Tag: Information Risk Management

Cyber ‘Nam

OK… As you know I wouldn’t be the war monger re ‘cyber’ warfare. And don’t have the answers — neither do you! — but have searched and asked for them; see past posts (numerous).
This one is more about how the campaigns and battles are fought. Full cyberstatefulfirewallcomplexmonitoringNOCSOC jacket style, out there in the field. (Privacy) protesters at home, safely away from the danger. Some top brass (‘generals die in bed’) ordering your data forward, hardly trained/hardened or crypto protected and blaming shoddy execution and wily counterparts. The traumatised demobilised db admin not wanting to shoot down even a deer-like referential integrity violation. Et cetera. Feel free to add to the comparison. E.g., how things will develop. Or– how thing would have to work out if, huge if, for once history is learnt from.

Oh well. @CyberTaters and @cyberXpert will have their way. And #ditchcyber. And this:
DSC_0122
[Will be.]

Sharing a name for economy

Rightfully, I thought as I read this article… but then, not.

Yes, ‘sharing economy’ is abuse by the UburbNb’s of this world as they’re exploitative scams that have little to do with the actual Sharing Economy.
The actual Sharing Economy is about sharing because of caring, which is price-less in itself and holds quite some anti-monetary ulterior goals.
The Sharing Economy shouldn’t have to change its name because others, in an ethically-horrendous and despicable robbery, claimed it.

And all this is futile resistance. “All that is of value, is defenseless” (Troelstra)

And:
DSC_0721
[Yes, the same as a couple of weeks ago, now from a approx. 120deg different angle, still works ..?]

De administratie is van geen van allen … [Dutch]

Was triggered by this here article, as read in het Parool but repubd – and deserves republication in many more places. Yes it’s in Dutch unfortunately, as I don’t think the problem is exclusive but it may be tearjerkingly worse and exposed here…

Waar nog bijkomt dat een flink aantal (?-tot-100%) ‘bestuurders’ nog steeds in de illusie leven dat ze iets ‘besturen’ en dan ferme besluiten nemen, met de vuist op tafel slaan zelfs, en dat er vervolgens niks gebeurt. Helemaal niets. Het ‘besluit’ was immers de prestatie *quod non* en de uitvoering, tsja, dat is voor het lagere volk. Daar ga je je niet mee bezighouden. Terwijl het besluit zó ver los staat van de werkelijkheid lees implementeerbaarheid (op wat voor manier dan ook; taalgebrabbel los van normale praktijk, met bij voorbaat zeker gierend budgetgebrek) dat niemand zich waagt het op te pakken. Dus *gebeurt* er niks…
Als je dat maar eventjes stil kan houden (fijne wensmanagementrapportages in bestuursjargon ja We Zijn Nu Eens Echt Goed Bezig Met Actiemaken maar niet heus), dan is het Na Ons De Zondvloed. De naam ‘Asscher’ gaat rond in het Groene-artikel. Wel goed dat er een enquête komt! (of al voorbij is gezucht zonder dat iemand er erg in had). En oh wat goed dat die wordt gehouden door dezelfde in-crowd; dan weet je zeker dat er iets echts uit gaat komen..! </sarcasme>(?)

Maar ja, er schijnen zelfs nog mensen te zijn die werkelijk denken dat we in een democratie leven. Als de facto een pak ‘m beet 0,0001% van de stemgerechtigde bevolking uitmaakt op wie je überhaupt kán stemmen en geen enkele partij de moeite neemt om te zorgen dat je het met meer dan maar 30% van de standpunten eens kan zijn (waar de rest persoonlijke hobbietjes zijn; belastingmiljardenverslindend en vaak nutteloos) met een persoonlijke aansprakelijkheid van nihil, terwijl “dan richt je toch zelf een politieke partij op” niet kán werken, ja dan heb je een echte democratie hoor ..!

Passend:
DSC_0937
[Actual government, direct; tranquil reflection on that]

Unknown Stats

Just as an intermission; this. QQ, QZone ..? Good to (learn to) know (them), if only to wake us up to the classic-Western-world bias some may have…

That’s all for now. Your conclusions are valid, almost as valid as mine, in the limit. This:
DSC_0176
[Oh how glorious, brilliant, radiant (… you know …); and Central
 If you wondered why the vertical warp: dunno, probably just WordPress’ error …]

A sobering thought

Actually, not one but a great many sobering thoughts, in this great piece: What They Don’t Teach You in “Thinking Like the Enemy” Class. In a high-quality series.

To which one might add … not too much. Maybe the 100%-is-infeasible line, and Schneier’s Return of the Security (is..?) Theatre trope. Oh, and the one that has still taken far too little root; the deperimetrisation-means-you-need-to-focus-on-information-not-the-fortress aspect that has been around for a decade already but still has hardly been implemented properly.

