Posts by GSTZ

Architecture change needed to prevent major systemic risk

The majority of cybersecurity incidents is triggered by malware infections at end user devices. Endpoint security software is a major market but has essentially failed to reliably prevent such malware infections, and there is no hope whatsoever that this will change in the future.

The root cause: All of today's end user devices are software-controlled, and hence are threatened by malicious software. In addition, they do accept code downloads via the network. Furthermore, typical end users just aren't security experts and sometimes can be tricked, and there are so many more vulnerable end user devices than those usually better protected central applications. The latter can be infeted too (eg. by ransomware), but this very often happens via an previously infected end user device.

The cure: For critical applications, we ought to switch to hardware-controlled end user devices. This is very good and proven practice: Before PCs were introduced, all our end user devices were hardware controlled - and we then had no malware problems whatsoever.

We would need to develop new hardware-controlled devices supporting today's needs including grahics, multiple screen windows, multimedia, teleconferencing etc., which is entirely possible but requires a significant architecture change. Those new and secure end user devices would be cloud/edge-oriented, and wouldn't contain an OS such as Windows or some Linux variant. This results in much better functional stability, reliability and ease of use.

Itanium was often misunderstood ...

... which soon led into misery, despite some quite promising points. And of course it did not help when the initial Itanium release had significant flaws, quickly leading to the deadly "Itanic" nickname.

The main problem was that Intel did commuincate poorly, so Itanium was widely misunderstood in the market. Many people dismissed it, simply because Itanium did not reach the same level of shipment numbers as x86 chips. Such people would also not understanding why trucks are more costly and somewhat slower than cars, yet do make very good sense in many cases.

Many programmers did not fully understand the implications of Itanium's EPIC architecture and the need to design and code differently than on x86. Not willing to adapt their behaviours, they got less-than-ideal results and did put the blame on the chip - not on their own ignorance.

In a wider context, we do not find not much big iron in IT any more. As per the above analogy, trucks have become very rare, and we do use way too many cars to get things moving. Not very efficient, and pretty expensive in total (although the single boxes are indeed cheap). Too many drivers needed, and IT budgets did not shrink.

Back to Itanium - yes, this relatively modern architecture is now dead, while we still use an 40+ year old architecture despite all its shortcomings. Is this a good idea ?

Just a small example - Itanium is not affected by Meltdown, Spectre and other speculative processing vulnerabilities.

Once upon a time, HP was the no. one IT vendor worldwide - but now that seems very long ago ...

Might be Emotet ?

There was a number of Emotet attacks in Germany recently, some of them affecting public entities like universities, courts and city administrations. Emotet is pretty effective by spying on mailboxes and composing fake mails appearing to originate from well known contacts and relating to reasonable subjects. Even cautious users can be tricked into opening attachments or clicking links ...

Not much of a hack, it seems ...

While not all details are known yet, it almost seems that some youngster(s) with limited hacker skills went into the darknet and bought lots of stolen passwords. Over several months, they skimmed that stuff and picked hundreds of German politicians and other well-known people such as actors and TV showmasters to extract private data from accounts belonging to them. While they picked any politician not belonging to the far-right equivalent to the UKIP in Britain, they treated other celebrities more selectively with a clear preference for those who engage themselves socially and support more liberal views.

This is seen as a big affaire here in Germany, some politicians speak of "a big attack against democracy" and many non-experts blame the victims as digital idiots. The BSI cyber security agency is blamed for poor communication and for not constantly snooping on each and every Twitter account for potential data leaking. And of course, much stricter laws are demanded - as if this could be of any help ...

What OT used to be ...

OT used to be somewhat clumsy, but pretty reliable and secure. Contemporary IT is much more agile, but not overly reliable and not at all secure. It would be great if some of OT's positive aspects would flow into IT, at least in critical application areas. But one would not expect this to happen when big IT barns drive the convergence of IT and OT. Bad apples usualy do spoil good apples in the same basket, and very rarely get healed by the good ones ... (;-))

Avoiding the cloud wherever I can ...

