The Land Register Online facility was conceived as a facility to contribute substantially towards the Government’s initiative to provide easier access for the citizen to government held data. As a “view only” service the integrity of the information held is not at risk through the service. The information made available through the service is available through other channels.
A security assessment was undertaken in July 2002 by IBM Global Services. The agreed design was implemented by Land Registry with significant assistance from both HP/Compaq and IBM.
The solution’s implementation was validated from a security design stance through the engagement of Echelon who completed their testing 6 May 2003. The scope of the penetration test was to determine if Land Registry’s website could be breached.
Echelon concluded that the
“website’s ability to limit attack is restrictive enough to be considered secure.”