Well, thanks for making my day go. I was quite tired of updating my storm tracker, so I decided to see what the boards were about! Been ages. Just like Michigan; Great Lakes, Great Times.
Did it really though? It's easy for the cyber bourgeoisie to believe that would spurn something, but the proletariat is oft forgetful and prone to being complacent.
The kind of huge loss of credit card info which the Sony breach initially seemed to threaten would concentrate minds. Hundreds of thousands of people canceling their credit cards.
Much like anything, it will take a generational growth, for we as people to realize our vulnerabilities in an anonymous world. A quick Google search, highlights one organization touting basic cyber security knowledge that will be taught in schools. I mean, we have driving education in schools, and more people have access (especially under the age of 16 :P) to a computer than a car.
The main reason for this, is the consumer. We don't ask, or 'require' it. I mean lets be honest. How many people use the same exact user name and password for most of the online forums, or shopping websites? I think it would be fair to say that most do. I'm also quite certain that the IE servers are not as secure as say Amazon's or Ebay's. But if you follow my logic, you clearly see the gaping security risks that an 'atypical' user subjects themselves to. Most users have the 'won't happen to me' syndrome when it comes to online identity theft, because to them, it is a very distant thing. It's intangible unlike their credit card or drivers license. While we can posit on security breakthroughs, we are in the vast minority. Vast.
Why, history is cyclical. Can we not make suppositions that the same will have to take effect? Perhaps that is the part of the problem, people focus on retrospect far too much. We have the evidence to support it, we see symbiotic growth around us all the time. We realize it now. Yet it is the pace of the growth which is the issue, I am pertaining to. The government is falling behind, while the market is steaming forward. This lapse will lead to something, yes possibly that Kim. This 'lapse' whatever it will be, will lend itself to the next arm of the government. At least in my eyes.
The biggest problem facing the State is this question: How do you handle annonymity versus accountability? We scream red in the face to protect the anonymity that the internet gives us, but that runs counter intuitive to accountability, which is a primary concern of the state.
But in a nutshell, it does all of the above. It's the perfect conundrum. The problem is that there were catalysts for most of the state to market growth. For the Cloud and increasing technological concerns (as we grow with it), it will take a catalyst of some accord to spark the state into thinking large and give birth to new innovation and technology.
Kinda synopsis. In the American experience, despite political rhetoric, state and market development go hand in hand. One only has to look at the Homestead Act, GI Bill, Land Grant Act (which gave rise to our extensive university system), etc. to see that federal power and investment (especially in railroads during the 19th century, and later highways and infrastructure in general) spurred economic development. The rise of the federal patent system, coupled with extensive investment in universities created innovation and fostered market development. The rise of the TVA brought electricity and economic productivity to a once maligned and marginalized part of the country.
We had an interesting discussion at work the other day, does intervention from the federal government create innovation, foster market development, or limit creativity?
Kim, you are recruiting the best brains in the 'publicized' world of private security. They will always be bested by the hidden minds of the people trying to access that information.
Mary, to be honest the cloud isn't an infant by any means, but it's still a toddler in terms of growth to market. Yes, everyone and their mother screams about 'the cloud', but to be honest large scale implementation is virtually unheard of unless you are large business who creates their own, or a small business with deep pockets. This toddler still puts things in its mouth all the time! And right now, a lot of cloud services are just a rape fest in terms of charges and price gouging to the end consumer.
That's interesting Chris. You're definitely not signing up to my Manhattan Project on cybersecurity? Even if I am recruiting the best brains from the private sector and imposing public goals and timetable? Results to be open source?
@ Mary, unfortunately I don't. There will always be vulnerabilities when you access a cloud service. @Kim, the private sector can adapt to current threats a lot more quickly than the Gov't can.
@ Nicole, sorry it wasn't a tune from Next to Normal
It takes ages for government regulations to be placed into effect, and once complete they are static. By this time new technologies have evolved or are evolving, which regulations and measures need to be tested and implemented. It's a vicious cycle. How do you solve a problem like Maria?!?
@Mary. I don't mean to suggest there is one magic bullet. Just agreed best practices would be a step in the right direction. I think NSTIC is looking for a magic bullet on identities.
LOL @Nicole. It just doesn't make sense to me -- yet. I am not saying it won't eventually make sense, that I won't open my eyes and see Kim as a true visionary.
@Nicole. We have evidence that vendors are failing badly. I think a best-minds solution is an alternative which should be considered. The problem is that it would be called "Obama-Security" and be labeled socialist.
Yes, and I'm still hung up on why you think there is one magic bullet for cloud security, Kim! I mean, there are tons of different application interfaces for cloud use.
I think the govt's current strategy is that e-commerce is so valuable we'll tell the private sector that it's in their interests to fix security, then we'll take whatever they come up with and apply it to the infrastructure.
If my analysis of IT budget problems is roughly accurate, it would be a big money saver to develop a secure cloud solution. Why leave it to Symantec and Sony and whoever?
Although it's politically undesirable, the govt could conclude that secure IT for military/intelligence and critical infrastructure should be a public project. They could take ownership of it (as they did with The Bomb), recruit the key innovators and run NSTIC to their own timetable.
It was NSTIC which made me think about this. NSTIC farms out the trusted identity problem to the private sector to solve. It is merely an enabler - a convener of committees.
I just think, when it comes to the government, the question "what about security?" needs to be met with a related answer, not simply an answer about cost savings... otherwise it's not going to happen.