… so I've just bought an oldfashioned MS Office package for my new notebook, rather than subscribing to Office 365. Works nicely, but for some reason the Outlook profile won't load. This article seems to explain why …

Yes there alternatives to MS Office, but unfortunately it's very hard to boil an ocean ...

Real time alerts are better than real time analytics

These days many people do focus on analytics, AI and big data because that's the current hype, but the beauty of (serious) IoT is that it usually delivers specific events and data best utilized when acted upon immediately. Actually, IoT should more be seen as an OLTP game than an analytics game.

IoT vs. Industry 4.0

Maybe we should distinguish between consumer-oriented gadgets (typically connected to the Internet just to enable consumers to brag with their ability to toy around with said gadgets via smartphone apps) and serious technology used in production, logistics, transportation and other areas. The Germans have coined the term "Industry 4.0" for such technology.

Here, typically some industrial control system (ICS) would be involved, and the machinery controlled by this would not necessarily need to be connected to the Internet. For instance, you could order some furniture in a webshop specifying the exact dimensions you want, but the related production gear might run totally separated behind an air-gap ...

Are we barking up the wrong tree ?

We have the year 2018, but still much of the ATM/POS authorisation stuff runs on oldfashioned big iron gear - which has a big advantage, those systems are usually very stable, reliable and predictable - unlike that clumsy PC-derived technology to be found at the heart of contemporary systems everywhere. A good portion of the worldwide ATM/POS workload even runs on fault tolerant systems originally designed decades ago to be failsafe, and since having an excellent track record in that regard.

The recent problems with MasterCard and VISA were certainly real and very annoying, but do we really know whther they were actually caused by the backend systems ? It is somewhat more likely that the bottlenecks / fault areas are somewhere in the complex networking (typically involving several parties) to be found between the card readers and the authorisation systems. We only have to look at the performance of other services delivered via the same kind networks - they are often impeded too. Maybe we need premium networks to support critical services, as opposed to the usual "social networking" stuff.

Wrong architecture ...

From today's article: "Shujun Li, professor of cybersecurity research at the University of Kent, said the main issue was not the initial failure – modern IT systems are too complicated and dynamic to be totally bug-free, he said – but because of the bank’s poor risk management."

Many people would agree to the above opinion, but only few would be willing to draw the resulting further conclusions: Modern IT systems (ie., the currently prevailing "good enough" stuff) are far too complex to provide deterministic behaviour and predictable results automatically by themselves. Hence, a lot of additional and pretty difficult work needs to be done to raise service levels beyond the threshold of "good enough". Which means that the number and severity of complaints need to be reduced far enough that an overall impression of somewhat acceptable system behavior can be achieved - which however isn't exactly the level of reliability one should expect from critical IT systems, and it is pretty costly too. How about another IT architecture that delivers more predictable results ? That's not rocket science, it has been done in the past and it is done in other areas like industrial IT and OT.

Maybe sometimes not having access to your account or somebody else having access to your account isn't seen as a major problem in today's banking industry. In industrial IT, the equivalent would be frequent production outages and small explosions all over the plant every once in a while ... (;-))

Shiny new systems ...

From the artcle: "TSB migrated from former parent Lloyds Banking Group's systems to shiny new ones" ...

Moving from centralized and highly deterministic systems to "shiny new" systems that (from the outside) may even look centralized too, but are in fact a highly complex conglomerate of many thousands of "PC's" all doing more or less their own thing but also being dependent on the outcome of many other "PC's" to complete their tasks isn't easy. It doesn't help much that these "PC's" are no longer small separated physical machines like in the early days of distributed computing, rather myriads of virtual machines running on some kind of x86 infrastructure coming with bombastic marketing wording but behaving like a bunch of PC's anyway. Predictability suffers, such systems are certainly "good enough" to handle enormous workloads for less critical applications like Facebook and Twitter but might be less than ideal for really critical stuff like banking operations.

This is not crying for the good old past based on legacy systems, as it has already been pointed out that old systems eventually become a real pain when too much new functionality gets added. At some point, it is better to start with a clean slate - but also on a highly deterministic system providing better reliability, predictability and security than the "good enough" gear that has become the de facto default for each and every new application these days. Unfortunately, most of the younger IT folks do not even realize that alternatives do exist.

