Category: Privacy

Bow the Stork Tie

When analyzing the Stork methodology for EU-wide federated eID- and authentication methods and technology, again one stumbles (rather, ‘ they’ do) over the bow tie of CIA, mostly C, controls. Too bad. Usually, ENISA(-involved) stuff is Great quality. Now, quite too much less so.
Which is too bad. To note, we already commented on the classical CIA rating (incl the bow tie fallacy) before. Now, the CIA seems to have something to bring to bear on CIA as well. Better study hard …!

Oh well …:
DSCN9668
[Weaving transparency and stability, Cala at Hoofddorp again]

One IoTA FYI

To close off [almost, since @KPN fraud themselves away from bankruptcy by series of outright lies to customers and tort] the year with a wild shot, ahead:
There is value in the information analysis in IoT, as described in Gelernter and many since, of the two-way flow of information. One, flowing up are information in the form of answers as aggregations or pattern matched tuples(ets); the other going down, being both commands and inquiries/questions.

This fits the IoT world snugly, and should be taken into account when developing IoTAuditing frameworks:
What we’re after of course in all of auditing — and this we consider self-evident or else go back to study auditing fundamentals, from agency theory! — is the controls that keep the quality of the back/forth i.e. down/up information flows within (client-!)required margins. No more! But be aware of who the client really is, not the one doing the actual paying. So, we may focus on the integrity of the information flows first and foremost, then the continuity (availability), and then confidentiality as an afterthought.
With neat break-downs to isolation, appropriate input/output buffering (anyone still aware of the difference between an interrupt and a trap? If not, take a hike and learn, and weep), integrity controls above all. And some thing on (establishing) the quality of aggregation and of the questions being pushed down — when the wrong questions get asked e.g. by lack of understanding of the subject matter (sic), as is so very commonplace in the vast majority of organisations today, the wrong results will turn up from within the data pool (reporting ‘up’wards).

And of course there’s the divide between
the operational world where actual business is done (either administratively in offices though one could argue (i.e. proof beyond recovery) that this isn’t actually doing anything worthwhile, or producing stuff), and
the busybodies world ‘above’ (quod non) that, which thinks (wrongly) to be able to ‘control’ and ‘steer’ the productive body, sometimes rising itself into the thin air levels of absolute ridicule (by) branding itself ‘governance’.
But do re-read all of last year’s posts and weep. But do also see the implications for variance in the integrity, availability, and confidentiality needs at various (sub)levels.

And:
DSCN2229
[The 2016 way is up; Cala at Barça]

Big Data, Little Decision-making

Are you ready for the coming revolution? That is in the wings by way of the data deluge that will cripple your ability to accomplish anything because you’re overwhelmed with data (“information” quod non!) to act upon in masses so vast you can’t even begin to use actionable results from analysis of it in a way that actual decisions are reached, communicated, and put into actual action.
Yes, yes, some of you will say that AI will arrive just-in-time to save the day. But that is much more wishful thinking out of fear than realistic futuring. And no, the exponential growth of data cannot be caught up with by exponential growth of AI capabilities and -spread before you’ve drowned.

Anyone see a way out, other than just ignoring or stifling data growth until by the skin of our teeth we can continue..?

Oh well, this:
Kopie van DSCN7982
[Reckon you’ll win ..!? in Berlin]

Prediction16

Yawn. Or not. The following will get real serious in 2016. Like,

Well, for the list with everything and their dog:

  • Some Exits: Green Egg, ‘Cyber’everything, disruption/uberization, privacy, and, certainly and very much hopefully, “Like us on Facebook” … and very, very certainly hipsters let alone their ‘beards’ (quod non).
  • Entrat to replace the latter, hopefully, some actual non- or anti-bureaucratic frameworks of mind.
  • Also out, to be replaced by … [as yet unknown]: Vlogging or what have we, in socmed space, with 100k-1M+/++ followers as being he thing to aim for. As it becomes clearer and clearer in 2016 that only the 10M+/++ leaders (??) can make a dime from it, or barely a living. Who are the big winners, in all of this? User data / experience farmers?
  • Risk Management 3.0 will grow to be the Next Thing in managementspeak. If you’d need any proof, go read back the ton of posts on your perennial Truth site.
  • Also, we might get a last blip from SMAC(T) as a trend summary.
  • All of the points made by The (some) Man. Obviously. And some of this as well though this may all show to be overblown.
  • Still a wave of interest in Rise of the Robots. Combined with AI through and through, like in this. With support at an angle, from this.
  • A further blend of cloudsourcing and deperimetrisation putting your infra and all of your data naked and out there in the cold.
  • Oh almost forgot: A lot more on APTs, 3D printing (when will we finally get 4D printing …!?), MehhDrone stuff, blockchain, IoT, et al.
  • But we may hope, the latter two get much more innovative applications; one the one hand with simpler explications, on the other, truly innovating e.g., into the DAO realm.
  • Ah, DAOs; let’s first see more of this in 2016.
  • Offering a simple list copy from HBR:
    • Algorithmic personality detection: Yes
    • Bots: Yes
    • Glitches: Mwah; we indeed will see scores of them, ever bigger and more impactful (also b/c complexity explosions of the mixed e and physical worlds), but they’re somewhat of the mehhh category for the purpose of Here.
    • Backdoors: See APTs et al; much more of them yes but again, mehhh
    • Blockchain: As mentioned
    • Drone lanes: Hmmm, interesting…
    • Quantum Computing: Probably hung in there from previous (many) years’ lists; mine, too. May, might, but for the same token may not
    • Augmented knowledge: Definitely. Hopefully, in a good way. But maybe even hopefully, steered towards safe use, after a hopefully indicative but small-enough dystopian-style mishap ..?
  • CloudIAMming. IAM, renewed, for federated use in ‘the’ cloud. Yes, this will have a whole new lease of life, as a management field, and a consultancy field as well.
  • This just in: Forgot to mention VR as a thing in 2016. Definitely.
  • I may want to do an update halfway through the year…
  • Oh, and of course our motto for 2016: A CEO with you, is still a CEO.
    #gosubstitute[ _X, _Y | fool, a tool ]

After which there’s only:
DSCN7943
[Purposefully unsharp. Berlin, some years ago.]

