Springfield, MO

Log in Subscribe

Opinion: Parson accusations against Post-Dispatch are vicious, unfounded

Posted online

I'm writing this column after one of the most vicious and unfounded attacks I've heard by a Missouri governor against a major news organization in the Show-Me State.

It involves the St. Louis Post-Dispatch story published Oct. 14 about how a state Education Department website allowed access to the Social Security numbers of teachers.

Rather than praising the newspaper's story identifying a major security breach in his administration, Gov. Mike Parson used a Facebook session later that morning to accuse the reporter and the newspaper of violating state law.

After citing the law, as well as the criminal and civil penalties, he announced, "Not only are we going to hold this individual accountable, but we also will be holding accountable all those who aided this individual and the media corporation that employs them." He even went on to cite a state cost of $50 million, suggesting a civil penalty.

In more than five decades covering Missouri's statehouse, I cannot remember a governor ever suggesting a criminal investigation against a reporter or a news outlet because of a news story.

To the Post-Dispatch's credit, the newspaper actually delayed publication of the story to give the state time to address the problem and close access to that data.

Besides, the Education Department should not have been surprised. As the Post-Dispatch noted in its story, the state auditor twice in earlier years had warned about digital security problems involving education information.

Rather than praising the newspaper, Parson charged the information was acquired by illegal decoding of encrypted information without authorization.

"It is unlawful to access encoded data and systems in order to examine people's personal information," Parson said. "They had no authorization to convert or decode, so this clearly was a hack."

That reflects a gross misunderstanding of the digital information in the internet environment. Information provided on the web automatically is converted, or "decoded," by browsers in order to display the information on your screen without any "authorization."

Websites you visit put their information into HTML. That is just a method to structure plain text into a format web browsers can display in a graphical presentation along with links to other sites. HTML stands for hypertext markup language, which you easily can see by clicking on your browser's source-view tab. In fact, antivirus software on personal computers "decodes" HTML to protect you from virus infections.

Sometimes HTML pages can include a link to a database with a password. That can be a huge security breach. But it's open to global web.

Yes, the world is experiencing an explosion of hacking into personal data.

But the problem largely results from the failure of companies, database systems and even governments like Missouri from protecting private personal data on their websites or not having strong password authorization requirements to access the data.

Identifying that failure of the Education Department to protect the personal information of teachers should have been praised by the governor, not used as the basis for a criminal investigation against the journalist who reported it.

The governor cited a state law that makes it a crime for "tampering with computer data ... without authorization ... and intentionally examines information about another person."

Putting information on the web for the world to see, I would argue, amounts to authorization to examine.

I regularly examine state government information provided on the web about campaign contributors, legislators, lobbyists and, yes, even the governor without any "authorization."

Obviously, I'm biased as a journalist.

But it seems to me that a news organization that reported a major privacy vulnerability in a state government website, notified the agency of the problem and did not release the story until the problem was resolved should have been praised by the governor rather than threatened with civil penalties and criminal prosecution.

It struck me that neither the Education Department commissioner nor the administration's information technology director were available at the governor's Facebook session to answer questions.

Phill Brooks has been a statehouse reporter since 1970, making him the dean of the Missouri statehouse press corps. He is director of Missouri Digital News and an emeritus faculty member of the Missouri School of Journalism.


2 comments on this story |
Please log in to add your comment

There is an evil happening in America like I’ve never seen in 63 years. Censorship, lying corrupt media, corrupt science and medicine, lying corrupt DOJ and of course a totally illegitimate authoritarian regime in Washington! Sorry, but I will never see the main stream media trusted again in my lifetime. NONE of what has happened in and to America in my lifetime would have been possible without a corrupt lying media. No one hates America more than the people we are suppose to trust to keep our Public SERVANTS honest! It would take a couple of houra to list the lies over the last 5 years alone!! 95% of the main stream media is nothing more than the Communist party propaganda division.

Thursday, October 21

I had no idea that the state auditor had twice warned about this. Thanks for the information.

Friday, October 22
Editors' Pick
Creative Campaigns: Medical marijuana industry reaching patients while following state ad restrictions

Local medical marijuana dispensaries must find ways to get creative with their marketing in light of industry advertising regulations released this summer by the Missouri Department of Health and Senior Services.

Most Read