Welcome!

@CloudExpo Authors: Elizabeth White, Pat Romanski, Liz McMillan, Scott Allen, William Schmarzo

Related Topics: IoT User Interface, API Journal, @CloudExpo, Cloud Security, Government Cloud

IoT User Interface: Blog Feed Post

Google vs. China, Our First Cyber War

Last week we witnessed the first Cyber War, but it didn’t go down quite as many of us expected

Last week we witnessed the first Cyber War, but it didn’t go down quite as many of us expected. Instead of a group of anonymous hackers trying to take over thousands of infected PCs or trying to cut off access to critical infrastructure, we saw Google declare the first salvo in its war against Chinese censorship by moving its servers to Hong Kong.

The more I thought about this, the more I realized that this was war, declared by a private company on a nation state. Just because Google doesn’t have its own army (yet), or that no actual physical weapons were fired doesn’t make it any less of a battle. And it is only going to get worse for all of us as other private firms realize that they need to take control over their servers and intellectual property. What is curious is how few companies signed up for the cyber equivalent of the coalition of the willing – GoDaddy was one of the few. Not Microsoft. Not Intel. No PC manufacturer of any shape or size.

Let’s face it. No one wants to declare war on China, whatever form that will take. Most of our PC hardware components are made there. More people are using the Internet in China than the US total population, and it is growing quickly, too. And while the breaches on several Google accounts had Chinese origins, getting accountability isn’t easy.

Coincidentally, while all this was going down I was reading a preview copy of Richard Clarke’s new book called Cyber War. I highly recommend pre-ordering a copy. Clarke was a national security advisor to several presidents and teaches now at the Kennedy School at Harvard.

The book is chilling account of exactly what is wrong with our government and how unprepared we are for Cyber World War I. How so? Think of a Cyber War in terms of nuclear proliferation and the Cold War preparation. But unlike what we did in the 1960s to defend ourselves against possible nuclear annihilation, we are doing everything wrong for a cyber defense. Instead, we have made America more of a target, because so much of our infrastructure, our weapons, our culture, and our PCs are out in the open, ripe for the picking. Look at how easy it is to hijack the drone video feed as a starting point (although the control systems are secured, for the moment.) Clarke talks about various war game scenarios and at one he mentions:

“If you have a mental image of every interesting lab, company, and research facility in the US being systematically vacuum cleaned by some foreign entity, you’ve got it right. That is what has been going on. Much of our intellectual property as a nation has been copied and sent overseas. Our best hope is that whoever is doing this does not have enough analysts to go through it all and find the gems, but that is a faint hope, particularly if the country has, behind the filtration, say, a billion people in it.”

He mentions how there were times when computer professionals working for the Hopkins Applied Physics Lab back in 2009 discovered a data breach. The only way they could solve it was to disconnect their entire organization from the Internet and clean each PC, one by one. “If you are connected to the Internet in any way, it seems, your data is already gone [overseas].”

The problem is that the best defense in a Cyber War isn’t the best offense. Nope: it is hardening your connections. Look at what China has done with its “Great Firewall.” Most of us think this is to keep the porn and liberal thinking out of China. And yes, it does do that. But what is really going on is that in the event of a Cyber War, China can quickly pull the plug and disconnect from the world, to defend itself. Trying asking AT&T or Level 3 to do that here. Ain’t gonna happen.

Another part of the problem is that there is no one actually “tasked,” as they say in DoD-speak, with defending our power grid control systems, transportation networks, and so forth. Where are the cyber equivalents of nuclear strike forces in case someone hits one of these targets? Nowhere. DoD has its own ships, planes, and troops to worry about. Homeland Security is trying to keep shoe bombers and the like out of our skies. What is left is up for grabs. Call it the cyber gap. “Can a nation shut off its cyber connectivity to the rest of the world, or spot cyber attacks coming from inside its geographical boundaries and stop them?” China probably can. We can’t. In an odd twist of irony, the less developed a nation is, say Afghanistan or North Korea, the better defended it can be, because so little of that country’s resources are hackable. How many power grid control rooms have VOIP phones, bringing the Internet literally to the right desktop?

In the past, spies had a harder time of it. They had to physically copy plans, or data, or compromise an actual human being. Now, they can sit in their jammies and download entire manuals without anyone noticing.

