QUESTION ABOUT EMAILING MYSELF PASSPORT INFO.

Ernest,

I have made scans of my passport, drivers license, and credit cards and filed them in my yahoo email folders. They are as safe there as can be because the numbers are inbedded in the photo instead of the message Its easier to hack messages than to hack photos, at least that's what I've been told.

The weak point, Bill, is when you access the email. If you log on and passport is taken via spyware, snooper, etc., then the photos are no more security than text because your mailbox is now potentially wide open. Hacking into a security mailbox is NOT the problem or the security risk. The security risk is the public computer you are using for access.

Kathy, your IT friend is correct BUT it is overkill unless you have a hidden life. Second, that thumb drive is only secure IF you do NOT plug it into a public computer. If you do, there is no security. And if you do use a public computer never put that thumb drive back into your computer.

Ernest, it really depends if you feel comfortable doing this.

I emailed myself the information, as well as a jpeg of my passport. I also cc'd my sister in case I can't get to a computer.

To some people, they rather make a paper copy and bury it in their suitcase. To me, a common thief can snatch your case and take that information just as easy as a computer hacker.

So... I guess pick your poison? Or, just give the information to someone at home and hope they won't mind if you call them at 2 am.

For the most part computer security is completely misunderstood by most people. Emailing to yourself credit card numbers, passport info, etc. is absolutely safe. The problem with security begins with how you access that email or information. If you access from an internet cafe or any type of public computer, then you have no assurance of security. Once you log on and open your email you could be broadcasting to the world. The probability of that happening may be low BUT the possibility is there. Therefore, a good practice is to use a dedicated email address for that purpose and encode the information using a simple substitution code. I will be glad to send you one. I also take paper copies but that information is coded so if someone gets it, then the info means nothing.

Frank's right on. An even simpler thought is just email yourself the last four (or last 12 for that matter) digits in your CC numbers along with the phone number to contact them. No one else will know your security question which the CC bank will ask you for in order to get a new card or make changes to your account.

I've been thinking about this as well and talked to an IT security expert I work with. Of course, Frank is absolutely correct. The security hole in email is at the access point. My co-worker gave me an elaborate solution involving setting up VPN access to my home PC, PTPT (point to point tunneling) and encryption, but my husband suggested I just give him the file with all the info and he'll fax it to me if needed. Since he's not going on the trip, that really makes the most sense to me....along with encoded, and password protected, info on the thumb drive I'm taking.

Frank, not sure what you mean by the following.

A dedicated email address for the purpose of encoding information using a simple substitution code. Paper copies that information is coded so if someone gets it, then the info means nothing.

Please send me one when you have time. Also how to code paper copies.

Good point Frank about the thumbdrive (my plan would be to only access it on a friend's system). And yes, the security guy who gave me the feedback is a little over the top :-).

Ernest: I think what Frank means is this (correct me if I'm wrong, Frank): 1) create an email address dedicated just for storing your important numbers & info. Do not use this email address for regular emails to friends, family, etc. 2) The code you use can be any kind of code you come up with - and the same one for both online and paper if you choose. For instance, one code could be where a letter of the alphabet corresponds to a number. So A=1, B=2, C=3, etc. So if your credit card number starts with 312, the code is CAB. (But I assume Frank would have a more sophisticated system.)

Janet, you are correct. Ernest had contacted me directly so I answered his question there and not on the public board. It is best to use any 9 or 10 letter word with no repeating letters -- universal, charleston. Hundreds of words met this requirement. If a 9 letter word is used then 0 is o. If using ten letters you have to decided if you count 0123.... or 7890. These are tough codes to break. Don't code expiration dates because that can provide clues. And don't code the first digit of the credit or debit card.

Frank: Thank you. That's a great system!

We scanned our passports and saved them as PDFs. We then password protected the file. You can do this for Word documents as well. I'm sure it's not 100% secure, but I figured it's one extra barrier and doesn't hurt. We will bring a computer so we won't have to worry about public computers, just unsecured wireless networks.

Kristy, where are you going to find secure wireless networks to use?

Regarding secure wireless systems in Europe: I often bring a computer when I travel in Europe on business. For the most part, you don't really need a secure wireless system for sending and receiving ordinary emails, searching for train schedules, making restaurant reservations and the like.

If, heaven forbid, you really did need to access sensitive information like your scanned passport or credit card info, you can almost always log into a secure wireless system at an upscale business-class hotel. Just sit in the lobby and log right on. You'll be charged a fee (maybe 10 Euros or so) so it isn't a good solution for day to day internet needs, but in an emergency, if you've had you critical documents lost or stolen, the 10 Euros will seem a cheap price for getting secure access to your stuff.