Game season

Sooo… We have a new game console on the block. Let’s see whether the new boy will persist.
This, after:

But which may translate to a double jump, from classic TV via Netflix to this new blended thing where even much more than nowadays, categories (like ‘news’ or ‘nature documentary’) no longer apply. Where will the Authoritative (news) Sourcing community go, even when it may shrink and dwindle into little if any size or significance? Juvenalis’ bread and circuses the world will be.

Well, anyway, we’re storming towards that. And this:
DSC_0042
[Gloomy, waving your Freedom goodbye; still at NY]

One-sided mirror

Hopefully just in time for your last-minute (huh?) holiday season shopping: This masterpiece; excellent for edukaizjionel purposes and general divertissement, including Be-ing Warned…

Because, it spans so much of interest; from humble (?) ‘computer’ components all the way up till Topsight.
Read, learn and weep over humankind’s future.

Now then, for a short departure:
DSCN7994
[Unk Berlin]

Everyone’s using Layars

Just started re-reading the 1991 (..!) Gelernter classic Mirror Worlds. Nomen est omen, author-itywise.
Then it struck me: Mobiles weren’t invented back then; can you imagine ..?? And Home Improvement was the hit of the year. Some Tim Berners-Lee guy first proposed HTML. Even PCs version 1.0 were still not ubiquitous.
And then this Gelernter published this masterpiece about virtual worlds. Not some random tech prediction, but insightful, visionary stuff.

But the reason I give you this, is: In 2009, Layar started. Where has that gone ..!?

When you know what I’m talking about, you see the link with the above. And might wonder as well. Yeah, one can DuckDuckGo them, but that’s not the point, which is: Where’s the exponential unicorn disruptor daily jubilant news about them, whilst they have grown in prominence ever since ’90 ..? Why not ..?

Oh well, I’ll leave you with:
DSC_0163
[Once, friggin’ SotA at Noto]

Ringtones on deaf ears

[Abridged repost; relevant again]
There seems to have been an explosion of (news over) ~mojis lately. Like, the past half year has seen a proliferation of subsets and niceties that, as a phenomenon, spell the end of interest in messaging.

As the phenomenon (not this which is great in any absolute measure) is so very much the same as we saw with ringtones
Arrrg! Yes indeed they spelled the end of the introductory phase of mobiles. The more it became a fad to have some peculiar ‘tone, the more one exposed oneself as a somewhat (?) pathetic Laggard, not quite knowing yet how to have and treat a phone as perfectly normal tool without having to brag how great one was for having one in the first place.

Can you see the same with messaging? If not, you may be the one that actually paid for the nicest ringtone you disabled in shame for not getting any but negative recognition after a couple of days again.

So, … next up in this series: How “Like us on Facebook” went the same way in the 2nd half of 2015, latest… And:
DSC_0711
[Siegfried& not quite]

Common meltdown

Ah, indeed a meltdown is approaching; maybe not even of the common kind of just something breaking down in ‘IT’ — the inverted s… hits the fan scenario — but a larger-scale one. Being the lack of budget / approval for IT staff to do continuous education of all sorts. [As in here, in Dutch.]
Which will inevitably lead to ever larger of the small- to midsize collapses mentioned, possibly one triggering the other till past the critical point where the chain reaction feedback loop switches from negative to positive.

By which time it will be too late, much too late, to hyperventilatingly engage in counteractions. Both against the root cause problems in IT, as in the edjucayzional category within those. Because, au fond, so many of IT’s ails were and are, increasingly, driven by lack of (continued) education. Causing problems in the user’s specs (at the highest levels) and subsequently, 2nd Law of thermodynamics, spawning all of the subsequent complexity developing into unmanageability, and error stacking that breeds like viruses.

Even more poignantly in InfoSec corners. You know, the outposts of IT — yes, yes, I know that the I is of so much greater import than the T but get real, instead of 20% InfoSec is 85-95% T still, these days ..! — where the real commandos and fancy-dancy ‘Delta teams’/SEALs operate.

Can we all please get our act together ..? If we don’t turn this supertanker around quickly, we don’t even need to bother about global warming because we’ll have no industrialised world to worry about…

Après nous la deluge …
DSC_0196
[Mosquito hunt; Edinburg]

Software Defined Everything, not your monkey’s business

Lately, we have been reading a lot about Software Defined Everything (haven’t you …?), in particular sw-def networking. As the flexible way to the future.
Now, it turns out that humans may have had an edge over monkeys (and apes) by, for quite some time already, having had just that bit more software-defined Brain work than the competition. Though research is out also (since about half a year+) that apes using tools, have entered the Stone Age with that, for some 4300 years at least already. Now I will not refer here to the mix-up that your boss is, in this all.

But I will note that the Software Defined Everything, in similar vein is where the Singularity starts to take over, as the System evolves away from the human brain limitation to adapt to its environment. Yes, that’s a bit of thought stretch but you’ll manage. Still…

DSC_0174
[At least the apes among you might figure out the Three-Body Problem at the table …; Nicolaci, Noto]

Maverisk / Étoiles du Nord