When Obama was elected in the fall of 2008, Clarke was an advisor to the transition team. He asked everyone on the team to stop working on their home PCs and even provided brand new Apple MacBooks that were locked down so they couldn’t connect to the public Internet. When the users complained about this when they tried to access public Wifi networks, he “tried to quietly point out that if you are a senior member of the informal national security transition team, you probably should not be planning the takeover of the White House from a Starbucks.” Gulp.

That is the problem. We are too used to our connectivity, and have gotten too complacent with our computers. A lot remains to be done. You have been warned.

Read the original blog entry...

More Stories By David Strom

David Strom is an international authority on network and Internet technologies. He has written extensively on the topic for 20 years for a wide variety of print publications and websites, such as The New York Times, TechTarget.com, PC Week/eWeek, Internet.com, Network World, Infoworld, Computerworld, Small Business Computing, Communications Week, Windows Sources, c|net and news.com, Web Review, Tom's Hardware, EETimes, and many others.

@CloudExpo Stories
The best-practices for building IoT applications with Go Code that attendees can use to build their own IoT applications. In his session at @ThingsExpo, Indraneel Mitra, Senior Solutions Architect & Technology Evangelist at Cognizant, provided valuable information and resources for both novice and experienced developers on how to get started with IoT and Golang in a day. He also provided information on how to use Intel Arduino Kit, Go Robotics API and AWS IoT stack to build an application tha...
Whether your IoT service is connecting cars, homes, appliances, wearable, cameras or other devices, one question hangs in the balance – how do you actually make money from this service? The ability to turn your IoT service into profit requires the ability to create a monetization strategy that is flexible, scalable and working for you in real-time. It must be a transparent, smoothly implemented strategy that all stakeholders – from customers to the board – will be able to understand and comprehe...
It’s 2016: buildings are smart, connected and the IoT is fundamentally altering how control and operating systems work and speak to each other. Platforms across the enterprise are networked via inexpensive sensors to collect massive amounts of data for analytics, information management, and insights that can be used to continuously improve operations. In his session at @ThingsExpo, Brian Chemel, Co-Founder and CTO of Digital Lumens, will explore: The benefits sensor-networked systems bring to ...
SYS-CON Events announced today that Venafi, the Immune System for the Internet™ and the leading provider of Next Generation Trust Protection, will exhibit at @DevOpsSummit at 19th International Cloud Expo, which will take place on November 1–3, 2016, at the Santa Clara Convention Center in Santa Clara, CA. Venafi is the Immune System for the Internet™ that protects the foundation of all cybersecurity – cryptographic keys and digital certificates – so they can’t be misused by bad guys in attacks...
"Tintri was started in 2008 with the express purpose of building a storage appliance that is ideal for virtualized environments. We support a lot of different hypervisor platforms from VMware to OpenStack to Hyper-V," explained Dan Florea, Director of Product Management at Tintri, in this SYS-CON.tv interview at 18th Cloud Expo, held June 7-9, 2016, at the Javits Center in New York City, NY.
Identity is in everything and customers are looking to their providers to ensure the security of their identities, transactions and data. With the increased reliance on cloud-based services, service providers must build security and trust into their offerings, adding value to customers and improving the user experience. Making identity, security and privacy easy for customers provides a unique advantage over the competition.
Is your aging software platform suffering from technical debt while the market changes and demands new solutions at a faster clip? It’s a bold move, but you might consider walking away from your core platform and starting fresh. ReadyTalk did exactly that. In his General Session at 19th Cloud Expo, Michael Chambliss, Head of Engineering at ReadyTalk, will discuss why and how ReadyTalk diverted from healthy revenue and over a decade of audio conferencing product development to start an innovati...
SaaS companies can greatly expand revenue potential by pushing beyond their own borders. The challenge is how to do this without degrading service quality. In his session at 18th Cloud Expo, Adam Rogers, Managing Director at Anexia, discussed how IaaS providers with a global presence and both virtual and dedicated infrastructure can help companies expand their service footprint with low “go-to-market” costs.
