IT consultant in Germany fined for exposing shoddy security::Spotting a plaintext password and using it in research without authorization deemed a crime
IT consultant in Germany fined for exposing shoddy security::Spotting a plaintext password and using it in research without authorization deemed a crime
The problem is that any judge can judge any domain they have zero knowledge about. They’re just expected to understand complex systems because they’re educated, and only required to know law (often not even that). The way it should be is that judges making decisions about complex domains should require a level of understanding or specialisation in that domain — judges judging cybersecurity should also have a background in some sort of computer science or engineering discipline.
Otherwise we’re just allowing “the internet is a series of tubes” people to dictate human progress.