The prevailing hardware stuff comes relatively cheap, but the business results tend to be mixed as reliability, efficiency and security have "room for improvement" and the cost to run and support those very complex systems becomes too high. Many user organisations now do escape to the public cloud, even the military are now considering such moves. However, it is unclear how cloud providers having less knowledge of the business requirements and less incentive to provide superior service levels for critical applications will be able to serve their customers better.

Once upon a time ...

... and this was of course long before the big splitting of HP into HPE and HP Inc (thus separating the PC and printer business from "real" IT stuff), HP was the world's largest IT vendor. They had everything from end user devices and networking gear over servers and storage to services, consulting and software. At that time, they had the potential to set a new standard that could have dominated the market, just like SNA dominated in the 70's and 80's. This could of course only have happened if that new standard would have provided significant benefits to IT users, such as higher reliability or security - things that are badly needed in today's IT.

However, HP did not have the kind of leadership and enough phantasy to envision such bold ideas. Like everybody else, they prayed to Excel and the existing standards, essentially competing on price - a fight they simply could not win. When simply cutting some fat did not help any more, they started cutting off their arms and legs ...

Moore's law becoming obsolete

Moore's law is indeed on doubling the number of transistors, but in former times that had the effect of also doubling speed. This is no longer the case - rather we are now doubling theoretical throughput (useful only if we had software that could make use of ever growing parallism), and we are also doubling complexity, unreliability and vulnerability. We are still in electronics, and electrons fly around atoms - so the atom size is a hard limiting factor. Another one is heat - the more layers we put on top of each other the harder it gets to dissipate it from the middle. We'd probably have to turn down clock speeds to avoid meltdown. Furthermore, making the chip structures even more tiny and brittle and thus even more susceptible will force us to invest more transistors into error correction and fault repair circuitry. At some point adding even more transistors becomes ineffective as we have to use them for unproductive purposes and also we get overwhelmed by complexity. All those effects will ultimately stop that trend we know as Moore's law.

Is this a tragedy? Probably not. We can make things a lot simpler, and thus work more productive and more reliable. We can put more functions into hardware, eg. via ASICs. And maybe we could even educate software whizzards to become more humble and to concentrate more on user needs rather than on the latest software fashions and their own ego.

Quality

Earlier this year I've filed a patent application with the EPO and now did receive their initial research results. My application is seen as valid, so formally I have nothing to complain about here. However the brief comments given provide just one reference to another document - and that one has very little to do with the subject of my invention. Seems that a poor soul under heavy pressure to close as many open cases as quickly as possible just did that ...

Blinded by the light ...

That particular Tesla vs. truck accident was caused by using improper sensor technology. You just can't rely on optical sensors alone (just like the human eye, they can get blinded under certain conditions) and so you need radar and/or laser sensors in addition. Basic technical design flaw, not just a software bug (Tesla has meanwhile added radar sensors).

But even then, you can't rely that electronics and software alone will be perfect for driving cars. That environment is extremely complex. There will always be some cases where technology makes stupid misinterpretations and hence, terrible mistakes which the average human driver would not make.

This is not to say that human drivers don't make mistakes, they probably make more. But they are better at detecting and correcting these in real time when driving actively. However, being disengaged from the driving process and only being alerted when the software throws the towel is a perfect recipe for trouble - human beings are not good at task switching. It takes too long to switch from watching a Harry Potter movie to realizing basic driving-related things (like where am I ?, What is going on ? etc.). Authorities would probably have to limit the driving speed to 5 mph to achieve a reasonable level of safety.

Wild marketing claims that autonomous driving will be far more safe than conventional driving are just that - wild marketing claims. The CEO of a very large european insurance company recently stated that the number of accidents will go up, not down when autonomous driving is introduced. However, he asserted that modern driving assistance systems clearly do improve road safety. Obviously, the driver still being involved makes the difference.

Insurance companies by their very nature are experts in managing risks ...