Security, data privacy, reliability and regulatory compliance are critical factors when evaluating whether to move business applications from in-house client hosted environments to a cloud platform. In her session at 18th Cloud Expo, Vandana Viswanathan, Associate Director at Cognizant, In this session, will provide an orientation to the five stages required to implement a cloud hosted solution validation strategy.
The competitive landscape of the global cloud computing market in the healthcare industry is crowded due to the presence of a large number of players. The large number of participants has led to the fragmented nature of the market. Some of the major players operating in the global cloud computing market in the healthcare industry are Cisco Systems Inc., Carestream Health Inc., Carecloud Corp., AGFA Healthcare, IBM Corp., Cleardata Networks, Merge Healthcare Inc., Microsoft Corp., Intel Corp., an...
"Avere Systems is a hybrid cloud solution provider. We have customers that want to use cloud storage and we have customers that want to take advantage of cloud compute," explained Rebecca Thompson, VP of Marketing at Avere Systems, in this SYS-CON.tv interview at 18th Cloud Expo, held June 7-9, 2016, at the Javits Center in New York City, NY.
Ovum, a leading technology analyst firm, has published an in-depth report, Ovum Decision Matrix: Selecting a DevOps Release Management Solution, 2016–17. The report focuses on the automation aspects of DevOps, Release Management and compares solutions from the leading vendors.
Large scale deployments present unique planning challenges, system commissioning hurdles between IT and OT and demand careful system hand-off orchestration. In his session at @ThingsExpo, Jeff Smith, Senior Director and a founding member of Incenergy, will discuss some of the key tactics to ensure delivery success based on his experience of the last two years deploying Industrial IoT systems across four continents.
"This week we're really focusing on scalability, asset preservation and how do you back up to the cloud and in the cloud with object storage, which is really a new way of attacking dealing with your file, your blocked data, where you put it and how you access it," stated Jeff Greenwald, Senior Director of Market Development at HGST, in this SYS-CON.tv interview at 18th Cloud Expo, held June 7-9, 2016, at the Javits Center in New York City, NY.
When it comes to cloud computing, the ability to turn massive amounts of compute cores on and off on demand sounds attractive to IT staff, who need to manage peaks and valleys in user activity. With cloud bursting, the majority of the data can stay on premises while tapping into compute from public cloud providers, reducing risk and minimizing need to move large files. In his session at 18th Cloud Expo, Scott Jeschonek, Director of Product Management at Avere Systems, discussed the IT and busin...
Keeping pace with advancements in software delivery processes and tooling is taxing even for the most proficient organizations. Point tools, platforms, open source and the increasing adoption of private and public cloud services requires strong engineering rigor – all in the face of developer demands to use the tools of choice. As Agile has settled in as a mainstream practice, now DevOps has emerged as the next wave to improve software delivery speed and output. To make DevOps work, organization...
"We formed Formation several years ago to really address the need for bring complete modernization and software-defined storage to the more classic private cloud marketplace," stated Mark Lewis, Chairman and CEO of Formation Data Systems, in this SYS-CON.tv interview at 18th Cloud Expo, held June 7-9, 2016, at the Javits Center in New York City, NY.
There will be new vendors providing applications, middleware, and connected devices to support the thriving IoT ecosystem. This essentially means that electronic device manufacturers will also be in the software business. Many will be new to building embedded software or robust software. This creates an increased importance on software quality, particularly within the Industrial Internet of Things where business-critical applications are becoming dependent on products controlled by software. Qua...
SYS-CON Events has announced today that Roger Strukhoff has been named conference chair of Cloud Expo and @ThingsExpo 2016 Silicon Valley. The 19th Cloud Expo and 6th @ThingsExpo will take place on November 1-3, 2016, at the Santa Clara Convention Center in Santa Clara, CA. "The Internet of Things brings trillions of dollars of opportunity to developers and enterprise IT, no matter how you measure it," stated Roger Strukhoff. "More importantly, it leverages the power of devices and the Interne...
"There's a growing demand from users for things to be faster. When you think about all the transactions or interactions users will have with your product and everything that is between those transactions and interactions - what drives us at Catchpoint Systems is the idea to measure that and to analyze it," explained Leo Vasiliou, Director of Web Performance Engineering at Catchpoint Systems, in this SYS-CON.tv interview at 18th Cloud Expo, held June 7-9, 2016, at the Javits Center in New York Ci...