hope, anyway.

Date: 2025-10-06 11:31 am (UTC)
channelpenguin: (Default)
From: [personal profile] channelpenguin
2. That's not Cloud Storage, that's On-Prem

Date: 2025-10-06 11:54 am (UTC)
channelpenguin: (Default)
From: [personal profile] channelpenguin
Ok. Sure. I get you. I stand corrected.

It was a data centre. A private one, it seems. With no off-site backups. For gov, that's kinda unbelievable, but hey. Back in my days at BR, we had 2 data centre sites, pretty much hot swappable and a 3rd "secret" site (rumoured to be in Wales).

To me, "Cloud" implies one of the big players with all that offers. But yeah I'm sure there's ways to fuck that up too.

And too many people back in the day never tried actually restoring their backups from time to time...

Date: 2025-10-06 12:37 pm (UTC)
bens_dad: (Default)
From: [personal profile] bens_dad
Network rather than storage; the story I heard was that some time (last century, I believe) Cambridge had problems with the link to JaNET, the nation university network and eventually achieved redundant links with two different suppliers.

A JCB (backhoe?) managed to break both links, because the two suppliers were using the same trench !

The entertaining part was that the break was in Bury-St-Edmunds, tens of miles in the wrong direction from the direct route.

Date: 2025-10-06 11:53 am (UTC)
bens_dad: (Default)
From: [personal profile] bens_dad
Unless they have a very fast network, there may be (possibly unreliable) caches of data nearer to the users.
Whether reliable data can be reconstructed from these (whether quickly or cost effectively) may be less clear.

October 2025

S M T W T F S
    1 2 3 4
5 67891011
12131415161718
19202122232425
262728293031 

Most Popular Tags

Style Credit

Expand Cut Tags

No cut tags
Page generated Oct. 6th, 2025 02:45 pm
Powered by Dreamwidth Studios