Or, we redesign the world. Somehow, we need to get into the mindsets of the global populace – that so far hasn’t been standardised to any degree; happily! for cultural diversity hence overall societal flexibility, development and progress … – to accept that after human development was pushed by physical wars for all of its existence so far, we have arrived at a new round of warfare innovation. After the man-to-man (sic) manual combat, and the ethically despicable practice of not even seeing the Other in the eye individually that gunpowder brought on – glossing over the trebuchet-and-others long-distance hurtling and archers’ reach –, we are now engaging not only in drone-led warfare (distance being even greater), but also in this: humans not being the soldiers anymore; that part being taken over by the robot. By which I don’t mean humanoid robots – why even bother – nor masses of stand-alone AI. But rather, unembodied A(S)I that operates on any platforms together, creating resilience not by numbers of clones but by moving swiftly over servers by having been virtualised at various levels of conceptuality, as they are compounded-mem complexes battling each other evolutionarily. And still aiming at humans.

…? Well, what’s the purpose, otherwise ..!?

Which is far off from where this post started. And foregoing the intermediary step I wanted to write up; where ideas cleverly capture (numb, dumb?) people and ‘ideologies’ fight each other for global dominance. With all sorts of ‘neat’ (quod non) tricks. But [w|h]ell… and this:
DSCN8626cut
[All humans removed from picture. Naturally]

Still valid; MIS is a Mirage

Somehow, some neurons fired that sublimed into a thought about John Dearden’s MIS is a Mirage, of 1972 … Turns out I’m not the only one who thinks it’s still very much valid today. As e.g., here. Oh, the insights that run in deep undercurrents throughout today’s management- and other fads…!

But, once ASI comes along … Then at last, MIS can do without the, then relative but still, stupidity of mankind. Or ..?

[No pic today. Post too short. First, you study the article at length!]

Short post: Offense on the Defense

Apart from love, here too all is fair. Hence, the offense may be pushed into defense every once in a while. Yes, think that one through.
Or, that is misinterpreting it. Offense and defense do a danse macabre while the content fights out at higher abstraction levels. Think that one through ..!

[Edited to add: this link, and this one. Others apply as well.]

OK, ’nuff for now, and this:
DSC_0705
[Not even unique, as a NY wedgie; only just (…) the prettiest]

Preventing detection

At last, there’s a resurgence of non-preventative infosec (#ditchcyber) efforts. As, e.g., here (in Duts though the orig would be Engrish ..?) and here (a decent one, almost making the right point; co-typical ..? and on second reading, a bit empty of actual actionable advice). Hinting at leaving the Prevention Imperative and refocusing on Resilience.
Because ‘deperimetrisation’ may have clouded the longer-term, more strategic failure of locking oneself in and shooing away the so grossly underestimated enemies by one’s own utterly ridiculous overestimation of … authority, power, capabilities and competences, considered-self-evident importance (quod non…). The dumb not realising how dumb they actually are…

We’ve said this before, over and over again. And we’ll say it again. Because the Laggards (hey remember yesterday’s post?) still haven’t got it, deeply enough into their veins.

But, we have a start of that at last. Why only now? Because even the most conservative (sic) can no longer hold the fort (sic) of box-shipping at all levels? Anyway:
DSC_0804
[Rebound into the heavens!]

Why ‘cyber’s still a dud

[Oh yes @CyberTaters will warp the pings re this post. And #ditchcyber!]

For one, all (sic) of ‘cybersecurity’ (quod non) is incomprehensible to those that consider themselves ‘leaders’ in one way or another in practices where actual infosec should be top of mind. Since the (for quite too large a part) despicable mice (of this story) don’t see their own folly, these kindergarten emperors will be found to wear their new clothes well… but not ‘get’ what it takes to start developing ideas how to actually lead in the infosec field. Starting with debunking Internet myths and hype-FUD but also starting the sea changes needed to achieve something (if maybe not everything).

For another, since all the hype-FUD only leads to Technology focusing, where those that would still not have thus-focused houses on order should be fired; decades of developments would have to have been easily dealt with – though it is rocket science, it’s hence not that hard. Hey, designing and building a probe to Pluto, isn’t there an app for that?
Leaving the other 99.9% (well…) of work in the area of People (and don’t start me on Process..! see my posts over the past couple of weeks). Which, even if it would be understood what needs to be done in that field, would be known to be near impossible to pull off, let alone in the short term.

Hence by simple (?) logic, ‘cyber’whatever is a dud.

Sobering:
DSCN2508
[You know where, or not; every corner needs to be beautiful…]

Maverisk / Étoiles du Nord