Archive for the 'Security' Category

Passing On Your Cloud Pt. 2

Published by Taylor on May 11, 2009 in Culture, Data Portability, Legal Issues, Lifestyle, People Send Us Things, Privacy and Security. View Comments

Friend and reader Gagan writes (posting here in an attempt to convince him to guest blog in the future):

Heard an interview on NPR this afternoon with the guy who created Legacy Locker.  Basically, he was trying to secure the on-line identity of his deceased grandmother, but it was essentially impossible.  Which begs the question: what happens to your on-line identity once you die?

So this guy developed a small business where they basically keep all of your on-line information (log-ins, passwords, etc.), and your instructions for how to deal with your on-line identity once you’re gone (give it to a specific person/specific people, destroy it, etc.).  According to the interview, they currently have 1,000 customers, and they’ve only been operating for about a month.  I could see this thing taking off.

More on CNET and TechCrunch.

Jarred pondered many of the issues Legacy Locker aims to resolve in his post Passing On Your Cloud.

Food for Thought (Sorry for the Silence)

Published by Taylor on April 9, 2009 in Culture, Energy, Environment, Lifestyle, Security, Twitter and Web 2.0. View Comments

Hey folks.  I’m back after a long day-job-driven haitus.  Things have been hectic, and the best way to jump back in seems to be some quick-blogging of items I’ve found intriguing over the past few weeks.

David Roberts at Grist offers a great primer on power grids, including the important distinction between a wide grid: “a new high-voltage backbone, with lines spanning the length and breadth of the country, able to carry electricity from anywhere it’s generated to anywhere it’s needed” and a smart grid: a transmission system that allows for distibuted production (think rooftop solar panels) and is capable of adjusting in real time to compensate for heavy usage, increased production, etc.  This is a recommended read to get a basic grasp of what David describes as two key power grid issues:

[O]ne grid issue is getting more power (transmission lines to new places) and one is using power more efficiently(smarter distributions systems). The politics around those two issues are quite different

Related, also courtesy of David: here’s a list of articles on my to-read list related to smart grids.

Jason Calacanis sent a long and thoughtful email about the ways in which anonymity online can be harmful to the extent that it erodes our empathy for other people. Jason goes so far as to call this trend a “disease”–”Internet Aspergers Syndrome”:

This disease affects people when their communication moves to digital, and the emotional cues of face-to-face interaction–including tone, facial expression and the so called “blush response”–are lost.

In this syndrome, the afflicted stops seeing the humanity in other people. They view individuals as objects, not individuals. The focus on repetitive behaviors–checking email, blogging, [and] twittering…–combines with an inability to feel empathy and connect with people.

This is a provocative thought, and it does seem to me that the next big trend online (web 3.0?) will be authenticated identities driving the social media we’ve taken for granted.  Calacanis mentions that social networks in South Korea require a social security number to sign up.  There will inevitably be a tension between the norms that have developed in the web’s infancy and the changes that will be necessary to combat what is moving from a medium where goodwill and trust could be taken for granted toward an anything-goes medium where accountability is virtually (pun intended) nonexistent.  How we choose to make that shift–requiring social security numbers, for instance, might be a bit invasive by American standards–is unclear, but I think many of us are starting to feel fatigue with unaccountable spammers and trolls ruining the web for everyone else.

I’ve come across a fair amount of criticism recently of URL-shortening services (like tinyURL, bit.ly, Digg, others).  As TechCrunch explains:

Nobody really likes [URL shorteners], but they are a necessary evil. How else are you going to share links on Twitter without having the URL take up half the message?

The criticisms focus on a number of issues:

  1. URL shorteners obscure links, which opens unsuspecting users to spam attacks;
  2. shorteners, to quote the founder of del.icio.us, “add another layer of indirection to an already creaky system” and slow the web;
  3. some shorteners, like Digg, deny direct traffic to sites by using a frame instead of directing clicks to the original material (Facebook users will find this familiar, since shared items are framed in a similar fashion);
  4. all shortened links are dependent on the continued existence of the proponderance of shortener start-ups AND the perpetuity of their terms of service (in other words, the guarantee that your tinyURL will not be reassigned or disappear)

I worry about the Digg/Facebook model gaining traction, since “link juice” for original material is what feeds the web’s content producers.  But I think in the future you’ll see more of this type of functionality: an interim landing page where visitors will see a full URL before continuing to the source material.  If content aggregators (I’m looking at you, Digg) can add value by previewing pages and layering social rankings or other features, this could be a win-win-win proposition: People clicking shortened links are protected from spam; the URL shortening service has an opportunity to advertise and lure visitors to other material; the content provider receives a direct traffic boost.

That’s all for now, though I should be blogging regularly again next week.

All your (virtual) base are belong to us!

Published by Jarred on February 7, 2008 in Legal Issues, Privacy, Security and Web 2.0. View Comments


Which one’s the terrorist?

Nick Carr blogs today about concern shown by American intelligence authorities about the security vulnerabilities of increasingly popular virtual worlds such as Second Life.  He cites this Washington Post article, which in turn quotes from a newly-issued paper from the “Intelligence Advanced Research Projects Activity”:

“Unfortunately, what started out as a benign environment where people would congregate to share information or explore fantasy worlds is now offering the opportunity for religious/political extremists to recruit, rehearse, transfer money, and ultimately engage in information warfare or worse with impunity.”

The article goes on to note that the CIA has already set up shop on some “private islands” in Second Life for “meetings and training.”  And then there’s this:

Virtual worlds could also become an actual battlefield. The intelligence community has begun contemplating how to use Second Life and other such communities as platforms for cyber weapons that could be used against terrorists or enemies, intelligence officials said. One analyst suggested beginning tests with so-called teams of cyber warfare experts.

As Keanu Reeves would say: “Whoa.”

Image used under a Creative Commons license courtesy of Flickr user Pathfinder Linden.

The Day the Internet Died

Published by Jarred on January 31, 2008 in Business, Computing and Security. View Comments

I definitely should be working right now, but this was begging to be blogged.

Today, two undersea cables were cut at the bottom of the Mediterranean Sea.  Apparently either a boat anchor or some geological “event” severed the cables.  CNN quotes an expert stating that “the damaged cables collectively account for the majority of international communications between Europe and the Middle East.”  India, known around the world as the #1 destination for digital outsourcing, was dealt a sucker punch — 60% of its user base was affected — but it quickly got its breath back, according to the New York Times.

While it is reassuring that these companies had back-up plans for this sort of thing — the NYT article notes that traffic was quickly rerouted through other cables — a Reuters article notes that as of midday, Egypt is only 40% back online.

What would happen if something were to happen to our cables?  I know the U.S. is sort of the hub into which all the cables are plugged, so it isn’t as easy as cutting a cord for us.  But how vulnerable are we?  Can you imagine the chaos, especially of the financial sort, that would ensue if someone were able to disrupt even a quarter of American web connectivity?  Surely we have some kind of firewall and stop-loss system?

As more and more of our life — and money – is spent digitally, I would love to know not only how my passwords and privacy are being protected, but how the whole physical infrastructure is being protected as well.  How tough is Google’s security at their server farms, for example?

Anyone know?

Image used under a Creative Commons license courtesy of Flickr user angusf.