Re: "So do you think, Kim, that Kundra left because of this particular tension between moving forward and avoiding new technology, specifically cloud tech?" That was my original thought.
Mary, I suspect there were other reasons for Kundra leaving. He had plenty to say and I don't recall he said that specific depts were blocking his reforms.
In case anyone wants to check it out later, here's a link to the CLOUD report. These people are even more positive about the cloud than Mary, but still aren't reassuring about security. 30 page pdf.
True. So do you think, Kim, that Kundra left because of this particular tension between moving forward and avoiding new technology, specifically cloud tech?
@Mary I don't have any enterprise examples I can share, but with personal tech I spent $500 on a netbook when netbooks were just the new cool thing, and within 3-6 months is totally obsolete. Why pay to be an early adopter? The only people who do that to begin with are usually people who get a high off being all smug cause they have the latest and greatest
@AW: Your assertion about early adoption intrigues me. Can you share any horror stories with us? Or any stories at all? Not being nosy, just interested. ;>
The government is typically slow to adopt. With so many private sector organizations not ready to jump into the cloud, what makes us think the government is going to get in early here?
@Kim, yes, I guess so. But using that yardstick of risk assessment, any government information is likely to be called too sensitive to expose to anything.
@Kim I hope you're ready! I spent all last night securing my house (make sure there are no plants or anything outside that can turn into a missle,) and getting my search and rescue gear ready to go.
@Mary. Absolutely. My argument was that unless NIST or comparable authorities can make clear and definitive statements about cloud security, the White House is going to be reluctant to over-rule top brass.
@Mary I'm not sure security is my biggest concern (it is one of them certainly) but impelentation hurdles, how to effecitvely deal with outages, what services to actual pay for. It's new waters and I just am adopting a conservitive approach
And isn't it just possible that some government agencies that could benefit from cloud will raise the hue and cry of security as an excuse to do nothing?
It would be less of a big deal if military IT was 5% of federal IT spending. We could just treat them as a special case. But I suspect it's a massive chunk of the budget.
I'm approaching it from the angle of early adopter. I've been burned too many times by buying technology before lettering it mature (netbooks being the biggest example for me). As decentralized as it may be, there hasn't been any real distruption of it yet
@Mary. I understand that, but people are going to take clunky secure systems every time when it comes to critical military, intelligence and infrastructure.
The argument against clouds makes me crazy, because it just gives agency IT an excuse to dig in their heels and keep the expensive and clunky status quo.
I think my strongest opinion is that we need to be clear and honest about security across the board. The more I see woolly reports and think-pieces calling for standards, the more nervous I am - especially about the national infrastucture moving to the cloud.
I tried to convey that it's the depts which consume huge IT resources, not necessarily in an organized way, which are the ones most resistant to the cloud.
Yes, Mary. The advantages of the cloud are evident to many in government. Agriculture wasn't a random example; it has happily been migrating data to the cloud. But savings on Agriculture IT don't get us far.
New York's Metropolitan Transit Authority is conducting a pilot test of digital kiosks to guide subway users to where they want to go more efficiently and at lower cost.
The whole Amazon.reader debate is a double-stupid. It's stupid to think that there's any e-book buyer who doesn't know Amazon's URL, and it was stupider to let ICANN launch the whole free-form TLD initiative to start with.
While NFC's original goal was to enhance mobile commerce applications, it is finding its way into a number of other uses, which is creating both opportunity as well as challenges for IT departments.
Enterprises would like to move to cloud computing but are hesitant because they are concerned about providers’ ability to secure company data. Here are some tips that help to ensure that if breaches occur, the business is not left holding the bag.
Edmunds separates customers into segments based on the info it collects on its site and from partners, and uses that to push out custom content, said Brian Baron, director of business analytics for Edmunds.com, at Predictive Analytics Innovation Summit.
The automotive website uses propensity modeling to target ads and customer registration forms, said Brian Baron, director of business analytics for Edmunds.com, at Predictive Analytics Innovation Summit.
Expert Integrated Systems: Changing the Experience & Economics of IT In this e-book, we take an in-depth look at these expert integrated systems -- what they are, how they work, and how they have the potential to help CIOs achieve dramatic savings while restoring IT's role as business innovator. READ THIS eBOOK
your weekly update of news, analysis, and
opinion from Internet Evolution - FREE! REGISTER HERE
Wanted! Site Moderators Internet Evolution is looking for a handful of readers to help moderate the message boards on our site – as well as engaging in high-IQ conversation with the industry mavens on our thinkerNet blogosphere. The job comes with various perks, bags of kudos, and GIANT bragging rights. Interested?
To save this item to your list of favorite Internet Evolution content so you can find it later in your Profile page, click the "Save It" button next to the item.
M2M: Rise of the Machines? Not Yet David Weldon In the 1970 science fiction thriller Colossus: The Forbin Project, two giant supercomputers from the United States and Soviet Union secretly join forces to take control of the collective nuclear might of the two countries. In the film, the two machines discover each other's existence, communicate back-and-forth, share their collective data, and cut their human creators out of the process. It is the ultimate example of machine-to-machine communications, or M2M. CLICK FOR MORE
M2M: Rise of the Machines? Not Yet David Weldon In the 1970 science fiction thriller Colossus: The Forbin Project, two giant supercomputers from the United States and Soviet Union secretly join forces to take control of the collective nuclear might of the two countries. In the film, the two machines discover each other's existence, communicate back-and-forth, share their collective data, and cut their human creators out of the process. It is the ultimate example of machine-to-machine communications, or M2M. CLICK FOR MORE
